IP Address

137.184.190.246

IPv4 Public
US US
AS14061
DIGITALOCEAN-ASN
1,974 Reports
This IP is on the Blacklist High confidence threat - blocking recommended
8/10 Threat
83% Confidence
1,974 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Above Average Risk
US
US Location
DIGITALOCEAN-ASN ASN 14061
1,974 Reports
Honeypot Data Source

Substantial Risk

IP 137.184.190.246 is a high-risk address operated through DigitalOcean's AS14061 infrastructure in the United States, with a threat level of 8/10 and a confidence score of 84%. This IP has accumulated 1,885 total abuse reports from 20 independent automated honeypot sensors over a nine-month reporting window spanning September 2025 through June 2026, making it one of the most consistently reported addresses within its network block.

The dominant threat activity recorded against this IP falls into the Hacking category, accounting for 18 of the most recent reports alongside 2 Exploited Host classifications. The reported attack patterns describe general intrusion activity consistent with automated exploitation attempts, including unauthorized connection probes and malware-related behavior. The sustained volume of reports combined with an activity frequency rating of 8/10 indicates this is not an isolated incident but rather persistent scanning or exploitation activity originating from or passing through this DigitalOcean address.

The Hacking designation encompasses a broad range of intrusion techniques, including vulnerability exploitation, credential attacks, and attempts to gain unauthorized system access. When paired with the Exploited Host classification, this suggests the IP may be functioning as an active attack platform conducting automated probes against internet-facing services. For any organization running exposed SSH, HTTP, or other network services, this address represents a concrete threat vector capable of testing defenses at scale.

Site operators should block 137.184.190.246 at the firewall or network perimeter level immediately. Implement rate-limiting on authentication endpoints and enforce strong credential policies to mitigate brute-force risks. Keep all software and firmware patched to reduce exposure to known vulnerabilities. Consider deploying defensive tools such as fail2ban to automatically ban repeated offenders and monitor logs for any connection attempts from this address to identify potential compromise or lateral movement.

More threatening than 80% of monitored IPs

Threat Categories

Hacking 30

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Behavioral Analysis

Activity Pattern: Consistent Activity

Steady malicious activity over 4 weeks indicates persistent threat actor operations.

First Observed 11. May 2026
Last Activity 9. June 2026
Recent (7 days) 79 incidents

Cloud Infrastructure

This IP operates from DigitalOcean cloud infrastructure. Cloud-hosted threats can be provisioned and abandoned quickly, affecting attribution.

Cloud-hosted malicious activity often indicates automated or scalable attack infrastructure.

Security Recommendations

Long-term blocking recommended.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 8/10 High
Critical
Activity Frequency 8/10 High
Confidence Score 83% Verified

Confidence History

6. Jun 2026 - 9. Jun 2026
83% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
10 of 1974 shown

Technical Details

Basic Information

IP Address
137.184.190.246
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class B

Geolocation

Country
US US
ASN
AS14061
ISP
DIGITALOCEAN-ASN

DNS Information

Reverse DNS
fish.census.shodan.io
PTR Record
Yes
Connection Type
Static

Statistics

Total Reports
1,974
First Reported
10 Sep 2025
Last Reported
9 Jun 2026, 08:26

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS14061
DigitalOcean, LLC
NL NL

Network Threat Assessment

4/10
This network has low threat indicators with minimal suspicious activity.

Network Statistics

10,971
Total IPs Monitored
417,845
Total Reports
38.1
Reports per IP

Network Context

This IP address belongs to DigitalOcean, LLC (AS14061), which manages 10,971 IP addresses in our monitoring system. Out of these, 417,845 have been reported for suspicious activities, resulting in a network-wide threat level of 4/10.

Network notice: This network shows some suspicious activity patterns. Monitor interactions with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

80 %

Global Threat Ranking

This IP is more threatening than 80% of all IPs in our database.

