Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Tokyo

Region: Tokyo

Country: Japan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
139.162.123.29 attackbots
firewall-block, port(s): 8000/tcp
2020-10-04 06:52:43
139.162.123.29 attack
TCP port : 8000
2020-10-03 23:03:30
139.162.123.103 attackbotsspam
Port Scan detected!
...
2020-05-24 22:19:12
139.162.123.29 attack
Port scan: Attack repeated for 24 hours
2020-05-16 07:25:41
139.162.123.103 attack
SIP/5060 Probe, BF, Hack -
2020-03-18 07:12:02
139.162.123.29 attack
Port 8000 (Internet Radio casting) access denied
2020-03-11 01:37:29
139.162.123.103 attack
Scanning random ports - tries to find possible vulnerable services
2020-03-06 05:59:00
139.162.123.103 attack
Feb 10 17:49:51 debian-2gb-nbg1-2 kernel: \[3612626.069171\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=139.162.123.103 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=55424 DPT=34567 WINDOW=65535 RES=0x00 SYN URGP=0
2020-02-11 02:08:21
139.162.123.29 attackbots
Port scan: Attack repeated for 24 hours
2020-02-04 16:37:08
139.162.123.103 attackbots
" "
2020-02-04 15:18:54
139.162.123.29 attackbotsspam
MultiHost/MultiPort Probe, Scan, Hack -
2019-12-24 06:33:36
139.162.123.103 attackspambots
firewall-block, port(s): 34567/tcp
2019-12-15 13:36:23
139.162.123.103 attackbotsspam
IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.
2019-12-12 17:59:20
139.162.123.103 attackbots
" "
2019-12-09 01:12:53
139.162.123.29 attackbotsspam
firewall-block, port(s): 8000/tcp
2019-12-07 16:41:00
Whois info:
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       139.162.0.0 - 139.162.255.255
CIDR:           139.162.0.0/16
NetName:        RIPE-ERX-139-162-0-0
NetHandle:      NET-139-162-0-0-1
Parent:         NET139 (NET-139-0-0-0-0)
NetType:        Early Registrations, Transferred to RIPE NCC
OriginAS:       
Organization:   RIPE Network Coordination Centre (RIPE)
RegDate:        2004-03-03
Updated:        2025-02-10
Comment:        These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref:            https://rdap.arin.net/registry/ip/139.162.0.0

ResourceLink:  https://apps.db.ripe.net/db-web-ui/query
ResourceLink:  whois.ripe.net


OrgName:        RIPE Network Coordination Centre
OrgId:          RIPE
Address:        P.O. Box 10096
City:           Amsterdam
StateProv:      
PostalCode:     1001EB
Country:        NL
RegDate:        
Updated:        2013-07-29
Ref:            https://rdap.arin.net/registry/entity/RIPE

ReferralServer:  whois.ripe.net
ResourceLink:  https://apps.db.ripe.net/db-web-ui/query

OrgTechHandle: RNO29-ARIN
OrgTechName:   RIPE NCC Operations
OrgTechPhone:  +31 20 535 4444 
OrgTechEmail:  hostmaster@ripe.net
OrgTechRef:    https://rdap.arin.net/registry/entity/RNO29-ARIN

OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName:   Abuse Contact
OrgAbusePhone:  +31205354444 
OrgAbuseEmail:  abuse@ripe.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE3850-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.123.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34744
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.162.123.111.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026071000 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 10 16:01:17 CST 2026
;; MSG SIZE  rcvd: 108
Host info
111.123.162.139.in-addr.arpa domain name pointer scan-77.security.ipip.net.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
111.123.162.139.in-addr.arpa	name = scan-77.security.ipip.net.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
192.42.116.13 attack
CMS (WordPress or Joomla) login attempt.
2020-05-03 02:15:47
159.203.219.38 attackspambots
k+ssh-bruteforce
2020-05-03 02:51:01
94.42.165.180 attackbots
Fail2Ban Ban Triggered (2)
2020-05-03 02:13:17
83.59.253.138 attack
May  2 14:03:39 PorscheCustomer sshd[27539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.59.253.138
May  2 14:03:41 PorscheCustomer sshd[27539]: Failed password for invalid user miner from 83.59.253.138 port 58568 ssh2
May  2 14:09:00 PorscheCustomer sshd[27675]: Failed password for root from 83.59.253.138 port 42688 ssh2
...
2020-05-03 02:16:20
51.178.60.24 attackbots
May  2 19:32:55 meumeu sshd[31798]: Failed password for root from 51.178.60.24 port 38350 ssh2
May  2 19:36:48 meumeu sshd[32341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.60.24 
May  2 19:36:50 meumeu sshd[32341]: Failed password for invalid user demo from 51.178.60.24 port 50046 ssh2
...
2020-05-03 02:37:55
3.223.104.32 attackbotsspam
3.223.104.32 - - \[02/May/2020:16:52:54 +0200\] "POST /wp-login.php HTTP/1.0" 200 6827 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
3.223.104.32 - - \[02/May/2020:16:52:57 +0200\] "POST /wp-login.php HTTP/1.0" 200 6642 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
3.223.104.32 - - \[02/May/2020:16:52:58 +0200\] "POST /wp-login.php HTTP/1.0" 200 6639 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-05-03 02:34:57
212.77.138.155 attackspambots
[Sat May 02 00:21:42 2020] [error] [client 212.77.138.155] client sent HTTP/1.1 request without hostname (see RFC2616 section 14.23): /
2020-05-03 02:29:52
2.95.58.142 attack
May  2 19:47:35 h1745522 sshd[1023]: Invalid user wuqianhan from 2.95.58.142 port 35628
May  2 19:47:35 h1745522 sshd[1023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.95.58.142
May  2 19:47:35 h1745522 sshd[1023]: Invalid user wuqianhan from 2.95.58.142 port 35628
May  2 19:47:37 h1745522 sshd[1023]: Failed password for invalid user wuqianhan from 2.95.58.142 port 35628 ssh2
May  2 19:49:49 h1745522 sshd[1101]: Invalid user um from 2.95.58.142 port 41912
May  2 19:49:49 h1745522 sshd[1101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.95.58.142
May  2 19:49:49 h1745522 sshd[1101]: Invalid user um from 2.95.58.142 port 41912
May  2 19:49:51 h1745522 sshd[1101]: Failed password for invalid user um from 2.95.58.142 port 41912 ssh2
May  2 19:52:11 h1745522 sshd[1191]: Invalid user zhaokai from 2.95.58.142 port 48188
...
2020-05-03 02:10:31
152.136.119.164 attackspam
May  2 14:17:23 roki-contabo sshd\[22239\]: Invalid user incoming from 152.136.119.164
May  2 14:17:23 roki-contabo sshd\[22239\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.119.164
May  2 14:17:26 roki-contabo sshd\[22239\]: Failed password for invalid user incoming from 152.136.119.164 port 36380 ssh2
May  2 14:26:15 roki-contabo sshd\[22392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.119.164  user=root
May  2 14:26:17 roki-contabo sshd\[22392\]: Failed password for root from 152.136.119.164 port 36614 ssh2
...
2020-05-03 02:17:50
163.172.49.56 attackspambots
Brute-force attempt banned
2020-05-03 02:12:44
79.137.74.57 attack
May  2 19:22:50 MainVPS sshd[9596]: Invalid user cp from 79.137.74.57 port 54355
May  2 19:22:50 MainVPS sshd[9596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.74.57
May  2 19:22:50 MainVPS sshd[9596]: Invalid user cp from 79.137.74.57 port 54355
May  2 19:22:52 MainVPS sshd[9596]: Failed password for invalid user cp from 79.137.74.57 port 54355 ssh2
May  2 19:27:59 MainVPS sshd[13853]: Invalid user deploy from 79.137.74.57 port 60190
...
2020-05-03 02:08:56
5.196.38.14 attack
May  2 23:38:52 webhost01 sshd[1392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.38.14
May  2 23:38:53 webhost01 sshd[1392]: Failed password for invalid user piotr from 5.196.38.14 port 53215 ssh2
...
2020-05-03 02:48:51
106.52.192.107 attackbots
$f2bV_matches
2020-05-03 02:32:38
201.68.166.209 attack
Honeypot attack, port: 81, PTR: 201-68-166-209.dsl.telesp.net.br.
2020-05-03 02:41:16
54.37.9.10 attackspam
May  3 01:01:07 localhost sshd[1738508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.9.10  user=root
May  3 01:01:09 localhost sshd[1738508]: Failed password for root from 54.37.9.10 port 52006 ssh2
...
2020-05-03 02:16:55

Recently Reported IPs

120.219.53.219 112.51.147.146 110.52.19.243 101.26.28.18
2606:4700:10::6816:1030 2606:4700:10::6814:4601 38.15.148.125 202.160.66.2
2606:4700:10::6814:8019 2606:4700:10::6816:984 45.61.148.157 74.7.242.43
2606:4700:10::6816:2023 2606:4700:10::6814:6535 20.195.178.90 209.99.185.81
49.7.211.228 151.243.11.236 37.59.123.164 2606:4700:10::6816:1487