Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
174.138.20.105 attack
Banned for a week because repeated abuses, for example SSH, but not only
2020-10-13 00:13:33
174.138.20.105 attackbotsspam
2020-10-12T03:18:18+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)
2020-10-12 15:35:56
174.138.20.105 attackspam
2020-10-08T17:58:11.015372hostname sshd[70237]: Failed password for root from 174.138.20.105 port 36342 ssh2
...
2020-10-09 03:18:42
174.138.20.105 attackspam
2020-10-08T17:58:08.886151hostname sshd[70237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.20.105  user=root
2020-10-08T17:58:11.015372hostname sshd[70237]: Failed password for root from 174.138.20.105 port 36342 ssh2
...
2020-10-08 19:23:11
174.138.27.165 attackbots
Sep 30 22:37:37 DAAP sshd[1807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165  user=root
Sep 30 22:37:40 DAAP sshd[1807]: Failed password for root from 174.138.27.165 port 43600 ssh2
Sep 30 22:43:46 DAAP sshd[1977]: Invalid user 123456 from 174.138.27.165 port 44280
Sep 30 22:43:46 DAAP sshd[1977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165
Sep 30 22:43:46 DAAP sshd[1977]: Invalid user 123456 from 174.138.27.165 port 44280
Sep 30 22:43:48 DAAP sshd[1977]: Failed password for invalid user 123456 from 174.138.27.165 port 44280 ssh2
...
2020-10-01 06:08:17
174.138.27.165 attack
Sep 30 13:54:09 gospond sshd[5074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165 
Sep 30 13:54:09 gospond sshd[5074]: Invalid user sales from 174.138.27.165 port 34120
Sep 30 13:54:11 gospond sshd[5074]: Failed password for invalid user sales from 174.138.27.165 port 34120 ssh2
...
2020-09-30 22:28:55
174.138.27.165 attackspambots
2020-09-29T22:06:51.726371dreamphreak.com sshd[448882]: Invalid user uji from 174.138.27.165 port 48244
2020-09-29T22:06:54.203453dreamphreak.com sshd[448882]: Failed password for invalid user uji from 174.138.27.165 port 48244 ssh2
...
2020-09-30 15:00:47
174.138.27.165 attackspam
Failed password for invalid user anna from 174.138.27.165 port 48504 ssh2
2020-09-23 02:55:31
174.138.27.165 attack
Invalid user activemq from 174.138.27.165 port 59424
2020-09-22 19:03:56
174.138.27.165 attack
$f2bV_matches
2020-09-14 21:57:06
174.138.27.165 attack
leo_www
2020-09-14 13:50:45
174.138.27.165 attack
Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-13T19:48:08Z and 2020-09-13T19:54:22Z
2020-09-14 05:48:37
174.138.27.165 attack
2020-09-10T11:45:49.392965vps1033 sshd[15550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165
2020-09-10T11:45:49.387630vps1033 sshd[15550]: Invalid user tomcat from 174.138.27.165 port 39180
2020-09-10T11:45:51.592138vps1033 sshd[15550]: Failed password for invalid user tomcat from 174.138.27.165 port 39180 ssh2
2020-09-10T11:49:51.067598vps1033 sshd[23864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165  user=root
2020-09-10T11:49:53.163294vps1033 sshd[23864]: Failed password for root from 174.138.27.165 port 40106 ssh2
...
2020-09-10 21:26:35
174.138.27.165 attack
Lines containing failures of 174.138.27.165
Sep  7 16:30:56 neon sshd[37687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165  user=r.r
Sep  7 16:30:58 neon sshd[37687]: Failed password for r.r from 174.138.27.165 port 38812 ssh2
Sep  7 16:31:00 neon sshd[37687]: Received disconnect from 174.138.27.165 port 38812:11: Bye Bye [preauth]
Sep  7 16:31:00 neon sshd[37687]: Disconnected from authenticating user r.r 174.138.27.165 port 38812 [preauth]
Sep  7 16:33:25 neon sshd[37724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165  user=r.r


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=174.138.27.165
2020-09-10 13:12:00
174.138.27.165 attackbots
k+ssh-bruteforce
2020-09-10 03:56:56
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 174.138.2.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32513
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;174.138.2.65.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 23:35:32 CST 2022
;; MSG SIZE  rcvd: 105
Host info
Host 65.2.138.174.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 65.2.138.174.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
216.244.66.227 attack
20 attempts against mh-misbehave-ban on plane.magehost.pro
2019-07-08 14:20:20
5.188.210.226 attack
Port scan attempt detected by AWS-CCS, CTS, India
2019-07-08 14:27:31
202.175.186.211 attackspambots
Attempted SSH login
2019-07-08 14:09:36
112.17.175.59 attackspambots
Caught in portsentry honeypot
2019-07-08 13:49:37
62.197.120.198 attackspambots
Jul  7 22:56:33 *** sshd[22939]: Invalid user matt from 62.197.120.198
2019-07-08 14:33:50
79.150.203.238 attackbots
[ER hit] Tried to deliver spam. Already well known.
2019-07-08 14:03:55
197.45.1.222 attack
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-07 22:06:52,269 INFO [amun_request_handler] PortScan Detected on Port: 445 (197.45.1.222)
2019-07-08 14:28:11
77.42.104.110 attackbots
Unauthorised access (Jul  8) SRC=77.42.104.110 LEN=44 PREC=0x20 TTL=49 ID=51072 TCP DPT=23 WINDOW=61241 SYN
2019-07-08 13:50:31
89.25.80.202 attackbotsspam
Unauthorised access (Jul  8) SRC=89.25.80.202 LEN=44 TTL=244 ID=53442 TCP DPT=445 WINDOW=1024 SYN 
Unauthorised access (Jul  1) SRC=89.25.80.202 LEN=44 TTL=244 ID=6845 TCP DPT=445 WINDOW=1024 SYN
2019-07-08 14:20:52
51.255.174.215 attackspam
Jul  8 08:07:01 amit sshd\[16831\]: Invalid user applmgr from 51.255.174.215
Jul  8 08:07:01 amit sshd\[16831\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.174.215
Jul  8 08:07:03 amit sshd\[16831\]: Failed password for invalid user applmgr from 51.255.174.215 port 41037 ssh2
...
2019-07-08 14:13:01
154.117.206.235 attack
19/7/7@18:57:13: FAIL: Alarm-Intrusion address from=154.117.206.235
...
2019-07-08 14:15:42
2.133.146.145 attackspam
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 05:32:54,411 INFO [amun_request_handler] PortScan Detected on Port: 445 (2.133.146.145)
2019-07-08 14:28:46
5.233.207.244 attackspambots
08.07.2019 00:57:20 - RDP Login Fail Detected by 
https://www.elinox.de/RDP-Wächter
2019-07-08 14:15:09
23.90.46.237 attack
WordPress XMLRPC scan :: 23.90.46.237 1.576 BYPASS [08/Jul/2019:08:59:14  1000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 200 382 "https://www.[censored_1]/" "PHP/7.2.91"
2019-07-08 13:43:45
49.234.129.230 attack
Caught in portsentry honeypot
2019-07-08 14:24:29

Recently Reported IPs

174.138.190.74 174.138.26.14 174.138.27.139 174.138.204.42
174.138.26.9 174.138.22.223 174.138.2.224 174.138.28.10
174.138.30.25 174.138.32.16 174.138.32.4 174.138.32.184
174.138.31.88 174.138.33.90 174.138.34.44 174.138.36.172
174.138.35.133 174.138.34.147 174.138.36.187 174.138.37.52