174.138.11.120 Threat Intelligence and Host Information

Feb 02, 2026 ipinfopage

General

IP Address

174.138.11.120

IPv4 Address

Location

🇳🇱 Amsterdam, Netherlands

Network

AS14061

DIGITALOCEAN-ASN

Threat Score

45/100

Medium Risk

BruteforceBrute-Forceciscocowriemaliciousscansentrypeersftp

Attack Intelligence

MITRE ATT&CK Techniques

T1595 - Active Scanning

Open Ports Detected

111

Geographic Location

Country

Netherlands

City

Amsterdam

Region

North Holland

Coordinates

52.3520, 4.9392

Network Information

ASN

AS14061

Organization

DIGITALOCEAN-ASN

Network

AS14061 DIGITALOCEAN-ASN

WHOIS Information

NetRange

174.138.0.0 - 174.138.127.255

CIDR

174.138.0.0/17

NetName

DIGITALOCEAN-174-138-0-0

NetHandle

NET-174-138-0-0-1

Parent

NET174 (NET-174-0-0-0-0)

NetType

Direct Allocation

OriginAS

Organization

DigitalOcean, LLC (DO-13)

RegDate

2012-05-14

Updated

2025-04-11

Comment

Ref

https://rdap.arin.net/registry/entity/DO-13

OrgName

DigitalOcean, LLC

OrgId

DO-13

Address

105 Edgeview Drive, Suite 425

City

Broomfield

StateProv

PostalCode

80021

Country

OrgAbuseHandle

DIGIT19-ARIN

OrgAbuseName

DigitalOcean Abuse

OrgAbusePhone

+1-646-827-4366

OrgAbuseEmail

abuse@digitalocean.com

OrgAbuseRef

https://rdap.arin.net/registry/entity/DIGIT19-ARIN

Attack Logs

Date	Target Location	Protocol	Link
2026-02-01	London, UK	SSH	View Log

Country: Netherlands
Network:
Noticed: 4 times
Protocols Attacked: ssh
Countries Attacked: Australia
Passive DNS Results: www.aritzi.fr www.verzati.it www.aritzi.it www.verzati.com www.aritzi.de www.aritzi.es www.aritzi.com verzati.de verzati.it aritzi.es verzati.es verzati.com aritzi.it www.verzati.fr verzati.fr aritzi.fr aritzi.de aritzi.com gromgosha.devops.rebrain.srwx.net leonmel8etz.com

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2024-6387 CVE-2025-26465 CVE-2025-32728

Disclaimer

This page contains threat intelligence information for the IPv4 address 174.138.11.120 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.