137.184.152.147 Threat Intelligence and Host Information

Share on:
Mar 17, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 137.184.152.147 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 40/100

Host and Network Information

  • Tags: Bruteforce, Brute-Force, cyber security, ioc, malicious, Nextray, phishing, SSH

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: blocklist_de, blocklist_de_ssh

  • Country: United States
  • Network: AS14061 digitalocean llc
  • Noticed: 50 times
  • Protocols Attacked: ssh
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

1000 10001 1012 10134 102 1024 10243 1025 1026 104 10554 10909 10911 1099 11 110 11000 111 1111 11112 1119 11210 11300 11434 1153 119 1200 12000 121 122 1234 13 1311 1344 135 1355 13579 139 1400 14147 14265 143 1433 14344 15 1521 16010 1604 17 1723 1741 175 179 180 1800 1801 18081 18245 1833 1883 19000 19071 1911 1926 1935 195 1962 2000 20000 2008 2012 2018 20256 2050 2051 20547 2056 2065 2067 2077 2080 2086 2087 21 21025 2121 21379 2154 2181 22 22021 221 2222 2225 23424 2345 2375 2404 2455 25 25001 25105 2549 2551 2556 25565 2560 2563 2598 26 2601 264 2761 2762 28015 28017 2985 3000 3001 3049 3050 3053 3054 3059 3076 3078 3081 3085 3086 3088 3090 3091 3093 3100 3104 3117 3128 31337 3221 3232 3260 3268 3269 3299 3301 3306 3310 3333 3388 3389 3400 3401 3408 3409 3460 3523 3551 3560 3563 3567 35780 3689 37215 3749 37777 3791 3793 389 4000 4022 4040 4063 4064 4157 41800 4242 4243 427 4282 43 4321 4369 44158 443 4430 4444 445 44818 4500 4506 4567 465 47463 4782 4786 48226 4840 4848 4899 49 4911 49152 49153 4949 5000 50000 5005 50050 5007 50070 5009 5010 502 5025 503 5070 51106 51235 515 5190 5201 5222 5269 5280 52869 54138 5432 548 5494 55000 55442 5555 55554 5560 5601 5605 5672 5800 5801 5853 5858 587 5900 5901 5907 5908 59417 5984 5985 6000 60001 6001 60010 6002 60030 6004 6005 6008 6080 61613 61616 62078 631 6352 636 6379 6443 6550 6565 6588 6600 6633 6650 6653 666 6664 6667 6668 6887 70 7000 7001 7004 7005 7022 7070 7415 7433 7444 7500 7547 7634 7654 7657 771 772 777 7777 7779 7887 789 79 7989 80 8000 8001 8002 8008 8009 8010 8014 8016 8017 8020 8023 8027 8037 8038 8046 8047 8048 8055 8060 8069 8080 8085 8086 8087 8092 8098 8103 8106 8111 8112 8126 8159 8182 82 8200 8237 83 830 8333 8383 84 8401 8414 8418 8421 8426 843 8431 8448 8545 8553 8554 8575 86 8649 8688 873 8789 8790 8791 88 8800 8813 8814 8823 8826 8827 8828 8834 8835 8843 8845 8848 8855 8858 8860 8867 8870 8875 8876 8881 8885 8888 8891 8899 9000 9002 9003 9008 9009 902 9028 9029 9042 9046 9080 9092 9100 9108 9109 9151 9160 9200 9204 9206 9208 9211 9213 9214 9216 9218 9299 9303 9306 9308 9311 9389 9418 9530 9600 9633 9682 9690 97 9761 9876 9898 99 992 9944 995 9981 9991 9998 9999

Map

Whois Information

  • NetRange: 137.184.0.0 - 137.184.255.255
  • CIDR: 137.184.0.0/16
  • NetName: DIGITALOCEAN-137-184-0-0
  • NetHandle: NET-137-184-0-0-1
  • Parent: NET137 (NET-137-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS14061
  • Organization: DigitalOcean, LLC (DO-13)
  • RegDate: 2019-11-13
  • Updated: 2020-04-03
  • Comment: Routing and Peering Policy can be found at https://www.as14061.net
  • Comment:
  • Ref: https://rdap.arin.net/registry/ip/137.184.0.0
  • OrgName: DigitalOcean, LLC
  • OrgId: DO-13
  • Address: 101 Ave of the Americas
  • Address: FL2
  • City: New York
  • StateProv: NY
  • PostalCode: 10013
  • Country: US
  • RegDate: 2012-05-14
  • Updated: 2023-10-23
  • Ref: https://rdap.arin.net/registry/entity/DO-13
  • OrgNOCHandle: NOC32014-ARIN
  • OrgNOCName: Network Operations Center
  • OrgNOCPhone: +1-347-875-6044
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
  • OrgTechHandle: NOC32014-ARIN
  • OrgTechName: Network Operations Center
  • OrgTechPhone: +1-347-875-6044
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
  • OrgAbuseHandle: ABUSE5232-ARIN
  • OrgAbuseName: Abuse, DigitalOcean
  • OrgAbusePhone: +1-347-875-6044
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5232-ARIN

Links to attack logs

** vultrmadrid-ssh-bruteforce-ip-list-2023-03-16 dolondon-ssh-bruteforce-ip-list-2023-03-20 ** **