JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.139.28.140

43.139.28.140 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 0%: ?

ISP	Tencent Cloud Computing (Beijing) Co., Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45090
Domain Name	tencentcloud.com
Country	🇨🇳 China
City	Guangzhou, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.139.28.140

Whois 43.139.28.140

IP Abuse Reports for 43.139.28.140:

This IP address has been reported a total of 40 times from 20 distinct sources. 43.139.28.140 was first reported on April 7th 2023, and the most recent report was 3 years ago.

Old Reports: The most recent abuse report for this IP address is from 3 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 stfw	2023-05-22 23:24:26 (3 years ago)	8081/udp 5353/udp 8000/udp... [2023-04-09/05-22]6pkt,5pt.(udp)	Port Scan
Anonymous	2023-05-22 10:55:41 (3 years ago)	May 22 02:06:42 kernel: DROP IN=eth0 OUT= MAC=REDACTEDMYDEVICEMAC SRC=43.139.28.140 DST=REDACEDMYPUB ... show more May 22 02:06:42 kernel: DROP IN=eth0 OUT= MAC=REDACTEDMYDEVICEMAC SRC=43.139.28.140 DST=REDACEDMYPUBLICIP LEN=91 TOS=0x00 PREC=0x00 TTL=50 ID=35270 DF PROTO=UDP SPT=15114 DPT=5060 LEN=71 MARK=0x8000000 show less	DDoS Attack Port Scan Hacking
🇸🇬 club77	2023-05-21 12:02:48 (3 years ago)	May 21 20:02:43 raindance sshd[1733708]: Failed password for root from 43.139.28.140 port 47126 ssh2 ... show more May 21 20:02:43 raindance sshd[1733708]: Failed password for root from 43.139.28.140 port 47126 ssh2 May 21 20:02:43 raindance sshd[1733711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.139.28.140 user=root May 21 20:02:45 raindance sshd[1733711]: Failed password for root from 43.139.28.140 port 47812 ssh2 May 21 20:02:46 raindance sshd[1733713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.139.28.140 user=root May 21 20:02:48 raindance sshd[1733713]: Failed password for root from 43.139.28.140 port 48548 ssh2 ... show less	Brute-Force SSH
🇫🇷 security.rdmc.fr	2023-04-29 10:28:43 (3 years ago)	IP in Malicious Database	Web App Attack
🇺🇸 bigscoots.com	2023-04-28 23:58:03 (3 years ago)	43.139.28.140 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Port ... show more 43.139.28.140 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Apr 28 18:22:48 13678 sshd[9806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.154.138.77 user=root Apr 28 18:22:50 13678 sshd[9806]: Failed password for root from 45.154.138.77 port 58360 ssh2 Apr 28 18:57:42 13678 sshd[12434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.139.28.140 user=root Apr 28 18:57:43 13678 sshd[12434]: Failed password for root from 43.139.28.140 port 35006 ssh2 Apr 28 18:57:45 13678 sshd[12436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.139.28.140 user=root IP Addresses Blocked: 45.154.138.77 (FR/France/-) show less	Brute-Force SSH
🇸🇪 QUADEMU Abuse Dpt	2023-04-28 07:43:16 (3 years ago)	[New] Noxious/Nuisible/вредоносный Host.	Port Scan Exploited Host
🇮🇹 Dario B.	2023-04-28 06:12:56 (3 years ago)	DATE:2023-04-28 08:12:56, IP:43.139.28.140, PORT:ssh SSH brute force auth on honeypot server (honey- ... show more DATE:2023-04-28 08:12:56, IP:43.139.28.140, PORT:ssh SSH brute force auth on honeypot server (honey-neo-dc) show less	Brute-Force SSH
🇷🇴 abuse_IP_reporter	2023-04-28 00:03:20 (3 years ago)	Apr 28 02:55:43 server UFW BLOCK SRC=43.139.28.140	Port Scan
🇫🇷 security.rdmc.fr	2023-04-26 15:08:45 (3 years ago)	IP in Malicious Database	Web App Attack
Anonymous	2023-04-25 16:40:09 (3 years ago)	Tried our host z.	Port Scan Hacking Exploited Host
Anonymous	2023-04-25 03:25:22 (3 years ago)	Apr 24 19:36:31 kernel: DROP IN=eth0 OUT= MAC=REDACTEDMYDEVICEMAC SRC=43.139.28.140 DST=REDACEDMYPUB ... show more Apr 24 19:36:31 kernel: DROP IN=eth0 OUT= MAC=REDACTEDMYDEVICEMAC SRC=43.139.28.140 DST=REDACEDMYPUBLICIP LEN=114 TOS=0x00 PREC=0x00 TTL=50 ID=7125 DF PROTO=UDP SPT=15114 DPT=8000 LEN=94 MARK=0x8000000 show less	DDoS Attack Port Scan Hacking
🇫🇷 security.rdmc.fr	2023-04-24 15:03:39 (3 years ago)	IP in Malicious Database	Web App Attack
🇬🇧 myintarweb	2023-04-24 06:07:43 (3 years ago)	Sending non-utf-8 bytes to udp port 5060	Fraud VoIP
🇧🇾 StatsMe	2023-04-23 21:08:42 (3 years ago)	2023-04-23T01:56:29.733622+0300 ET CINS Active Threat Intelligence Poor Reputation IP group 43	Port Scan Hacking Spoofing Brute-Force
🇺🇸 EricTheRedFL	2023-04-23 09:13:26 (3 years ago)	Port scan of UDP port 5060	Port Scan Hacking

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2405:201:6849:e008:6cc7:1ea8:1456:3f4

🇨🇦 216.26.233.173

🇰🇷 203.142.160.143

🇫🇮 147.185.133.7

🇯🇵 133.18.220.155

🇸🇬 118.26.110.171

🇭🇰 103.100.208.168

🇨🇦 85.217.149.60

🇺🇸 66.132.195.48

🇺🇸 64.62.156.137

🇨🇳 49.90.17.57

🇨🇴 186.98.253.114

🇰🇷 175.197.217.24

🇺🇸 162.216.149.54

🇺🇸 136.111.229.188

🇺🇸 98.51.1.64

🇮🇹 78.159.203.163

🇵🇭 58.69.56.44

🇳🇱 45.148.10.151

🇹🇷 45.59.70.139