IP address

Search at other sites:

.225138.197.116.58

Shodan(more info)

Passive DNS

IP blacklists

blocklist.de SSH

138.197.116.58 is listed on the blocklist.de SSH blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs performing SSH attacks.
Type of feed: primary (feed detail page)

Last checked at: 2024-05-18 10:05:00.509000
Was present on blacklist at: 2024-05-17 22:05, 2024-05-18 04:05, 2024-05-18 10:05

AbuseIPDB

138.197.116.58 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>IPs performing malicious activity(DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2024-05-18 04:00:00.491000
Was present on blacklist at: 2024-05-18 04:00

Warden events (148)

2024-05-18

ReconScanning (node.bd32ad): 23

ReconScanning (node.293592): 10

ReconScanning (node.7d83c0): 12

AttemptLogin (node.7d83c0): 2

2024-05-17

ReconScanning (node.7d83c0): 24

ReconScanning (node.bd32ad): 58

ReconScanning (node.293592): 17

AttemptLogin (node.7d83c0): 2

DShield reports (IP summary, reports)

2024-05-17

Number of reports: 119

Distinct targets: 51

Origin AS

AS14061 - DIGITALOCEAN-ASN

BGP Prefix

138.197.112.0/20

geo

United States, Clifton

🕑 America/New_York

hostname

(null)

Address block ('inetnum' or 'NetRange' in whois database)

138.197.0.0 - 138.197.255.255

last_activity

2024-05-18 03:14:21

last_warden_event

2024-05-18 03:14:21

rep

0.225

reserved_range

0

Shodan's InternetDB

Open ports: 8080

Tags: cloud

CPEs: –

ts_added

2024-05-17 16:58:29.325000

ts_last_update

2024-05-18 10:06:55.611000

Warden event timeline

DShield event timeline

Presence on blacklists