JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.162.89.53

139.162.89.53 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 59%: ?

59%

ISP	139.162.0.0/16
Usage Type	Data Center/Web Hosting/Transit
ASN	AS63949
Hostname(s)	139-162-89-53.ip.linodeusercontent.com
Domain Name	linode.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.162.89.53

Whois 139.162.89.53

IP Abuse Reports for 139.162.89.53:

This IP address has been reported a total of 12 times from 10 distinct sources. 139.162.89.53 was first reported on June 20th 2026, and the most recent report was 7 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 mouafiq	2026-06-23 09:46:31 (7 minutes ago)	2026-06-23 09:46:30,344 8878 INFO ? werkzeug: 139.162.89.53 - - [23/Jun/2026 09:46:30] "GET /aws/con ... show more 2026-06-23 09:46:30,344 8878 INFO ? werkzeug: 139.162.89.53 - - [23/Jun/2026 09:46:30] "GET /aws/config HTTP/1.0" 404 - 1 0.002 0.007 2026-06-23 09:46:30,545 8878 INFO ? werkzeug: 139.162.89.53 - - [23/Jun/2026 09:46:30] "GET /api HTTP/1.0" 404 - 1 0.002 0.008 2026-06-23 09:46:30,763 8878 INFO ? werkzeug: 139.162.89.53 - - [23/Jun/2026 09:46:30] "GET /keys.ts HTTP/1.0" 404 - 1 0.002 0.010 2026-06-23 09:46:30,939 14345 INFO ? werkzeug: 139.162.89.53 - - [23/Jun/2026 09:46:30] "GET /cloudbuild.yaml HTTP/1.0" 404 - 1 0.002 0.011 2026-06-23 09:46:30,944 8878 INFO ? werkzeug: 139.162.89.53 - - [23/Jun/2026 09:46:30] "GET /api/debug HTTP/1.0" 404 - 1 0.001 0.021 show less	Brute-Force SSH
🇩🇪 ecs.ge	2026-06-23 05:17:47 (4 hours ago)	Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.	Web App Attack Hacking
🇺🇸 i553041	2026-06-22 23:35:21 (10 hours ago)	139.162.89.53 - - [22/Jun/2026:23:35:17 +0000] "GET / HTTP/1.1" 200 409 "-" "Mozilla/5.0 (Windows NT ... show more 139.162.89.53 - - [22/Jun/2026:23:35:17 +0000] "GET / HTTP/1.1" 200 409 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 139.162.89.53 - - [22/Jun/2026:23:35:17 +0000] "GET / HTTP/1.1" 200 409 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 139.162.89.53 - - [22/Jun/2026:23:35:18 +0000] "GET /template.yaml HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 139.162.89.53 - - [22/Jun/2026:23:35:18 +0000] "GET /bitbucket-pipelines.yml HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 139.162.89.53 - - [22/Jun/2026:23:35:18 +0000] "GET /js/ HTTP/1.1" 404 181 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 139.162.89. ... show less	Brute-Force SSH
🇩🇪 netclix.gr	2026-06-22 23:24:58 (10 hours ago)	(mod_security) mod_security triggered on hostname [redacted] 139.162.89.53 (JP/Japan/139-162-89-53.i ... show more (mod_security) mod_security triggered on hostname [redacted] 139.162.89.53 (JP/Japan/139-162-89-53.ip.linodeusercontent.com): (CF_ENABLE) show less	SQL Injection
🇩🇪 EnthecSolutions	2026-06-22 22:02:06 (11 hours ago)	Detected by Enthec Solutions. \| Attempts: 179 in 24h \| Target port: 80	Web App Attack
🇧🇪 voormedia	2026-06-22 19:27:12 (14 hours ago)	Accessed trap at '/docker-compose.yml'	Web App Attack
Anonymous	2026-06-22 10:32:22 (23 hours ago)	PAD: Bad_Web_Bot_D,ModSec_Critical,ModSec_Scanner! detected	Hacking
🇧🇪 voormedia	2026-06-22 05:19:47 (1 day ago)	Accessed trap at '/.aws/config'	Web App Attack
🇺🇸 Matthew Ping	2026-06-22 02:00:03 (1 day ago)	ModSecurity rule 949110 triggered on server. Web application attack blocked by CSF/LFD.	Web App Attack Hacking
🇺🇸 juguemosalacarioca.com	2026-06-21 01:23:17 (2 days ago)	Multiple HTTP calls attempting to GET resources using common API calls or formats on port 8080	Web App Attack
🇧🇪 voormedia	2026-06-21 00:14:05 (2 days ago)	Accessed trap at '/.aws/credentials'	Web App Attack
🇩🇪 tentwentyfour	2026-06-20 21:00:21 (2 days ago)	Blocked for probing for sensitive web application components	Brute-Force Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇪 140.99.201.22

🇻🇳 123.19.68.9

🇹🇷 88.248.248.242

🇲🇾 60.53.155.96

🇷🇴 2.57.121.25

🇵🇱 194.180.49.219

🇨🇳 180.212.92.223

🇱🇹 141.98.9.130

🇫🇷 91.231.89.70

🇸🇦 64.137.215.128

🇩🇪 45.135.141.18

🇮🇩 223.25.108.2

🇲🇽 187.191.48.23

🇩🇪 187.77.91.73

🇹🇭 182.52.109.76

🇺🇸 162.216.150.208

🇨🇳 124.117.194.39

🇨🇳 115.190.44.249

🇮🇳 103.54.101.248

🇷🇴 92.118.39.62