104.152.52.129

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port scan attack	2022-11-26 21:56:41

Comments on same subnet:

IP	Type	Details	Datetime
104.152.52.231	botsattackproxy	Bot attacker IP	2025-03-25 13:44:38
104.152.52.145	botsattackproxy	Vulnerability Scanner	2025-03-20 13:41:36
104.152.52.100	spamattackproxy	VoIP blacklist IP	2025-03-14 22:09:59
104.152.52.139	attack	Brute-force attacker IP	2025-03-10 13:45:36
104.152.52.219	botsattackproxy	Bot attacker IP	2025-03-04 13:55:48
104.152.52.124	botsattackproxy	Vulnerability Scanner	2025-02-26 17:12:59
104.152.52.146	botsattackproxy	Bot attacker IP	2025-02-21 12:31:03
104.152.52.161	botsattackproxy	Vulnerability Scanner	2025-02-05 14:00:57
104.152.52.176	botsattackproxy	Botnet DB Scanner	2025-01-20 14:03:26
104.152.52.141	botsattack	Vulnerability Scanner	2025-01-09 22:45:15
104.152.52.165	botsattackproxy	Bot attacker IP	2024-09-24 16:44:08
104.152.52.226	botsattackproxy	Vulnerability Scanner	2024-08-28 12:46:53
104.152.52.142	spambotsattack	Vulnerability Scanner	2024-08-26 12:47:13
104.152.52.116	spamattack	Compromised IP	2024-07-06 14:07:26
104.152.52.204	attack	Bad IP	2024-07-01 12:36:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14892
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.152.52.129.			IN	A

;; AUTHORITY SECTION:
.			256	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 05:17:31 CST 2022
;; MSG SIZE  rcvd: 107

Host info

129.52.152.104.in-addr.arpa domain name pointer internettl.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
129.52.152.104.in-addr.arpa	name = internettl.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.1.213.19	attack	Mar 18 22:33:46 v22019038103785759 sshd\[1638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 user=root Mar 18 22:33:48 v22019038103785759 sshd\[1638\]: Failed password for root from 177.1.213.19 port 10352 ssh2 Mar 18 22:35:18 v22019038103785759 sshd\[1782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 user=root Mar 18 22:35:19 v22019038103785759 sshd\[1782\]: Failed password for root from 177.1.213.19 port 53039 ssh2 Mar 18 22:36:28 v22019038103785759 sshd\[1858\]: Invalid user ll from 177.1.213.19 port 18052 ...	2020-03-19 06:03:05
185.8.174.192	attack	185.8.174.192 - - [18/Mar/2020:23:15:56 +0100] "GET /wp-login.php HTTP/1.1" 200 5807 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.8.174.192 - - [18/Mar/2020:23:15:58 +0100] "POST /wp-login.php HTTP/1.1" 200 6586 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.8.174.192 - - [18/Mar/2020:23:16:05 +0100] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-19 06:17:53
97.90.105.222	attack	Automatic report - Port Scan Attack	2020-03-19 05:46:50
185.176.27.42	attackspam	Port 20999 scan denied	2020-03-19 06:14:20
209.159.156.254	attackbotsspam	2020-03-18T19:57:49.877016upcloud.m0sh1x2.com sshd[17103]: Invalid user cpaneleximscanner from 209.159.156.254 port 36050	2020-03-19 06:00:30
177.1.213.19	attackspam	Mar 18 23:11:42 ns382633 sshd\[29142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 user=root Mar 18 23:11:43 ns382633 sshd\[29142\]: Failed password for root from 177.1.213.19 port 58737 ssh2 Mar 18 23:14:35 ns382633 sshd\[29372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 user=root Mar 18 23:14:37 ns382633 sshd\[29372\]: Failed password for root from 177.1.213.19 port 15034 ssh2 Mar 18 23:16:01 ns382633 sshd\[29980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 user=root	2020-03-19 06:20:54
45.55.190.106	attack	Mar 18 19:15:07 lock-38 sshd[78407]: Invalid user node from 45.55.190.106 port 56558 Mar 18 19:15:07 lock-38 sshd[78407]: Failed password for invalid user node from 45.55.190.106 port 56558 ssh2 Mar 18 19:18:55 lock-38 sshd[78425]: Invalid user ts3server from 45.55.190.106 port 38177 Mar 18 19:18:55 lock-38 sshd[78425]: Invalid user ts3server from 45.55.190.106 port 38177 Mar 18 19:18:55 lock-38 sshd[78425]: Failed password for invalid user ts3server from 45.55.190.106 port 38177 ssh2 ...	2020-03-19 05:49:31
189.203.4.30	attack	Honeypot attack, port: 445, PTR: fixed-189-203-4-30.totalplay.net.	2020-03-19 05:45:45
196.218.97.94	attackspam	1584536664 - 03/18/2020 14:04:24 Host: 196.218.97.94/196.218.97.94 Port: 445 TCP Blocked	2020-03-19 05:54:17
178.223.177.70	attack	Automatic report - Port Scan Attack	2020-03-19 05:46:08
222.186.175.154	attackbotsspam	none	2020-03-19 06:11:51
165.22.214.100	attackspambots	Invalid user backup from 165.22.214.100 port 58236	2020-03-19 05:58:04
109.227.16.168	attackspambots	Honeypot attack, port: 81, PTR: srv-109-227-16-168.static.a1.hr.	2020-03-19 06:16:21
79.61.51.195	attackspam	Mar 18 08:00:38 server1 sshd\[4428\]: Failed password for root from 79.61.51.195 port 51436 ssh2 Mar 18 08:04:53 server1 sshd\[5641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.61.51.195 user=root Mar 18 08:04:55 server1 sshd\[5641\]: Failed password for root from 79.61.51.195 port 62614 ssh2 Mar 18 08:09:27 server1 sshd\[7039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.61.51.195 user=root Mar 18 08:09:29 server1 sshd\[7039\]: Failed password for root from 79.61.51.195 port 49462 ssh2 ...	2020-03-19 05:56:56
182.148.122.8	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-19 06:02:50

Recently Reported IPs

104.149.217.150	104.152.208.65	104.152.52.100	104.154.106.43
104.154.131.234	104.154.142.214	104.154.147.14	104.154.145.231
104.154.149.32	104.154.155.145	104.154.167.26	104.153.251.126
104.154.168.186	104.154.180.229	104.154.179.227	104.154.188.192
104.154.192.86	104.154.197.154	104.154.197.164	104.154.20.60