174.138.48.137

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	[portscan] tcp/22 [SSH] [scan/connect: 2 time(s)] *(RWIN=65535)(04301449)	2020-05-01 02:22:10

Comments on same subnet:

IP	Type	Details	Datetime
174.138.48.152	attackbotsspam	SSH Bruteforce attack	2020-09-01 12:38:29
174.138.48.152	attackspam	Bruteforce detected by fail2ban	2020-09-01 00:42:47
174.138.48.152	attackspam	Aug 31 06:21:26 ajax sshd[9851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.48.152 Aug 31 06:21:28 ajax sshd[9851]: Failed password for invalid user qwt from 174.138.48.152 port 38034 ssh2	2020-08-31 13:22:30
174.138.48.152	attackspambots	Aug 5 22:32:22 vps sshd[10048]: Failed password for root from 174.138.48.152 port 36438 ssh2 Aug 5 22:37:29 vps sshd[10329]: Failed password for root from 174.138.48.152 port 45302 ssh2 ...	2020-08-06 04:54:18
174.138.48.152	attackspam	Failed password for root from 174.138.48.152 port 48084 ssh2	2020-08-04 07:37:44
174.138.48.152	attackspambots	Jul 28 12:52:11 vps639187 sshd\[15749\]: Invalid user zychao from 174.138.48.152 port 48684 Jul 28 12:52:11 vps639187 sshd\[15749\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.48.152 Jul 28 12:52:13 vps639187 sshd\[15749\]: Failed password for invalid user zychao from 174.138.48.152 port 48684 ssh2 ...	2020-07-28 18:54:15
174.138.48.152	attack	leo_www	2020-07-24 01:35:17
174.138.48.152	attack	Jul 22 18:21:11 sxvn sshd[186082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.48.152	2020-07-23 01:15:58
174.138.48.152	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-18T13:22:37Z and 2020-07-18T13:33:38Z	2020-07-19 02:50:57
174.138.48.152	attackbotsspam	Jul 18 05:51:51 minden010 sshd[9269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.48.152 Jul 18 05:51:53 minden010 sshd[9269]: Failed password for invalid user gv from 174.138.48.152 port 37266 ssh2 Jul 18 05:56:33 minden010 sshd[9918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.48.152 ...	2020-07-18 12:12:26
174.138.48.152	attackspam	Jul 14 20:25:14 Invalid user yizhi from 174.138.48.152 port 51482	2020-07-15 03:57:38
174.138.48.152	attackspam	Brute-force attempt banned	2020-07-14 00:14:54
174.138.48.152	attack	SSH Invalid Login	2020-07-10 06:11:11
174.138.48.152	attackbots	Jun 30 21:55:54 ArkNodeAT sshd\[18224\]: Invalid user user from 174.138.48.152 Jun 30 21:55:54 ArkNodeAT sshd\[18224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.48.152 Jun 30 21:55:57 ArkNodeAT sshd\[18224\]: Failed password for invalid user user from 174.138.48.152 port 49516 ssh2	2020-07-01 22:34:31
174.138.48.152	attackspam	Jun 24 09:27:16 debian-2gb-nbg1-2 kernel: \[15242303.624590\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=174.138.48.152 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=10296 PROTO=TCP SPT=47310 DPT=11065 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-24 18:48:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 174.138.48.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11716
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;174.138.48.137.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020043001 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 01 02:22:06 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 137.48.138.174.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 137.48.138.174.in-addr.arpa.: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.15.84.255	attackbots	SSH Brute-Force reported by Fail2Ban	2019-11-23 03:21:54
112.85.42.94	attackbots	Nov 22 16:44:20 pkdns2 sshd\[17899\]: Failed password for root from 112.85.42.94 port 13660 ssh2Nov 22 16:44:23 pkdns2 sshd\[17899\]: Failed password for root from 112.85.42.94 port 13660 ssh2Nov 22 16:44:26 pkdns2 sshd\[17899\]: Failed password for root from 112.85.42.94 port 13660 ssh2Nov 22 16:47:01 pkdns2 sshd\[18014\]: Failed password for root from 112.85.42.94 port 27953 ssh2Nov 22 16:47:05 pkdns2 sshd\[18014\]: Failed password for root from 112.85.42.94 port 27953 ssh2Nov 22 16:47:08 pkdns2 sshd\[18014\]: Failed password for root from 112.85.42.94 port 27953 ssh2 ...	2019-11-23 03:49:13
50.199.94.84	attack	$f2bV_matches	2019-11-23 03:36:44
220.186.121.217	attackbotsspam	badbot	2019-11-23 03:25:19
14.177.222.254	attackspam	Unauthorized connection attempt from IP address 14.177.222.254 on Port 445(SMB)	2019-11-23 03:51:01
117.67.95.138	attackbotsspam	badbot	2019-11-23 03:24:34
125.209.112.14	attackspam	Unauthorized connection attempt from IP address 125.209.112.14 on Port 445(SMB)	2019-11-23 03:22:34
51.75.32.141	attack	Nov 22 20:38:58 vpn01 sshd[11497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.32.141 Nov 22 20:39:00 vpn01 sshd[11497]: Failed password for invalid user trolle from 51.75.32.141 port 58022 ssh2 ...	2019-11-23 03:58:49
201.27.137.122	attackbotsspam	Unauthorised access (Nov 22) SRC=201.27.137.122 LEN=52 TOS=0x10 PREC=0x40 TTL=112 ID=17693 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 22) SRC=201.27.137.122 LEN=52 TOS=0x10 PREC=0x40 TTL=112 ID=24449 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 19) SRC=201.27.137.122 LEN=52 TOS=0x10 PREC=0x40 TTL=112 ID=18577 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-23 03:19:07
106.12.78.161	attackspam	Nov 22 18:43:05 server sshd\[11429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.78.161 user=root Nov 22 18:43:06 server sshd\[11429\]: Failed password for root from 106.12.78.161 port 50624 ssh2 Nov 22 19:48:14 server sshd\[28407\]: Invalid user lippincott from 106.12.78.161 Nov 22 19:48:14 server sshd\[28407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.78.161 Nov 22 19:48:16 server sshd\[28407\]: Failed password for invalid user lippincott from 106.12.78.161 port 42186 ssh2 ...	2019-11-23 03:34:56
1.245.61.144	attackspambots	2019-11-22T19:24:21.467902abusebot-6.cloudsearch.cf sshd\[7800\]: Invalid user vcsa from 1.245.61.144 port 36096	2019-11-23 03:46:59
210.56.28.219	attack	SSH Bruteforce attack	2019-11-23 03:57:19
14.232.160.55	attackbotsspam	Unauthorized connection attempt from IP address 14.232.160.55 on Port 445(SMB)	2019-11-23 03:44:19
112.252.123.156	attack	badbot	2019-11-23 03:46:28
208.113.200.127	attackspambots	208.113.200.127 has been banned for [spam] ...	2019-11-23 03:57:46

Recently Reported IPs

66.192.127.82	171.38.151.68	162.243.143.189	162.243.136.184
162.243.136.67	167.224.64.5	121.180.88.172	170.118.189.253
102.245.12.101	127.95.188.81	252.95.217.134	121.155.94.248
219.69.222.114	153.103.193.124	41.252.184.213	237.205.96.242
213.196.29.43	137.33.25.95	253.86.169.30	3.27.134.211