104.152.52.124

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
botsattackproxy	Vulnerability Scanner	2025-02-26 17:12:59

Comments on same subnet:

IP	Type	Details	Datetime
104.152.52.231	botsattackproxy	Bot attacker IP	2025-03-25 13:44:38
104.152.52.145	botsattackproxy	Vulnerability Scanner	2025-03-20 13:41:36
104.152.52.100	spamattackproxy	VoIP blacklist IP	2025-03-14 22:09:59
104.152.52.139	attack	Brute-force attacker IP	2025-03-10 13:45:36
104.152.52.219	botsattackproxy	Bot attacker IP	2025-03-04 13:55:48
104.152.52.146	botsattackproxy	Bot attacker IP	2025-02-21 12:31:03
104.152.52.161	botsattackproxy	Vulnerability Scanner	2025-02-05 14:00:57
104.152.52.176	botsattackproxy	Botnet DB Scanner	2025-01-20 14:03:26
104.152.52.141	botsattack	Vulnerability Scanner	2025-01-09 22:45:15
104.152.52.165	botsattackproxy	Bot attacker IP	2024-09-24 16:44:08
104.152.52.226	botsattackproxy	Vulnerability Scanner	2024-08-28 12:46:53
104.152.52.142	spambotsattack	Vulnerability Scanner	2024-08-26 12:47:13
104.152.52.116	spamattack	Compromised IP	2024-07-06 14:07:26
104.152.52.204	attack	Bad IP	2024-07-01 12:36:27
104.152.52.242	attackproxy	Bot attacker IP	2024-06-25 12:37:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63363
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.152.52.124.			IN	A

;; AUTHORITY SECTION:
.			524	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 07:31:32 CST 2022
;; MSG SIZE  rcvd: 107

Host info

124.52.152.104.in-addr.arpa domain name pointer internettl.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
124.52.152.104.in-addr.arpa	name = internettl.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.70.117.156	attack	SSH Invalid Login	2020-07-24 08:14:11
116.198.162.65	attackspam	Jul 24 01:21:54 ns382633 sshd\[5280\]: Invalid user lzt from 116.198.162.65 port 34502 Jul 24 01:21:54 ns382633 sshd\[5280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.198.162.65 Jul 24 01:21:56 ns382633 sshd\[5280\]: Failed password for invalid user lzt from 116.198.162.65 port 34502 ssh2 Jul 24 01:37:10 ns382633 sshd\[7993\]: Invalid user emi from 116.198.162.65 port 50434 Jul 24 01:37:10 ns382633 sshd\[7993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.198.162.65	2020-07-24 07:59:07
122.222.171.100	attackbots	Automatic report - Banned IP Access	2020-07-24 12:02:42
36.92.139.238	attackbots	Jul 24 00:18:28 marvibiene sshd[9365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.92.139.238 Jul 24 00:18:30 marvibiene sshd[9365]: Failed password for invalid user gituser from 36.92.139.238 port 28912 ssh2 Jul 24 00:24:16 marvibiene sshd[9987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.92.139.238	2020-07-24 08:09:16
185.137.233.125	attackspam	Port scan: Attack repeated for 24 hours	2020-07-24 12:12:04
160.153.234.75	attackbots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-07-23T22:59:24Z and 2020-07-23T23:38:46Z	2020-07-24 08:08:00
103.131.71.84	attackspam	(mod_security) mod_security (id:210730) triggered by 103.131.71.84 (VN/Vietnam/bot-103-131-71-84.coccoc.com): 5 in the last 3600 secs	2020-07-24 08:05:38
159.89.204.111	attackspambots	Jul 4 07:17:17 pi sshd[21176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.204.111 Jul 4 07:17:19 pi sshd[21176]: Failed password for invalid user ss3server from 159.89.204.111 port 56178 ssh2	2020-07-24 08:21:55
159.89.53.92	attackspam	Jul 24 00:06:11 vlre-nyc-1 sshd\[17555\]: Invalid user deployer from 159.89.53.92 Jul 24 00:06:11 vlre-nyc-1 sshd\[17555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.53.92 Jul 24 00:06:13 vlre-nyc-1 sshd\[17555\]: Failed password for invalid user deployer from 159.89.53.92 port 35722 ssh2 Jul 24 00:11:45 vlre-nyc-1 sshd\[17777\]: Invalid user canna from 159.89.53.92 Jul 24 00:11:45 vlre-nyc-1 sshd\[17777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.53.92 ...	2020-07-24 08:19:54
63.83.73.112	attackbotsspam	2020-07-23 15:07:18.717295-0500 localhost smtpd[96449]: NOQUEUE: reject: RCPT from unknown[63.83.73.112]: 554 5.7.1 Service unavailable; Client host [63.83.73.112] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-07-24 08:10:58
212.70.149.35	attackbotsspam	2020-07-24 05:49:43 dovecot_login authenticator failed for \(User\) \[212.70.149.35\]: 535 Incorrect authentication data \(set_id=fdm@no-server.de\) 2020-07-24 05:54:41 dovecot_login authenticator failed for \(User\) \[212.70.149.35\]: 535 Incorrect authentication data 2020-07-24 05:54:42 dovecot_login authenticator failed for \(User\) \[212.70.149.35\]: 535 Incorrect authentication data 2020-07-24 05:54:42 dovecot_login authenticator failed for \(User\) \[212.70.149.35\]: 535 Incorrect authentication data 2020-07-24 05:58:01 dovecot_login authenticator failed for \(User\) \[212.70.149.35\]: 535 Incorrect authentication data \(set_id=uf@no-server.de\) 2020-07-24 05:58:03 dovecot_login authenticator failed for \(User\) \[212.70.149.35\]: 535 Incorrect authentication data \(set_id=unsubscribe@no-server.de\) 2020-07-24 05:58:20 dovecot_login authenticator failed for \(User\) \[212.70.149.35\]: 535 Incorrect authentication data \(set_id=unsubscribe@no-server.de\) 2020-07-24 05:58:23 doveco ...	2020-07-24 12:03:51
134.209.155.186	attack	Jul 23 22:28:11 sigma sshd\[3577\]: Invalid user brian from 134.209.155.186Jul 23 22:28:13 sigma sshd\[3577\]: Failed password for invalid user brian from 134.209.155.186 port 57040 ssh2 ...	2020-07-24 08:21:00
79.106.35.58	attack	Registration form abuse	2020-07-24 12:09:26
222.186.42.155	attackspam	Unauthorized connection attempt detected from IP address 222.186.42.155 to port 22	2020-07-24 08:17:19
159.89.83.151	attack	May 6 16:47:29 pi sshd[20737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.83.151 May 6 16:47:30 pi sshd[20737]: Failed password for invalid user alisha from 159.89.83.151 port 33286 ssh2	2020-07-24 08:18:25

Recently Reported IPs

190.6.242.57	123.14.255.178	223.87.179.78	115.77.229.242
59.124.104.143	75.99.204.66	192.186.151.188	183.173.183.90
176.236.126.226	45.118.75.75	195.123.246.146	183.228.162.29
41.38.125.101	157.245.53.111	136.233.117.149	5.128.177.77
182.119.198.98	64.233.173.226	172.104.15.123	84.53.198.248