High Threat Percentile

Global Comparison

Compared against 199,487 reported IPs worldwide

Threat Level 8/10 avg: 5.3 ++
Total Reports 1,974 avg: 23 ++

Network Comparison

Compared against 12,102 IPs in ASN 14061

Threat Level 8/10 network avg: 4.6 ++
Total Reports 1,974 network avg: 36 ++
Network DIGITALOCEAN-ASN has overall threat level 4/10

Geographic Comparison

Compared against 38,446 IPs in US

Threat Level 8/10 country avg: 5.9 +
Total Reports 1,974 country avg: 41 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,140 threat incidents tracked globally • Last 24h: 19,043 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US THIS IP
    38,446 20.5%
  2. 02
    IN
    India IN
    29,023 15.5%
  3. 03
    CN
    China CN
    26,021 13.9%
  4. 04
    BR
    Brazil BR
    10,256 5.5%
  5. 05
    DE
    Germany DE
    7,142 3.8%
  6. 06
    SG
    Singapore SG
    6,476 3.5%
  7. 07
    ID
    Indonesia ID
    5,539 3%
  8. 08
    RU
    Russia RU
    4,703 2.5%
  9. 09
    PK
    Pakistan PK
    4,654 2.5%
  10. 10
    NL
    Netherlands NL
    4,356 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

20 Related IPs
9.1/10 Avg Threat
99% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
167.71.226.156 8/10
Confidence 100%
Reports 161
Location IN IN
13 May 2026
142.93.215.41 8/10
Confidence 100%
Reports 81
Location IN IN
8 Jun 2026
208.68.37.246 8/10
Confidence 100%
Reports 56
Location US US
9 Jun 2026
167.71.136.93 10/10
Confidence 100%
Reports 39
Location GB GB
9 Jun 2026
207.154.230.149 10/10
Confidence 100%
Reports 33
Location DE DE
5 Jun 2026
159.89.229.13 10/10
Confidence 100%
Reports 18
Location US US
10 May 2026
104.248.218.184 10/10
Confidence 100%
Reports 17
Location US US
8 Jun 2026
139.59.4.137 10/10
Confidence 100%
Reports 17
Location IN IN
8 Jun 2026
128.199.129.98 8/10
Confidence 99%
Reports 55
Location SG SG
11 Mar 2026
142.93.217.129 8/10
Confidence 99%
Reports 40
Location IN IN
8 May 2026
64.227.152.124 8/10
Confidence 99%
Reports 35
Location IN IN
5 May 2026
209.38.69.153 10/10
Confidence 99%
Reports 32
Location US US
19 May 2026
139.59.6.237 10/10
Confidence 99%
Reports 26
Location IN IN
8 Jun 2026
67.205.189.163 10/10
Confidence 99%
Reports 17
Location US US
8 Jun 2026
143.198.75.153 10/10
Confidence 99%
Reports 15
Location US US
3 Jun 2026
67.205.178.44 10/10
Confidence 98%
Reports 57
Location US US
13 May 2026
165.22.116.110 8/10
Confidence 98%
Reports 48
Location GB GB
1 Jun 2026
159.89.193.35 8/10
Confidence 98%
Reports 48
Location SG SG
21 May 2026
165.22.95.96 8/10
Confidence 98%
Reports 41
Location DE DE
26 May 2026
46.101.216.224 10/10
Confidence 98%
Reports 37
Location DE DE
9 Jun 2026

IPs from the same subnet range, likely same network segment.

3 Related IPs
7.7/10 Avg Threat
59% Avg Confidence
3 High Threat
High-risk network: Majority of related IPs are flagged
137.184.190.194 8/10
Confidence 79%
Reports 2,871
Location US US
9 Jun 2026
137.184.190.205 8/10
Confidence 79%
Reports 2,781
Location US US
9 Jun 2026
137.184.190.180 7/10
Confidence 19%
Reports 1
Location US US
4 Oct 2025

IPs from the same country with similar threat profiles.

