37.139.4.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 30 05:04:14 plex-server sshd[975729]: Invalid user chat from 37.139.4.138 port 35901 Aug 30 05:04:14 plex-server sshd[975729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 Aug 30 05:04:14 plex-server sshd[975729]: Invalid user chat from 37.139.4.138 port 35901 Aug 30 05:04:16 plex-server sshd[975729]: Failed password for invalid user chat from 37.139.4.138 port 35901 ssh2 Aug 30 05:07:27 plex-server sshd[977209]: Invalid user QWEasdZXC123 from 37.139.4.138 port 52722 ...	2020-08-30 13:15:02
attackbots	Aug 12 15:48:32 piServer sshd[25840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 Aug 12 15:48:35 piServer sshd[25840]: Failed password for invalid user asd-123 from 37.139.4.138 port 41605 ssh2 Aug 12 15:52:55 piServer sshd[26324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 ...	2020-08-12 22:07:15
attack	Aug 10 04:53:22 pve1 sshd[4449]: Failed password for root from 37.139.4.138 port 34461 ssh2 ...	2020-08-10 12:34:03
attackspam	2020-08-08T12:11:05.935774abusebot-4.cloudsearch.cf sshd[16126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 user=root 2020-08-08T12:11:07.822330abusebot-4.cloudsearch.cf sshd[16126]: Failed password for root from 37.139.4.138 port 35544 ssh2 2020-08-08T12:14:16.420309abusebot-4.cloudsearch.cf sshd[16143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 user=root 2020-08-08T12:14:18.863545abusebot-4.cloudsearch.cf sshd[16143]: Failed password for root from 37.139.4.138 port 51957 ssh2 2020-08-08T12:16:03.818654abusebot-4.cloudsearch.cf sshd[16155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 user=root 2020-08-08T12:16:06.280794abusebot-4.cloudsearch.cf sshd[16155]: Failed password for root from 37.139.4.138 port 33172 ssh2 2020-08-08T12:17:47.069336abusebot-4.cloudsearch.cf sshd[16166]: pam_unix(sshd:auth): authenticat ...	2020-08-08 20:42:27
attack	2020-07-29T05:51:28+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-07-29 17:22:28
attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-07-24 14:33:39
attackspam	Failed password for invalid user admin from 37.139.4.138 port 58743 ssh2	2020-06-30 08:32:30
attack	Jun 20 00:47:24 firewall sshd[20148]: Invalid user fabien from 37.139.4.138 Jun 20 00:47:26 firewall sshd[20148]: Failed password for invalid user fabien from 37.139.4.138 port 40433 ssh2 Jun 20 00:48:02 firewall sshd[20161]: Invalid user 123456 from 37.139.4.138 ...	2020-06-20 18:09:03
attackbots	no	2020-06-19 13:50:30
attack	2020-06-14 05:53:01,024 fail2ban.actions [937]: NOTICE [sshd] Ban 37.139.4.138 2020-06-14 06:27:20,344 fail2ban.actions [937]: NOTICE [sshd] Ban 37.139.4.138 2020-06-14 07:01:56,743 fail2ban.actions [937]: NOTICE [sshd] Ban 37.139.4.138 2020-06-14 07:35:13,437 fail2ban.actions [937]: NOTICE [sshd] Ban 37.139.4.138 2020-06-14 08:08:42,757 fail2ban.actions [937]: NOTICE [sshd] Ban 37.139.4.138 ...	2020-06-14 15:44:16
attackbots	2020-06-10T05:52:52.457614galaxy.wi.uni-potsdam.de sshd[7965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 2020-06-10T05:52:52.455493galaxy.wi.uni-potsdam.de sshd[7965]: Invalid user temp from 37.139.4.138 port 50926 2020-06-10T05:52:55.192947galaxy.wi.uni-potsdam.de sshd[7965]: Failed password for invalid user temp from 37.139.4.138 port 50926 ssh2 2020-06-10T05:53:22.959885galaxy.wi.uni-potsdam.de sshd[8041]: Invalid user com from 37.139.4.138 port 53463 2020-06-10T05:53:22.961646galaxy.wi.uni-potsdam.de sshd[8041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 2020-06-10T05:53:22.959885galaxy.wi.uni-potsdam.de sshd[8041]: Invalid user com from 37.139.4.138 port 53463 2020-06-10T05:53:25.149808galaxy.wi.uni-potsdam.de sshd[8041]: Failed password for invalid user com from 37.139.4.138 port 53463 ssh2 2020-06-10T05:53:52.993822galaxy.wi.uni-potsdam.de sshd[8119]: Invalid user ...	2020-06-10 13:39:50
attackbotsspam	SSH brutforce	2020-06-05 19:31:39
