JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.162.154.76

139.162.154.76 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 82%: ?

82%

ISP	139.162.0.0/16
Usage Type	Data Center/Web Hosting/Transit
ASN	AS63949
Domain Name	linode.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.162.154.76

Whois 139.162.154.76

IP Abuse Reports for 139.162.154.76:

This IP address has been reported a total of 16 times from 15 distinct sources. 139.162.154.76 was first reported on June 4th 2026, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇪 Jim Keir	2026-06-06 15:00:09 (17 hours ago)	2026-06-06 15:00:08 139.162.154.76 File scanning, blocking 139.162.154.76 for 5 minutes	Web App Attack
🇬🇧 Artelis	2026-06-06 08:04:15 (23 hours ago)	139.162.154.76 - - [06/Jun/2026:08:04:14 +0000] "GET /.travis.yml HTTP/1.1" 404 178 "-" "Mozilla/5.0 ... show more 139.162.154.76 - - [06/Jun/2026:08:04:14 +0000] "GET /.travis.yml HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 139.162.154.76 - - [06/Jun/2026:08:04:14 +0000] "GET /wp-config.php HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 139.162.154.76 - - [06/Jun/2026:08:04:14 +0000] "GET /application.yml HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 139.162.154.76 - - [06/Jun/2026:08:04:14 +0000] "GET /.aws/config HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 139.162.154.76 - - [06/Jun/2026:08:04:14 +0000] "GET /debug HTTP/1.1" 404 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safar ... show less	Web App Attack
🇫🇷 dwmp	2026-06-06 04:13:34 (1 day ago)	[06/Jun/2026:06:13:33.214178 +0200] aiOebQAa-dardg5Y1o-spAAAAFg 139.162.154.76 55016 38.242.227.117 ... show more [06/Jun/2026:06:13:33.214178 +0200] aiOebQAa-dardg5Y1o-spAAAAFg 139.162.154.76 55016 38.242.227.117 7080 [06/Jun/2026:06:13:33.214403 +0200] aiOebeXVOi51xAq7fqTVPwAAAA4 139.162.154.76 55018 38.242.227.117 7080 [06/Jun/2026:06:13:33.673414 +0200] aiOebeXVOi51xAq7fqTVQgAAABc 139.162.154.76 55030 38.242.227.117 7080 ... show less	Brute-Force SSH
🇫🇷 Teufel100	2026-06-05 22:04:31 (1 day ago)	ModSecurity rejected a query'	Brute-Force Hacking Web App Attack
🇺🇸 brightenfield	2026-06-05 21:57:06 (1 day ago)	Web App Attack	Web App Attack
🇫🇷 devsecops.cv	2026-06-05 20:04:12 (1 day ago)	Auto-Ban [2026-06-05 23:04:12]: CRITICAL: .env attack; DC: 139.162.0.0/16 [Paths: 51] \| Details: Exp ... show more Auto-Ban [2026-06-05 23:04:12]: CRITICAL: .env attack; DC: 139.162.0.0/16 [Paths: 51] \| Details: Exploit trap paths: /.env.production, /.git/credentials, /.env, /dump.sql, /terraform.tfstate.backup \| Sensitive files/paths: /.env.production, /.git/credentials, /.travis.yml, /.env, /dump.sql \| 404 errors (50): /debug.log, /error.log, /logs, /static/js/, /_next/, /amplify/backend/amplify-meta.json, /debug, /keys.ts, /.gitlab-ci.yml, /backup.sql (and 40 more) \| Other paths: / show less	Web App Attack Hacking
🇩🇪 Mykola Spesivtsev	2026-06-05 19:34:49 (1 day ago)	HTTP Tarpit detected bot activity:TargetPort:80, Path:/, Method:GET, UA:Mozilla/5.0 (Windows NT 10.0 ... show more HTTP Tarpit detected bot activity:TargetPort:80, Path:/, Method:GET, UA:Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Sa show less	Port Scan Web App Attack Bad Web Bot
🇱🇻 garmtech.com	2026-06-05 19:11:34 (1 day ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env.local	Web App Attack
🇩🇪 PTScreens	2026-06-05 12:40:27 (1 day ago)	CrowdSec blocked attack: Http-Sensitive-Files attempt(s) from 139.162.154.76 (Akamai Connected Cloud ... show more CrowdSec blocked attack: Http-Sensitive-Files attempt(s) from 139.162.154.76 (Akamai Connected Cloud). 5 events detected in the last 300 seconds. show less	Web App Attack
🇩🇪 SCHAPPY	2026-06-05 09:11:21 (1 day ago)	Brute-force attack to non-existent web resources, HTTP code 404.	Brute-Force Web App Attack
Anonymous	2026-06-05 00:29:42 (2 days ago)	139.162.154.76 - - [05/Jun/2026:02:29:41 +0200] "GET /web.config HTTP/1.1" 404 4135 "-" "Mozilla/5.0 ... show more 139.162.154.76 - - [05/Jun/2026:02:29:41 +0200] "GET /web.config HTTP/1.1" 404 4135 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" ... show less	Web App Attack
🇩🇪 paissangroup	2026-06-04 23:04:12 (2 days ago)	Multiple WAF Violations	Web App Attack
🇩🇪 MusicLibrary	2026-06-04 22:02:39 (2 days ago)	Attempted access to sensitive configuration files (.env, .git, etc.)	Bad Web Bot Web App Attack
Anonymous	2026-06-04 21:42:43 (2 days ago)	139.162.154.76 - - [04/Jun/2026:23:42:42 +0200] "GET / HTTP/1.1" 404 56 "-" "Mozilla/5.0 (Windows NT ... show more 139.162.154.76 - - [04/Jun/2026:23:42:42 +0200] "GET / HTTP/1.1" 404 56 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" show less	Web App Attack
🇺🇸 nyt	2026-06-04 21:24:19 (2 days ago)	Sensitive File Probe, Accessing phpinfo may indicate probing for vulnerabilities.	Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.217.95.158

🇮🇳 216.10.245.205

🇮🇳 122.176.167.71

🇻🇳 116.111.7.160

🇮🇳 103.250.160.76

🇰🇪 102.216.116.74

🇷🇺 95.165.159.70

🇷🇴 82.152.132.24

🇷🇺 80.95.38.14

🇨🇳 60.215.207.199

🇨🇳 59.52.103.78

🇫🇷 54.37.252.231

🇷🇴 2.57.121.112

🇧🇪 198.235.24.202

🇧🇷 189.114.136.231

🇮🇳 182.95.112.102

🇨🇳 180.168.60.146

🇰🇷 175.199.67.164

🇺🇸 147.185.132.17

🇨🇳 111.26.63.89