52.137.8.137 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.137.86.26	attackspambots	Unauthorized connection attempt detected from IP address 52.137.86.26 to port 1433 [T]	2020-07-22 01:58:50
52.137.86.26	attack	Jul 16 06:32:49 fhem-rasp sshd[12474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.137.86.26 user=root Jul 16 06:32:52 fhem-rasp sshd[12474]: Failed password for root from 52.137.86.26 port 50888 ssh2 ...	2020-07-16 14:48:36

Type

Details

Datetime

52.137.86.26

attackspambots

Unauthorized connection attempt detected from IP address 52.137.86.26 to port 1433 [T]

2020-07-22 01:58:50

52.137.86.26

attack

Jul 16 06:32:49 fhem-rasp sshd[12474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.137.86.26  user=root
Jul 16 06:32:52 fhem-rasp sshd[12474]: Failed password for root from 52.137.86.26 port 50888 ssh2
...

2020-07-16 14:48:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.137.8.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1787
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.137.8.137.			IN	A

;; AUTHORITY SECTION:
.			566	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091502 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 11:59:50 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 137.8.137.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 137.8.137.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.230.83.2	attackbotsspam	37215/tcp [2019-06-30]1pkt	2019-06-30 14:58:39
180.250.115.93	attackspambots	Jun 30 07:41:59 MainVPS sshd[7090]: Invalid user dbuser from 180.250.115.93 port 39735 Jun 30 07:41:59 MainVPS sshd[7090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.115.93 Jun 30 07:41:59 MainVPS sshd[7090]: Invalid user dbuser from 180.250.115.93 port 39735 Jun 30 07:42:02 MainVPS sshd[7090]: Failed password for invalid user dbuser from 180.250.115.93 port 39735 ssh2 Jun 30 07:43:59 MainVPS sshd[7245]: Invalid user postgres from 180.250.115.93 port 58005 ...	2019-06-30 15:20:09
139.59.38.22	attackbotsspam	Bruteforce on SSH Honeypot	2019-06-30 15:25:09
43.255.105.135	attackspam	10 attempts against mh-pma-try-ban on space.magehost.pro	2019-06-30 15:11:06
80.211.213.12	attack	Jun 30 01:03:11 toyboy sshd[28670]: Did not receive identification string from 80.211.213.12 Jun 30 01:03:11 toyboy sshd[28671]: Did not receive identification string from 80.211.213.12 Jun 30 01:03:11 toyboy sshd[28672]: Did not receive identification string from 80.211.213.12 Jun 30 01:03:38 toyboy sshd[28675]: Address 80.211.213.12 maps to 12.213.forpsi.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 30 01:03:38 toyboy sshd[28676]: Address 80.211.213.12 maps to 12.213.forpsi.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 30 01:03:38 toyboy sshd[28677]: Address 80.211.213.12 maps to 12.213.forpsi.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 30 01:03:38 toyboy sshd[28675]: Invalid user ghostname from 80.211.213.12 Jun 30 01:03:38 toyboy sshd[28676]: Invalid user ghostname from 80.211.213.12 Jun 30 01:03:38 toyboy sshd[28677]: Invalid user ghostname from 80.211.213.12 Jun........ -------------------------------	2019-06-30 14:44:51
36.233.94.149	attack	37215/tcp [2019-06-30]1pkt	2019-06-30 15:15:17
185.153.180.63	attackbotsspam	185.153.180.63 - - [30/Jun/2019:02:45:52 -0400] "GET /user.php?act=login HTTP/1.1" 301 250 "554fcae493e564ee0dc75bdf2ebf94caads\|a:2:{s:3:"num";s:288:"/ union select 1,0x272f2a,3,4,5,6,7,8,0x7b24617364275D3B617373657274286261736536345F6465636F646528275A6D6C735A56397764585266593239756447567564484D6F4A325A6B5A334575634768774A79776E50443977614841675A585A686243676B583142505531526262475678645630704F79412F506963702729293B2F2F7D787878,10-- -";s:2:"id";s:3:"'/";}" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)" ...	2019-06-30 15:13:01
109.122.141.136	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-06-30 15:04:42
119.99.249.225	attackbots	23/tcp [2019-06-30]1pkt	2019-06-30 15:20:42
121.226.59.2	attackbotsspam	2019-06-30T03:05:40.149660 X postfix/smtpd[15130]: warning: unknown[121.226.59.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-30T04:36:48.346547 X postfix/smtpd[30689]: warning: unknown[121.226.59.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-30T05:42:36.230551 X postfix/smtpd[47141]: warning: unknown[121.226.59.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-30 14:49:40
139.59.69.196	attack	Jun 30 04:51:36 l01 sshd[316324]: Invalid user fake from 139.59.69.196 Jun 30 04:51:36 l01 sshd[316324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.69.196 Jun 30 04:51:38 l01 sshd[316324]: Failed password for invalid user fake from 139.59.69.196 port 57898 ssh2 Jun 30 04:51:39 l01 sshd[316331]: Invalid user usuario from 139.59.69.196 Jun 30 04:51:39 l01 sshd[316331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.69.196 Jun 30 04:51:41 l01 sshd[316331]: Failed password for invalid user usuario from 139.59.69.196 port 33654 ssh2 Jun 30 04:51:42 l01 sshd[316347]: Invalid user support from 139.59.69.196 Jun 30 04:51:42 l01 sshd[316347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.69.196 Jun 30 04:51:44 l01 sshd[316347]: Failed password for invalid user support from 139.59.69.196 port 37890 ssh2 ........ ----------------------------------------------- https://	2019-06-30 14:57:20
218.92.0.198	attackspam	Jun 30 06:48:58 herz-der-gamer sshd[28885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.198 user=root Jun 30 06:49:01 herz-der-gamer sshd[28885]: Failed password for root from 218.92.0.198 port 34733 ssh2 Jun 30 06:49:03 herz-der-gamer sshd[28885]: Failed password for root from 218.92.0.198 port 34733 ssh2 Jun 30 06:48:58 herz-der-gamer sshd[28885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.198 user=root Jun 30 06:49:01 herz-der-gamer sshd[28885]: Failed password for root from 218.92.0.198 port 34733 ssh2 Jun 30 06:49:03 herz-der-gamer sshd[28885]: Failed password for root from 218.92.0.198 port 34733 ssh2 ...	2019-06-30 15:35:54
37.210.207.101	attack	60001/tcp [2019-06-30]1pkt	2019-06-30 15:18:54
177.130.138.81	attack	libpam_shield report: forced login attempt	2019-06-30 15:34:36
191.53.221.114	attackbots	Lines containing failures of 191.53.221.114 2019-06-30 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=191.53.221.114	2019-06-30 15:06:47

Recently Reported IPs

34.148.150.93	125.107.157.226	200.110.61.140	178.157.11.27
220.134.135.84	119.249.215.194	115.56.135.127	213.114.215.110
106.55.34.224	154.12.249.148	128.90.106.143	117.80.221.234
156.227.14.99	174.138.19.226	177.119.246.132	180.183.225.11
128.90.107.90	128.90.65.101	192.64.5.159	159.223.174.169