attackbotsspam	Apr 27 05:52:04 ns382633 sshd\[9375\]: Invalid user cps from 37.139.4.138 port 47343 Apr 27 05:52:04 ns382633 sshd\[9375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 Apr 27 05:52:06 ns382633 sshd\[9375\]: Failed password for invalid user cps from 37.139.4.138 port 47343 ssh2 Apr 27 05:58:35 ns382633 sshd\[10440\]: Invalid user natasa from 37.139.4.138 port 56604 Apr 27 05:58:35 ns382633 sshd\[10440\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138	2020-04-27 13:17:19
attackspambots	Invalid user qq from 37.139.4.138 port 36629	2020-04-22 00:17:40
attackspambots	SSH Brute-Force reported by Fail2Ban	2020-04-08 15:44:35
attackbotsspam	Mar 9 04:53:06 mail sshd[16374]: Invalid user pengcan from 37.139.4.138 Mar 9 04:53:06 mail sshd[16374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 Mar 9 04:53:06 mail sshd[16374]: Invalid user pengcan from 37.139.4.138 Mar 9 04:53:09 mail sshd[16374]: Failed password for invalid user pengcan from 37.139.4.138 port 38592 ssh2 Mar 9 17:58:32 mail sshd[22480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 user=root Mar 9 17:58:34 mail sshd[22480]: Failed password for root from 37.139.4.138 port 38290 ssh2 ...	2020-03-10 02:12:34
attack	Feb 28 11:06:30 gw1 sshd[31844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 Feb 28 11:06:32 gw1 sshd[31844]: Failed password for invalid user vpopmail from 37.139.4.138 port 45089 ssh2 ...	2020-02-28 16:14:43
attack	SSH Brute Force	2020-02-26 08:04:13
attackbotsspam	Dec 26 22:00:43 vps691689 sshd[22868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 Dec 26 22:00:45 vps691689 sshd[22868]: Failed password for invalid user darbie from 37.139.4.138 port 36794 ssh2 ...	2019-12-27 05:06:26
attackspambots	Invalid user hung from 37.139.4.138 port 36798	2019-12-23 08:41:55
attack	SSH Brute-Force reported by Fail2Ban	2019-12-09 17:23:34
attack	Nov 22 08:29:38 MK-Soft-Root2 sshd[16622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 Nov 22 08:29:39 MK-Soft-Root2 sshd[16622]: Failed password for invalid user cmz from 37.139.4.138 port 37527 ssh2 ...	2019-11-22 16:00:47
attackspam	Nov 17 14:18:36 dedicated sshd[15316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 user=root Nov 17 14:18:38 dedicated sshd[15316]: Failed password for root from 37.139.4.138 port 49067 ssh2 Nov 17 14:21:54 dedicated sshd[15820]: Invalid user 21idc from 37.139.4.138 port 38920 Nov 17 14:21:54 dedicated sshd[15820]: Invalid user 21idc from 37.139.4.138 port 38920	2019-11-17 21:44:13
attackspambots	Nov 13 08:39:17 dedicated sshd[22927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 user=root Nov 13 08:39:18 dedicated sshd[22927]: Failed password for root from 37.139.4.138 port 38934 ssh2	2019-11-13 15:45:14
attack	Nov 6 23:59:10 vps01 sshd[10654]: Failed password for root from 37.139.4.138 port 54055 ssh2	2019-11-07 07:16:36
attack	2019-11-06T19:21:08.531183abusebot-2.cloudsearch.cf sshd\[31658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 user=root	2019-11-07 03:46:30
attackbots	Nov 4 06:21:16 localhost sshd[15747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 Nov 4 06:21:16 localhost sshd[15747]: Invalid user Admin from 37.139.4.138 port 35021 Nov 4 06:21:18 localhost sshd[15747]: Failed password for invalid user Admin from 37.139.4.138 port 35021 ssh2 Nov 4 06:25:09 localhost sshd[15899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 user=root Nov 4 06:25:10 localhost sshd[15899]: Failed password for root from 37.139.4.138 port 54610 ssh2	2019-11-04 18:26:10
attackbots	" "	2019-10-31 00:12:58
attackbots	SSH Brute-Force reported by Fail2Ban	2019-10-25 00:04:54
attack	Oct 19 14:12:27 localhost sshd\[37841\]: Invalid user builduser from 37.139.4.138 port 45319 Oct 19 14:12:27 localhost sshd\[37841\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 Oct 19 14:12:30 localhost sshd\[37841\]: Failed password for invalid user builduser from 37.139.4.138 port 45319 ssh2 Oct 19 14:16:06 localhost sshd\[37939\]: Invalid user adm from 37.139.4.138 port 36586 Oct 19 14:16:06 localhost sshd\[37939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.4.138 ...	2019-10-19 22:55:13

