174.138.40.214

Basic Info

City: North Bergen

Region: New Jersey

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	xmlrpc attack	2020-01-31 23:04:29

Comments on same subnet:

IP	Type	Details	Datetime
174.138.40.185	attack	2020-10-12T11:49:19.428346abusebot-6.cloudsearch.cf sshd[17261]: Invalid user tiffany from 174.138.40.185 port 48554 2020-10-12T11:49:19.434695abusebot-6.cloudsearch.cf sshd[17261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.40.185 2020-10-12T11:49:19.428346abusebot-6.cloudsearch.cf sshd[17261]: Invalid user tiffany from 174.138.40.185 port 48554 2020-10-12T11:49:21.686423abusebot-6.cloudsearch.cf sshd[17261]: Failed password for invalid user tiffany from 174.138.40.185 port 48554 ssh2 2020-10-12T11:52:30.760313abusebot-6.cloudsearch.cf sshd[17324]: Invalid user shinobu from 174.138.40.185 port 54398 2020-10-12T11:52:30.765866abusebot-6.cloudsearch.cf sshd[17324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.40.185 2020-10-12T11:52:30.760313abusebot-6.cloudsearch.cf sshd[17324]: Invalid user shinobu from 174.138.40.185 port 54398 2020-10-12T11:52:32.902582abusebot-6.cloudsearch.cf ss ...	2020-10-12 20:34:11
174.138.40.185	attackbots	Oct 12 01:07:28 prod4 sshd\[15672\]: Invalid user test12 from 174.138.40.185 Oct 12 01:07:30 prod4 sshd\[15672\]: Failed password for invalid user test12 from 174.138.40.185 port 41556 ssh2 Oct 12 01:10:44 prod4 sshd\[16712\]: Failed password for root from 174.138.40.185 port 47214 ssh2 ...	2020-10-12 12:02:49
174.138.40.185	attackspam	Oct 2 15:42:29 corona-Z97-D3H sshd[67045]: refused connect from 174.138.40.185 (174.138.40.185) ...	2020-10-03 05:18:35
174.138.40.185	attack	SSH brute-force attempt	2020-10-03 00:42:03
174.138.40.185	attackbotsspam	Oct 2 17:38:38 itv-usvr-01 sshd[20433]: Invalid user oracle2 from 174.138.40.185	2020-10-02 21:11:44
174.138.40.185	attack	'Fail2Ban'	2020-10-02 17:44:26
174.138.40.185	attack	Invalid user appuser from 174.138.40.185 port 34886	2020-10-02 14:11:07
174.138.40.185	attackbotsspam	Aug 25 10:14:48 dhoomketu sshd[2646277]: Invalid user chenj from 174.138.40.185 port 35798 Aug 25 10:14:48 dhoomketu sshd[2646277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.40.185 Aug 25 10:14:48 dhoomketu sshd[2646277]: Invalid user chenj from 174.138.40.185 port 35798 Aug 25 10:14:50 dhoomketu sshd[2646277]: Failed password for invalid user chenj from 174.138.40.185 port 35798 ssh2 Aug 25 10:17:55 dhoomketu sshd[2646321]: Invalid user mi from 174.138.40.185 port 35022 ...	2020-08-25 12:57:27
174.138.40.210	attack	May 30 22:21:05 entropy sshd[27282]: Failed password for r.r from 174.138.40.210 port 42306 ssh2 May 30 22:21:05 entropy sshd[27284]: Invalid user admin from 174.138.40.210 May 30 22:21:08 entropy sshd[27284]: Failed password for invalid user admin from 174.138.40.210 port 46198 ssh2 May 30 22:21:08 entropy sshd[27286]: Invalid user admin from 174.138.40.210 May 30 22:21:10 entropy sshd[27286]: Failed password for invalid user admin from 174.138.40.210 port 49636 ssh2 May 30 22:21:11 entropy sshd[27288]: Invalid user user from 174.138.40.210 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=174.138.40.210	2020-05-31 06:44:38
174.138.40.40	attack	'Fail2Ban'	2020-05-25 03:00:29
174.138.40.40	attackspam	May 14 06:44:51 mout sshd[12481]: Invalid user mahesh from 174.138.40.40 port 58366	2020-05-14 13:41:24
174.138.40.149	attackbots	6379/tcp [2020-05-11]1pkt	2020-05-12 01:47:49
174.138.40.40	attackbots	May 7 22:28:40 ns382633 sshd\[30497\]: Invalid user jenkins from 174.138.40.40 port 54220 May 7 22:28:40 ns382633 sshd\[30497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.40.40 May 7 22:28:43 ns382633 sshd\[30497\]: Failed password for invalid user jenkins from 174.138.40.40 port 54220 ssh2 May 7 22:37:14 ns382633 sshd\[32546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.40.40 user=root May 7 22:37:16 ns382633 sshd\[32546\]: Failed password for root from 174.138.40.40 port 41734 ssh2	2020-05-08 06:48:31
174.138.40.40	attackspam	May 6 23:17:57 srv206 sshd[3036]: Invalid user submit from 174.138.40.40 May 6 23:17:57 srv206 sshd[3036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=onlinekaspersky.store May 6 23:17:57 srv206 sshd[3036]: Invalid user submit from 174.138.40.40 May 6 23:17:59 srv206 sshd[3036]: Failed password for invalid user submit from 174.138.40.40 port 40856 ssh2 ...	2020-05-07 06:18:41
174.138.40.40	attack	2020-05-05T01:00:05.679720abusebot-3.cloudsearch.cf sshd[30414]: Invalid user stefan from 174.138.40.40 port 42614 2020-05-05T01:00:05.686449abusebot-3.cloudsearch.cf sshd[30414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=onlinekaspersky.store 2020-05-05T01:00:05.679720abusebot-3.cloudsearch.cf sshd[30414]: Invalid user stefan from 174.138.40.40 port 42614 2020-05-05T01:00:08.134966abusebot-3.cloudsearch.cf sshd[30414]: Failed password for invalid user stefan from 174.138.40.40 port 42614 ssh2 2020-05-05T01:03:43.430061abusebot-3.cloudsearch.cf sshd[30611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=onlinekaspersky.store user=root 2020-05-05T01:03:45.807867abusebot-3.cloudsearch.cf sshd[30611]: Failed password for root from 174.138.40.40 port 53264 ssh2 2020-05-05T01:07:34.352846abusebot-3.cloudsearch.cf sshd[30907]: Invalid user siva from 174.138.40.40 port 35698 ...	2020-05-05 14:36:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 174.138.40.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48441
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;174.138.40.214.			IN	A

