JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.162.155.161

139.162.155.161 was found in our database!

This IP was reported 235 times. Confidence of Abuse is 100%: ?

100%

ISP	139.162.0.0/16
Usage Type	Data Center/Web Hosting/Transit
ASN	AS63949
Hostname(s)	49e73b6f.scanners.onlyscans.net
Domain Name	linode.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.162.155.161

Whois 139.162.155.161

IP Abuse Reports for 139.162.155.161:

This IP address has been reported a total of 235 times from 177 distinct sources. 139.162.155.161 was first reported on July 4th 2024, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 WinnieHoneypots	2026-06-11 06:03:33 (10 hours ago)	Crappy bot probing nonexistent /.env	Brute-Force Bad Web Bot Web App Attack
🇸🇰 HILKA	2026-06-11 03:30:03 (13 hours ago)	Automatic report from HLK firewall log.	Port Scan Hacking Brute-Force
🇪🇸 DXC-0	2026-06-11 03:00:15 (14 hours ago)	Multiple attacks on Honeypot servers	Web Spam Brute-Force Web App Attack Hacking
🇳🇱 COMPLEX	2026-06-11 02:01:13 (14 hours ago)	Unsolicited TCP traffic \| Action: DROP \| Port 443	Phishing
🇸🇰 KZP	2026-06-11 02:00:09 (15 hours ago)	Automatic report from KZP firewall log.	Port Scan Hacking Brute-Force
🇩🇪 Yoisho!	2026-06-11 01:43:24 (15 hours ago)	Web attack from 139.162.155.161	Web App Attack
🇩🇪 kkeyser	2026-06-11 01:41:16 (15 hours ago)	GET /.env HTTP/1.1	Web App Attack
🇩🇪 langenkamp-media	2026-06-11 01:40:08 (15 hours ago)	Fail2Ban: Banned from jail nginx-nohome on 3dausdu.de	Web App Attack
🇫🇮 6kilowatti	2026-06-11 01:34:11 (15 hours ago)	[11/Jun/2026:01:34:09 +0000] 400 - GET http 83.148.240.21 "/.env" [Client 139.162.155.161] [Length 2 ... show more [11/Jun/2026:01:34:09 +0000] 400 - GET http 83.148.240.21 "/.env" [Client 139.162.155.161] [Length 252] [Gzip -] "Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);" "-" [11/Jun/2026:01:34:11 +0000] 400 - GET http 83.148.240.21 "/.git/config" [Client 139.162.155.161] [Length 252] [Gzip -] "Mozilla/5.0; Keydrop.io/1.0(onlyscans.com/about);" "-" ... show less	Web App Attack
🇵🇾 armandosaucedo.me	2026-06-11 00:53:24 (16 hours ago)	Threat Intelligence via ARMTI, Web Attack: GET /.env	Web App Attack
🇺🇸 mw	2026-06-11 00:35:16 (16 hours ago)	GET /.env HTTP/1.1	Web App Attack
🇩🇪 check-the-sum.fr	2026-06-10 22:35:16 (18 hours ago)	Port Scanning	Port Scan
🇩🇪 Zentro	2026-06-10 22:24:34 (18 hours ago)	Automated honeypot/fail2ban detection	Port Scan Hacking Web App Attack
🇩🇪 sdos.es	2026-06-10 21:39:16 (19 hours ago)	"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /.env"	Web App Attack
🇸🇰 DSSYSTEMS	2026-06-10 21:27:14 (19 hours ago)	Automatic report from DSS firewall log.	Port Scan Hacking Brute-Force

Showing 1 to 15 of 235 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 210.156.0.132

🇳🇱 176.65.148.243

🇺🇸 162.216.149.170

🇩🇪 141.11.45.97

🇨🇦 138.197.162.152

🇨🇳 113.97.58.46

🇨🇳 111.26.63.87

🇧🇩 103.161.68.95

🇺🇸 100.29.192.121

🇳🇱 95.85.226.199

🇷🇴 92.118.39.229

🇮🇳 59.96.111.24

🇸🇬 43.163.90.141

🇧🇪 198.235.24.232

🇬🇧 193.163.125.220

🇻🇳 165.154.137.186

🇺🇸 154.92.23.249

🇨🇳 118.145.144.95

🇺🇸 45.33.40.18

🇮🇳 27.123.104.78