Comments on same subnet:

IP	Type	Details	Datetime
37.139.47.126	attackspambots	Jun 12 06:59:33 minden010 sshd[1099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.47.126 Jun 12 06:59:34 minden010 sshd[1099]: Failed password for invalid user admin from 37.139.47.126 port 33781 ssh2 Jun 12 07:02:53 minden010 sshd[2593]: Failed password for root from 37.139.47.126 port 34538 ssh2 ...	2020-06-12 13:57:41
37.139.47.126	attackbots	Jun 3 06:05:38 home sshd[28498]: Failed password for root from 37.139.47.126 port 60642 ssh2 Jun 3 06:09:10 home sshd[28822]: Failed password for root from 37.139.47.126 port 34548 ssh2 ...	2020-06-03 15:09:04
37.139.47.126	attackspam	May 25 07:53:50 server1 sshd\[7080\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.47.126 user=root May 25 07:53:52 server1 sshd\[7080\]: Failed password for root from 37.139.47.126 port 59304 ssh2 May 25 07:57:32 server1 sshd\[8751\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.47.126 user=root May 25 07:57:33 server1 sshd\[8751\]: Failed password for root from 37.139.47.126 port 34007 ssh2 May 25 08:01:17 server1 sshd\[9774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.47.126 user=mail ...	2020-05-25 22:18:05
37.139.47.126	attackbotsspam	May 1 08:34:44 legacy sshd[28942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.47.126 May 1 08:34:46 legacy sshd[28942]: Failed password for invalid user moodle from 37.139.47.126 port 60092 ssh2 May 1 08:38:33 legacy sshd[29042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.47.126 ...	2020-05-01 14:42:11
37.139.47.126	attack	Apr 24 22:07:18 Invalid user bhargav from 37.139.47.126 port 47093	2020-04-25 05:46:44

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 37.139.4.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48616
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;37.139.4.138.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042901 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 30 04:04:09 +08 2019
;; MSG SIZE  rcvd: 116

