City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| Type | Details | Datetime |
|---|---|---|
| attack | Port scan attack |
2022-11-26 21:56:41 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.152.52.231 | botsattackproxy | Bot attacker IP |
2025-03-25 13:44:38 |
| 104.152.52.145 | botsattackproxy | Vulnerability Scanner |
2025-03-20 13:41:36 |
| 104.152.52.100 | spamattackproxy | VoIP blacklist IP |
2025-03-14 22:09:59 |
| 104.152.52.139 | attack | Brute-force attacker IP |
2025-03-10 13:45:36 |
| 104.152.52.219 | botsattackproxy | Bot attacker IP |
2025-03-04 13:55:48 |
| 104.152.52.124 | botsattackproxy | Vulnerability Scanner |
2025-02-26 17:12:59 |
| 104.152.52.146 | botsattackproxy | Bot attacker IP |
2025-02-21 12:31:03 |
| 104.152.52.161 | botsattackproxy | Vulnerability Scanner |
2025-02-05 14:00:57 |
| 104.152.52.176 | botsattackproxy | Botnet DB Scanner |
2025-01-20 14:03:26 |
| 104.152.52.141 | botsattack | Vulnerability Scanner |
2025-01-09 22:45:15 |
| 104.152.52.165 | botsattackproxy | Bot attacker IP |
2024-09-24 16:44:08 |
| 104.152.52.226 | botsattackproxy | Vulnerability Scanner |
2024-08-28 12:46:53 |
| 104.152.52.142 | spambotsattack | Vulnerability Scanner |
2024-08-26 12:47:13 |
| 104.152.52.116 | spamattack | Compromised IP |
2024-07-06 14:07:26 |
| 104.152.52.204 | attack | Bad IP |
2024-07-01 12:36:27 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14892
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.152.52.129. IN A
;; AUTHORITY SECTION:
. 256 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 05:17:31 CST 2022
;; MSG SIZE rcvd: 107
129.52.152.104.in-addr.arpa domain name pointer internettl.org.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
129.52.152.104.in-addr.arpa name = internettl.org.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 177.1.213.19 | attack | Mar 18 22:33:46 v22019038103785759 sshd\[1638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 user=root Mar 18 22:33:48 v22019038103785759 sshd\[1638\]: Failed password for root from 177.1.213.19 port 10352 ssh2 Mar 18 22:35:18 v22019038103785759 sshd\[1782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 user=root Mar 18 22:35:19 v22019038103785759 sshd\[1782\]: Failed password for root from 177.1.213.19 port 53039 ssh2 Mar 18 22:36:28 v22019038103785759 sshd\[1858\]: Invalid user ll from 177.1.213.19 port 18052 ... |
2020-03-19 06:03:05 |
| 185.8.174.192 | attack | 185.8.174.192 - - [18/Mar/2020:23:15:56 +0100] "GET /wp-login.php HTTP/1.1" 200 5807 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.8.174.192 - - [18/Mar/2020:23:15:58 +0100] "POST /wp-login.php HTTP/1.1" 200 6586 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.8.174.192 - - [18/Mar/2020:23:16:05 +0100] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-03-19 06:17:53 |
| 97.90.105.222 | attack | Automatic report - Port Scan Attack |
2020-03-19 05:46:50 |
| 185.176.27.42 | attackspam | Port 20999 scan denied |
2020-03-19 06:14:20 |
| 209.159.156.254 | attackbotsspam | 2020-03-18T19:57:49.877016upcloud.m0sh1x2.com sshd[17103]: Invalid user cpaneleximscanner from 209.159.156.254 port 36050 |
2020-03-19 06:00:30 |
| 177.1.213.19 | attackspam | Mar 18 23:11:42 ns382633 sshd\[29142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 user=root Mar 18 23:11:43 ns382633 sshd\[29142\]: Failed password for root from 177.1.213.19 port 58737 ssh2 Mar 18 23:14:35 ns382633 sshd\[29372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 user=root Mar 18 23:14:37 ns382633 sshd\[29372\]: Failed password for root from 177.1.213.19 port 15034 ssh2 Mar 18 23:16:01 ns382633 sshd\[29980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 user=root |
2020-03-19 06:20:54 |
| 45.55.190.106 | attack | Mar 18 19:15:07 lock-38 sshd[78407]: Invalid user node from 45.55.190.106 port 56558 Mar 18 19:15:07 lock-38 sshd[78407]: Failed password for invalid user node from 45.55.190.106 port 56558 ssh2 Mar 18 19:18:55 lock-38 sshd[78425]: Invalid user ts3server from 45.55.190.106 port 38177 Mar 18 19:18:55 lock-38 sshd[78425]: Invalid user ts3server from 45.55.190.106 port 38177 Mar 18 19:18:55 lock-38 sshd[78425]: Failed password for invalid user ts3server from 45.55.190.106 port 38177 ssh2 ... |
2020-03-19 05:49:31 |
| 189.203.4.30 | attack | Honeypot attack, port: 445, PTR: fixed-189-203-4-30.totalplay.net. |
2020-03-19 05:45:45 |
| 196.218.97.94 | attackspam | 1584536664 - 03/18/2020 14:04:24 Host: 196.218.97.94/196.218.97.94 Port: 445 TCP Blocked |
2020-03-19 05:54:17 |
| 178.223.177.70 | attack | Automatic report - Port Scan Attack |
2020-03-19 05:46:08 |
| 222.186.175.154 | attackbotsspam | none |
2020-03-19 06:11:51 |
| 165.22.214.100 | attackspambots | Invalid user backup from 165.22.214.100 port 58236 |
2020-03-19 05:58:04 |
| 109.227.16.168 | attackspambots | Honeypot attack, port: 81, PTR: srv-109-227-16-168.static.a1.hr. |
2020-03-19 06:16:21 |
| 79.61.51.195 | attackspam | Mar 18 08:00:38 server1 sshd\[4428\]: Failed password for root from 79.61.51.195 port 51436 ssh2 Mar 18 08:04:53 server1 sshd\[5641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.61.51.195 user=root Mar 18 08:04:55 server1 sshd\[5641\]: Failed password for root from 79.61.51.195 port 62614 ssh2 Mar 18 08:09:27 server1 sshd\[7039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.61.51.195 user=root Mar 18 08:09:29 server1 sshd\[7039\]: Failed password for root from 79.61.51.195 port 49462 ssh2 ... |
2020-03-19 05:56:56 |
| 182.148.122.8 | attackbotsspam | Honeypot attack, port: 445, PTR: PTR record not found |
2020-03-19 06:02:50 |