;; AUTHORITY SECTION:
.			133	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013003 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 04:01:44 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 214.40.138.174.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.40.138.174.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
88.146.219.245	attackspambots	detected by Fail2Ban	2020-03-19 22:52:26
94.75.29.92	attackspam	Fail2Ban Ban Triggered	2020-03-19 23:28:42
45.151.254.218	attackspam	45.151.254.218 was recorded 8 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 8, 74, 1962	2020-03-19 23:19:52
178.87.163.133	attackbotsspam	1584622907 - 03/19/2020 14:01:47 Host: 178.87.163.133/178.87.163.133 Port: 445 TCP Blocked	2020-03-19 23:43:10
193.37.193.196	attack	Chat Spam	2020-03-19 23:35:33
95.9.232.100	attackbotsspam	Unauthorized connection attempt from IP address 95.9.232.100 on Port 445(SMB)	2020-03-19 23:42:16
202.52.59.56	attack	Automatic report - Port Scan Attack	2020-03-19 23:37:50
114.237.109.93	attackbotsspam	SpamScore above: 10.0	2020-03-19 22:51:51
113.160.227.86	attackbots	Unauthorized connection attempt from IP address 113.160.227.86 on Port 445(SMB)	2020-03-19 23:27:13
14.243.47.244	attackspam	Unauthorized connection attempt from IP address 14.243.47.244 on Port 445(SMB)	2020-03-19 23:42:46
36.108.175.68	attackspam	SSH bruteforce	2020-03-19 23:02:50
89.204.155.73	attackspam	Lines containing failures of 89.204.155.73 Mar 18 18:50:23 shared12 postfix/submission/smtpd[5378]: connect from x59cc9b49.dyn.telefonica.de[89.204.155.73] Mar x@x Mar 18 18:50:23 shared12 postfix/submission/smtpd[5378]: disconnect from x59cc9b49.dyn.telefonica.de[89.204.155.73] ehlo=2 starttls=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=5/7 Mar x@x Mar 19 05:38:58 shared12 dovecot: imap-login: Login: user=	2020-03-19 22:58:19
134.175.117.8	attackbots	Feb 18 22:43:18 pi sshd[1242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.117.8 user=gnats Feb 18 22:43:20 pi sshd[1242]: Failed password for invalid user gnats from 134.175.117.8 port 49264 ssh2	2020-03-19 23:21:16
185.46.14.44	attackbotsspam	Unauthorized connection attempt from IP address 185.46.14.44 on Port 445(SMB)	2020-03-19 23:26:25
118.24.177.72	attackspambots	Mar 19 14:16:08 ewelt sshd[11746]: Invalid user minecraft from 118.24.177.72 port 54542 Mar 19 14:16:10 ewelt sshd[11746]: Failed password for invalid user minecraft from 118.24.177.72 port 54542 ssh2 Mar 19 14:19:33 ewelt sshd[12018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.177.72 user=root Mar 19 14:19:35 ewelt sshd[12018]: Failed password for root from 118.24.177.72 port 53780 ssh2 ...	2020-03-19 23:12:21

Recently Reported IPs

106.52.109.120	141.144.213.197	104.140.114.116	16.19.157.237
197.141.79.194	78.255.37.101	159.100.229.150	108.113.232.99
8.99.27.216	118.103.145.95	206.2.110.47	85.83.212.49
233.206.69.99	21.54.54.27	7.69.64.63	25.181.183.251
80.108.84.46	26.16.62.235	209.62.59.66	106.174.149.2