Host info

Host 138.4.139.37.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 138.4.139.37.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.82.70.118	attack	Unauthorized connection attempt detected from IP address 80.82.70.118 to port 873 [T]	2020-08-13 08:45:22
64.227.86.151	attackbotsspam	[Fri Aug 07 17:43:01 2020] - DDoS Attack From IP: 64.227.86.151 Port: 47790	2020-08-13 08:49:00
118.68.11.199	attack	Unauthorized connection attempt from IP address 118.68.11.199 on Port 445(SMB)	2020-08-13 08:56:58
167.172.117.26	attack	$f2bV_matches	2020-08-13 08:59:05
178.79.152.119	attackbots	[Tue Aug 04 19:26:51 2020] - DDoS Attack From IP: 178.79.152.119 Port: 40281	2020-08-13 08:50:56
213.217.1.43	attack	Triggered: repeated knocking on closed ports.	2020-08-13 09:05:25
213.81.178.115	attackbotsspam	firewall-block, port(s): 8080/tcp	2020-08-13 09:08:17
106.13.145.44	attack	Aug 13 00:21:29 electroncash sshd[32562]: Failed password for gnats from 106.13.145.44 port 47066 ssh2 Aug 13 00:25:42 electroncash sshd[33647]: Invalid user !@#qweASD0 from 106.13.145.44 port 52080 Aug 13 00:25:42 electroncash sshd[33647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.145.44 Aug 13 00:25:42 electroncash sshd[33647]: Invalid user !@#qweASD0 from 106.13.145.44 port 52080 Aug 13 00:25:45 electroncash sshd[33647]: Failed password for invalid user !@#qweASD0 from 106.13.145.44 port 52080 ssh2 ...	2020-08-13 08:48:03
106.55.148.138	attackspambots	2020-08-12T21:45:12.047321ionos.janbro.de sshd[9423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.148.138 user=root 2020-08-12T21:45:14.102643ionos.janbro.de sshd[9423]: Failed password for root from 106.55.148.138 port 47156 ssh2 2020-08-12T21:47:13.203034ionos.janbro.de sshd[9431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.148.138 user=root 2020-08-12T21:47:15.534604ionos.janbro.de sshd[9431]: Failed password for root from 106.55.148.138 port 42636 ssh2 2020-08-12T21:49:17.302835ionos.janbro.de sshd[9433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.148.138 user=root 2020-08-12T21:49:18.656002ionos.janbro.de sshd[9433]: Failed password for root from 106.55.148.138 port 38116 ssh2 2020-08-12T21:57:57.286918ionos.janbro.de sshd[9455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.14 ...	2020-08-13 08:49:29
119.96.230.241	attack	Aug 13 00:06:27 ajax sshd[7187]: Failed password for root from 119.96.230.241 port 41319 ssh2	2020-08-13 09:01:56
118.24.17.128	attackbots	Scanned 3 times in the last 24 hours on port 22	2020-08-13 09:17:37
103.31.157.206	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-08-13 08:47:16
217.56.27.242	attackbotsspam	Unauthorised access (Aug 13) SRC=217.56.27.242 LEN=52 TTL=107 ID=31961 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-13 08:56:27
112.85.42.172	attackspambots	Aug 13 02:38:13 ns381471 sshd[26500]: Failed password for root from 112.85.42.172 port 21753 ssh2 Aug 13 02:38:17 ns381471 sshd[26500]: Failed password for root from 112.85.42.172 port 21753 ssh2	2020-08-13 08:40:38
218.92.0.223	attackspam	Aug 12 21:32:00 firewall sshd[7653]: Failed password for root from 218.92.0.223 port 3207 ssh2 Aug 12 21:32:04 firewall sshd[7653]: Failed password for root from 218.92.0.223 port 3207 ssh2 Aug 12 21:32:07 firewall sshd[7653]: Failed password for root from 218.92.0.223 port 3207 ssh2 ...	2020-08-13 08:39:30

Recently Reported IPs

218.65.5.176	57.102.105.178	220.66.7.250	103.248.85.244
203.80.244.154	103.116.91.2	186.159.2.249	185.156.177.2
95.80.164.20	45.117.42.125	195.19.217.27	59.10.138.195
185.110.136.23	114.5.21.206	115.68.27.52	220.178.18.42
122.140.95.92	159.65.116.47	182.99.127.63	186.84.211.36