JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.28.49.157

139.28.49.157 was found in our database!

This IP was reported 56 times. Confidence of Abuse is 74%: ?

74%

ISP	Telecom SY
Usage Type	Fixed Line ISP
ASN	AS216472
Domain Name	highspeed-sy.com
Country	🇸🇾 Syrian Arab Republic
City	Aleppo, Aleppo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.28.49.157

Whois 139.28.49.157

IP Abuse Reports for 139.28.49.157:

This IP address has been reported a total of 56 times from 34 distinct sources. 139.28.49.157 was first reported on January 31st 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-15 12:55:13 (1 day ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after suspicious activity. Vegas Security	DDoS Attack Hacking Exploited Host
🇺🇸 micropedro	2026-06-14 00:05:13 (3 days ago)	4 incidents: port scanning. First: 2026-04-24 15:14, Last: 2026-06-13 20:05 UTC. Triggers: firewall- ... show more 4 incidents: port scanning. First: 2026-04-24 15:14, Last: 2026-06-13 20:05 UTC. Triggers: firewall-tcp,non-public-port,ufw-repeater,ufw-repeater. show less	Port Scan
🇺🇸 MPL	2026-06-03 09:25:12 (1 week ago)	tcp/80 (2 or more attempts)	Port Scan
🇧🇷 chronos	2026-06-03 04:44:04 (2 weeks ago)	Generic malicious activity: ALERT: External attempt to access critical TCP port... \| Port: 8080 \| Pr ... show more Generic malicious activity: ALERT: External attempt to access critical TCP port... \| Port: 8080 \| Proto: TCP \| Location: Hong Kong, N/A show less	Port Scan Hacking
🇨🇦 JuicyJ	2026-06-02 11:29:38 (2 weeks ago)	Trying to look for places to exploit	Web Spam
🇨🇦 polycoda	2026-05-30 11:37:42 (2 weeks ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
🇩🇪 SMARTNET	2026-05-27 06:03:53 (3 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 5b730afc-5cec-4742-843f-18085cc64e5c	DDoS Attack
🇨🇭 m_vlasov	2026-05-26 08:51:04 (3 weeks ago)	Cowrie SSH/Telnet honeypot: 0 login attempts, 4 sessions, 0 shell commands.	Port Scan IoT Targeted
🇺🇸 MPL	2026-05-24 12:20:09 (3 weeks ago)	tcp/23 (2 or more attempts)	Port Scan
🇫🇷 EDSL	2026-05-24 04:24:17 (3 weeks ago)	[SRV-VPN1] Blocked by SysWarden Firewall (Telnet IoT Attack)	IoT Targeted Brute-Force Port Scan
🇫🇷 security.rdmc.fr	2026-05-24 03:09:31 (3 weeks ago)	Port Scan Attack proto:TCP src:58572 dst:23	Port Scan
🇬🇧 Nov	2026-05-24 03:07:21 (3 weeks ago)	Unauthorized Telnet access attempt (tcp/23)	Port Scan
🇩🇪 bescared	2026-05-24 00:23:40 (3 weeks ago)	F2B - Malicious activity detected. Unauthorized connection attempt: Telnet. -c23856ef-	Port Scan
🇩🇪 bescared	2026-05-23 22:55:20 (3 weeks ago)	F2B - Malicious activity detected. Unauthorized connection attempt: Telnet. -1ce9a8a2-	Port Scan
🇬🇧 PeravixGroup	2026-05-23 22:25:11 (3 weeks ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force

Showing 1 to 15 of 56 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 107.151.197.77

🇧🇷 2400:cb00:1058:1000:23ed:589b:e8b5:8ad3

🇧🇷 200.53.78.67

🇳🇱 195.178.110.30

🇮🇳 103.177.235.243

🇵🇰 103.164.9.74

🇮🇳 103.123.226.138

🇷🇺 81.177.101.45

🇺🇸 70.175.180.147

🇫🇷 51.68.226.87

🇨🇳 36.153.54.171

🇷🇴 2.57.121.112

🇬🇧 213.166.84.55

🇹🇬 196.168.30.194

🇲🇾 180.74.84.64

🇮🇳 168.144.157.139

🇩🇪 87.156.176.191

🇺🇸 64.62.197.22

🇨🇳 60.177.36.54

🇲🇾 47.250.41.171