52.225.194.137

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	2020-05-01T16:37:35.301083vivaldi2.tree2.info sshd[31003]: Invalid user adam from 52.225.194.137 2020-05-01T16:37:35.316983vivaldi2.tree2.info sshd[31003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.225.194.137 2020-05-01T16:37:35.301083vivaldi2.tree2.info sshd[31003]: Invalid user adam from 52.225.194.137 2020-05-01T16:37:36.758635vivaldi2.tree2.info sshd[31003]: Failed password for invalid user adam from 52.225.194.137 port 39136 ssh2 2020-05-01T16:42:00.056554vivaldi2.tree2.info sshd[31222]: Invalid user jw from 52.225.194.137 ...	2020-05-01 15:56:19

Type

Details

Datetime

attackspambots

2020-05-01T16:37:35.301083vivaldi2.tree2.info sshd[31003]: Invalid user adam from 52.225.194.137
2020-05-01T16:37:35.316983vivaldi2.tree2.info sshd[31003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.225.194.137
2020-05-01T16:37:35.301083vivaldi2.tree2.info sshd[31003]: Invalid user adam from 52.225.194.137
2020-05-01T16:37:36.758635vivaldi2.tree2.info sshd[31003]: Failed password for invalid user adam from 52.225.194.137 port 39136 ssh2
2020-05-01T16:42:00.056554vivaldi2.tree2.info sshd[31222]: Invalid user jw from 52.225.194.137
...

2020-05-01 15:56:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.225.194.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65162
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.225.194.137.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050101 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 01 15:56:14 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 137.194.225.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 137.194.225.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.61.165	attackspam	2020-05-31T18:05:41.135818 sshd[25942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.61.165 user=root 2020-05-31T18:05:43.229505 sshd[25942]: Failed password for root from 106.13.61.165 port 38300 ssh2 2020-05-31T18:09:20.175707 sshd[26008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.61.165 user=root 2020-05-31T18:09:22.333451 sshd[26008]: Failed password for root from 106.13.61.165 port 40772 ssh2 ...	2020-06-01 03:24:14
119.97.164.247	attack	2020-05-31T15:10:15.386709abusebot-2.cloudsearch.cf sshd[13656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.97.164.247 user=root 2020-05-31T15:10:17.881734abusebot-2.cloudsearch.cf sshd[13656]: Failed password for root from 119.97.164.247 port 56682 ssh2 2020-05-31T15:13:14.077122abusebot-2.cloudsearch.cf sshd[13708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.97.164.247 user=root 2020-05-31T15:13:15.478098abusebot-2.cloudsearch.cf sshd[13708]: Failed password for root from 119.97.164.247 port 53134 ssh2 2020-05-31T15:16:10.334685abusebot-2.cloudsearch.cf sshd[13763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.97.164.247 user=root 2020-05-31T15:16:12.564005abusebot-2.cloudsearch.cf sshd[13763]: Failed password for root from 119.97.164.247 port 49592 ssh2 2020-05-31T15:19:13.750942abusebot-2.cloudsearch.cf sshd[13816]: pam_unix(sshd:auth): ...	2020-06-01 02:49:25
157.245.207.198	attackspambots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-01 03:16:41
103.91.181.25	attackspambots	(sshd) Failed SSH login from 103.91.181.25 (IN/India/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 31 19:42:00 ubnt-55d23 sshd[28096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.91.181.25 user=root May 31 19:42:02 ubnt-55d23 sshd[28096]: Failed password for root from 103.91.181.25 port 55690 ssh2	2020-06-01 03:05:42
189.180.11.233	attackbots	May 31 09:01:04 v11 sshd[30031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.180.11.233 user=clamav May 31 09:01:06 v11 sshd[30031]: Failed password for clamav from 189.180.11.233 port 41004 ssh2 May 31 09:01:06 v11 sshd[30031]: Received disconnect from 189.180.11.233 port 41004:11: Bye Bye [preauth] May 31 09:01:06 v11 sshd[30031]: Disconnected from 189.180.11.233 port 41004 [preauth] May 31 09:07:34 v11 sshd[30332]: Invalid user plcmspip from 189.180.11.233 port 38026 May 31 09:07:36 v11 sshd[30332]: Failed password for invalid user plcmspip from 189.180.11.233 port 38026 ssh2 May 31 09:07:36 v11 sshd[30332]: Received disconnect from 189.180.11.233 port 38026:11: Bye Bye [preauth] May 31 09:07:36 v11 sshd[30332]: Disconnected from 189.180.11.233 port 38026 [preauth] May 31 09:09:46 v11 sshd[30760]: Invalid user test from 189.180.11.233 port 57984 May 31 09:09:49 v11 sshd[30760]: Failed password for invalid user test fro........ -------------------------------	2020-06-01 03:10:37
80.218.89.85	attackbotsspam	Automatic report - Banned IP Access	2020-06-01 02:53:05
185.100.87.241	attackspambots	RDP Brute-Force (Grieskirchen RZ2)	2020-06-01 02:50:35
106.12.162.201	attackspam	k+ssh-bruteforce	2020-06-01 02:50:16
160.124.140.178	attackbotsspam	Failed password for root from 160.124.140.178 port 57582 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.140.178 user=root Failed password for root from 160.124.140.178 port 60434 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.140.178 user=root Failed password for root from 160.124.140.178 port 35052 ssh2	2020-06-01 03:15:20
128.199.137.252	attack	May 31 14:02:08 piServer sshd[7074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.137.252 May 31 14:02:09 piServer sshd[7074]: Failed password for invalid user at from 128.199.137.252 port 45058 ssh2 May 31 14:07:02 piServer sshd[7535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.137.252 ...	2020-06-01 02:47:13
193.112.216.235	attackbotsspam	bruteforce detected	2020-06-01 02:49:59
188.234.247.110	attackspambots	May 31 07:41:50 pixelmemory sshd[3610348]: Failed password for root from 188.234.247.110 port 35184 ssh2 May 31 07:45:35 pixelmemory sshd[3624072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.234.247.110 user=root May 31 07:45:38 pixelmemory sshd[3624072]: Failed password for root from 188.234.247.110 port 41190 ssh2 May 31 07:49:08 pixelmemory sshd[3638474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.234.247.110 user=root May 31 07:49:10 pixelmemory sshd[3638474]: Failed password for root from 188.234.247.110 port 47170 ssh2 ...	2020-06-01 03:10:53
123.58.5.36	attack	sshd jail - ssh hack attempt	2020-06-01 02:59:13
129.211.185.246	attackspam	Unauthorized SSH login attempts	2020-06-01 03:19:04
46.101.128.28	attackbots	frenzy	2020-06-01 02:56:39

Recently Reported IPs

51.75.255.250	190.131.200.148	51.38.179.113	135.35.156.233
219.163.12.221	193.70.152.8	137.20.149.42	50.132.178.209
184.91.36.56	116.228.31.63	79.170.52.8	47.97.207.84
110.31.211.81	81.98.8.50	6.150.128.183	187.204.139.7
73.17.229.194	143.164.135.112	49.167.162.47	46.254.107.241