139.162.65.112

Basic Info

City: Tokyo

Region: Tokyo

Country: Japan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.162.65.76	attackspam	TCP (SYN) 139.162.65.76:35379 -> port 102, len 44	2020-08-13 04:33:59
139.162.65.76	attack	TCP (SYN) 139.162.65.76:38962 -> port 102, len 44	2020-05-25 07:47:46
139.162.65.76	attack	firewall-block, port(s): 102/tcp	2020-05-23 01:34:28
139.162.65.55	attackspam	Apr 11 05:52:34 debian-2gb-nbg1-2 kernel: \[8836159.320454\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=139.162.65.55 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=44547 DPT=53 WINDOW=65535 RES=0x00 SYN URGP=0	2020-04-11 15:15:50
139.162.65.76	attackbots	Hits on port : 102	2020-04-05 08:29:17
139.162.65.76	attackspambots	trying to access non-authorized port	2020-03-23 05:20:23
139.162.65.76	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-11 01:21:23
139.162.65.55	attackspam	Port Scanning MultiHosts/TCP 53	2020-02-07 03:06:55
139.162.65.55	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-06 03:31:46
139.162.65.76	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-06 03:28:03
139.162.65.76	attackbotsspam	SIP/5060 Probe, BF, Hack -	2020-01-22 23:53:22
139.162.65.55	attackspambots	firewall-block, port(s): 53/tcp	2019-12-30 05:23:30
139.162.65.76	attackspambots	102/tcp 102/tcp 102/tcp... [2019-10-08/12-08]84pkt,1pt.(tcp)	2019-12-09 06:47:04
139.162.65.55	attackspam	UTC: 2019-11-30 port: 53/tcp	2019-12-01 21:14:36
139.162.65.55	attackspam	firewall-block, port(s): 53/tcp	2019-11-28 04:13:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.65.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28257
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.162.65.112.			IN	A

;; AUTHORITY SECTION:
.			441	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:10:41 CST 2022
;; MSG SIZE  rcvd: 107

Host info

112.65.162.139.in-addr.arpa domain name pointer li1545-112.members.linode.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
112.65.162.139.in-addr.arpa	name = li1545-112.members.linode.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.170.235.6	attack	445/tcp [2020-10-02]1pkt	2020-10-03 15:52:14
193.93.192.196	attackspambots	(mod_security) mod_security (id:210730) triggered by 193.93.192.196 (RU/Russia/-): 5 in the last 300 secs	2020-10-03 15:36:57
187.210.135.89	attack	" "	2020-10-03 15:20:12
115.236.100.36	attackspam	2020-10-03T04:09:52.585277vps-d63064a2 sshd[10489]: Invalid user user from 115.236.100.36 port 45651 2020-10-03T04:09:54.446967vps-d63064a2 sshd[10489]: Failed password for invalid user user from 115.236.100.36 port 45651 ssh2 2020-10-03T04:13:34.435166vps-d63064a2 sshd[10510]: Invalid user postgres from 115.236.100.36 port 1968 2020-10-03T04:13:34.447759vps-d63064a2 sshd[10510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.100.36 2020-10-03T04:13:34.435166vps-d63064a2 sshd[10510]: Invalid user postgres from 115.236.100.36 port 1968 2020-10-03T04:13:36.436857vps-d63064a2 sshd[10510]: Failed password for invalid user postgres from 115.236.100.36 port 1968 ssh2 ...	2020-10-03 15:54:16
205.250.77.134	attackspam	Icarus honeypot on github	2020-10-03 15:45:20
187.188.34.221	attack	Brute-force attempt banned	2020-10-03 15:42:21
113.110.245.179	attack	49152/tcp 49152/tcp 49152/tcp... [2020-10-02]4pkt,1pt.(tcp)	2020-10-03 15:48:16
45.80.105.186	attackbots	(mod_security) mod_security (id:210730) triggered by 45.80.105.186 (RU/Russia/-): 5 in the last 300 secs	2020-10-03 15:30:22
190.204.179.80	attack	445/tcp 445/tcp [2020-10-02]2pkt	2020-10-03 15:37:16
103.102.114.70	attack	445/tcp 445/tcp 445/tcp [2020-10-02]3pkt	2020-10-03 15:35:56
84.19.90.117	attackspam	srvr3: (mod_security) mod_security (id:920350) triggered by 84.19.90.117 (CZ/-/90-117.eri.cz): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/10/02 22:38:43 [error] 70998#0: 409 [client 84.19.90.117] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "16016711236.848210"] [ref "o0,14v21,14"], client: 84.19.90.117, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-10-03 15:29:54
91.144.249.132	attackspambots	1433/tcp 445/tcp... [2020-08-18/10-02]4pkt,2pt.(tcp)	2020-10-03 15:22:06
143.255.8.2	attack	Invalid user minecraft from 143.255.8.2 port 38748	2020-10-03 15:33:29
176.31.255.63	attack	SSH login attempts.	2020-10-03 15:21:14
5.125.201.248	attackspam	port scan and connect, tcp 22 (ssh)	2020-10-03 15:27:07

Recently Reported IPs

139.162.62.60	118.232.31.158	139.162.65.83	139.162.66.140
139.162.68.138	139.162.69.170	139.162.69.208	139.162.66.246
139.162.65.150	139.162.69.214	139.162.7.175	139.162.7.187
139.162.7.240	139.162.70.124	118.232.31.55	139.162.70.169
139.162.72.137	139.162.71.115	139.162.70.191	118.232.32.64