15 Related IPs
8.3/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
208.109.188.137 8/10
Confidence 100%
Reports 514
ISP GO-DADDY-COM-LLC
9 Jun 2026
50.6.7.129 8/10
Confidence 100%
Reports 447
ISP ORACLE-BMC-31898
22 May 2026
72.167.150.128 8/10
Confidence 100%
Reports 429
ISP GO-DADDY-COM-LLC
27 May 2026
50.6.229.148 8/10
Confidence 100%
Reports 346
ISP ORACLE-BMC-31898
9 May 2026
87.121.84.30 8/10
Confidence 100%
Reports 295
ISP Vpsvault.host Ltd
20 Apr 2026
50.6.226.221 10/10
Confidence 100%
Reports 223
ISP ORACLE-BMC-31898
2 Mar 2026
31.57.184.107 8/10
Confidence 100%
Reports 202
ISP Netiface LLC
3 Jun 2026
64.31.25.250 8/10
Confidence 100%
Reports 176
ISP Limestone Netwo...
8 Jun 2026
74.206.180.196 8/10
Confidence 100%
Reports 143
ISP MOJOHOST
4 Jun 2026
35.226.7.126 8/10
Confidence 100%
Reports 131
ISP Google LLC
18 May 2026
147.135.37.185 8/10
Confidence 100%
Reports 131
ISP OVH SAS
14 May 2026
162.241.152.21 8/10
Confidence 100%
Reports 126
ISP Network Solutio...
8 Jun 2026
38.95.35.74 8/10
Confidence 100%
Reports 112
ISP Limestone Netwo...
2 Jun 2026
50.6.169.131 8/10
Confidence 100%
Reports 106
ISP Network Solutio...
6 Jun 2026
162.214.206.32 10/10
Confidence 100%
Reports 98
ISP Unified Layer
30 May 2026

IPs with similar threat level and confidence scores.

15 Related IPs
8.9/10 Avg Threat
83% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
2a01:04f8:c012:4640:0000:0000:0000:0001 10/10
Confidence 83%
Reports 19,894
Location DE DE
9 Jun 2026
207.90.244.21 8/10
Confidence 83%
Reports 12,276
Location US US
9 Jun 2026
207.90.244.22 8/10
Confidence 83%
Reports 12,095
Location US US
9 Jun 2026
147.182.202.179 8/10
Confidence 83%
Reports 7,635
Location US US
9 Jun 2026
130.12.181.108 8/10
Confidence 83%
Reports 3,208
Location DE DE
6 Jun 2026
130.12.181.100 8/10
Confidence 83%
Reports 3,068
Location DE DE
6 Jun 2026
2.57.122.208 10/10
Confidence 83%
Reports 2,772
Location RO RO
13 May 2026
80.94.92.71 10/10
Confidence 83%
Reports 1,718
Location RO RO
3 Jun 2026
64.62.197.197 8/10
Confidence 83%
Reports 584
Location US US
9 Jun 2026
80.94.92.184 10/10
Confidence 83%
Reports 577
Location RO RO
4 Jun 2026
65.49.1.162 8/10
Confidence 83%
Reports 562
Location US US
9 Jun 2026
167.94.146.49 8/10
Confidence 83%
Reports 552
Location US US
9 Jun 2026
77.90.185.17 10/10
Confidence 83%
Reports 449
Location DE DE
9 Jun 2026
14.18.190.138 10/10
Confidence 83%
Reports 437
Location CN CN
9 Jun 2026
62.60.130.228 10/10
Confidence 83%
Reports 379
Location IR IR
9 Jun 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "137.184.190.246",
    "threat_level": 8,
    "confidence_score": 83,
    "total_reports": 1974,
    "country_code": "US",
    "isp_name": "DIGITALOCEAN-ASN",
    "asn": "14061",
    "first_reported": "2025-09-10 06:53:28",
    "last_reported": "2026-06-09 08:26:27",
    "exported_at": "2026-06-09T09:04:17+02:00",
    "source": "https://reportedip.de/ip/137.184.190.246/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses