Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Type Details Datetime
attack
Port scan attack
2022-11-26 21:56:41
Comments on same subnet:
IP Type Details Datetime
104.152.52.231 botsattackproxy
Bot attacker IP
2025-03-25 13:44:38
104.152.52.145 botsattackproxy
Vulnerability Scanner
2025-03-20 13:41:36
104.152.52.100 spamattackproxy
VoIP blacklist IP
2025-03-14 22:09:59
104.152.52.139 attack
Brute-force attacker IP
2025-03-10 13:45:36
104.152.52.219 botsattackproxy
Bot attacker IP
2025-03-04 13:55:48
104.152.52.124 botsattackproxy
Vulnerability Scanner
2025-02-26 17:12:59
104.152.52.146 botsattackproxy
Bot attacker IP
2025-02-21 12:31:03
104.152.52.161 botsattackproxy
Vulnerability Scanner
2025-02-05 14:00:57
104.152.52.176 botsattackproxy
Botnet DB Scanner
2025-01-20 14:03:26
104.152.52.141 botsattack
Vulnerability Scanner
2025-01-09 22:45:15
104.152.52.165 botsattackproxy
Bot attacker IP
2024-09-24 16:44:08
104.152.52.226 botsattackproxy
Vulnerability Scanner
2024-08-28 12:46:53
104.152.52.142 spambotsattack
Vulnerability Scanner
2024-08-26 12:47:13
104.152.52.116 spamattack
Compromised IP
2024-07-06 14:07:26
104.152.52.204 attack
Bad IP
2024-07-01 12:36:27
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14892
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.152.52.129.			IN	A

;; AUTHORITY SECTION:
.			256	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 05:17:31 CST 2022
;; MSG SIZE  rcvd: 107
Host info
129.52.152.104.in-addr.arpa domain name pointer internettl.org.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
129.52.152.104.in-addr.arpa	name = internettl.org.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
211.229.34.218 attackspambots
2019-08-06T07:43:13.351384abusebot-5.cloudsearch.cf sshd\[3162\]: Invalid user yao from 211.229.34.218 port 42694
2019-08-06 19:12:45
200.44.50.155 attack
SSH Brute-Force reported by Fail2Ban
2019-08-06 19:07:43
77.247.109.232 attackspam
Aug  6 11:57:06 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=77.247.109.232 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=24842 PROTO=TCP SPT=57887 DPT=8001 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-08-06 19:12:18
191.53.198.219 attack
failed_logins
2019-08-06 18:58:17
92.53.65.128 attackbotsspam
firewall-block, port(s): 10037/tcp
2019-08-06 18:41:06
138.197.147.233 attackbotsspam
Feb 28 03:15:59 motanud sshd\[27982\]: Invalid user ez from 138.197.147.233 port 49472
Feb 28 03:15:59 motanud sshd\[27982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.147.233
Feb 28 03:16:01 motanud sshd\[27982\]: Failed password for invalid user ez from 138.197.147.233 port 49472 ssh2
2019-08-06 18:35:57
45.179.50.10 attackspam
Automatic report - Port Scan Attack
2019-08-06 19:10:57
182.38.249.76 attackbotsspam
Automatic report - Port Scan Attack
2019-08-06 19:02:52
76.235.79.12 attackspam
Unauthorised access (Aug  6) SRC=76.235.79.12 LEN=40 TTL=240 ID=11711 DF TCP DPT=23 WINDOW=14600 SYN
2019-08-06 18:53:48
145.239.8.229 attackspam
Aug  6 12:27:01 v22019058497090703 sshd[21524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.8.229
Aug  6 12:27:03 v22019058497090703 sshd[21524]: Failed password for invalid user lembi from 145.239.8.229 port 54878 ssh2
Aug  6 12:30:58 v22019058497090703 sshd[21990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.8.229
...
2019-08-06 18:54:36
211.20.181.186 attack
Aug  6 10:55:39 localhost sshd\[41909\]: Invalid user mickey from 211.20.181.186 port 47326
Aug  6 10:55:39 localhost sshd\[41909\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.20.181.186
...
2019-08-06 18:49:08
148.72.65.10 attackbots
Aug  6 10:54:23 nextcloud sshd\[27354\]: Invalid user sra from 148.72.65.10
Aug  6 10:54:23 nextcloud sshd\[27354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.65.10
Aug  6 10:54:26 nextcloud sshd\[27354\]: Failed password for invalid user sra from 148.72.65.10 port 42316 ssh2
...
2019-08-06 18:46:09
61.216.145.48 attackspambots
SSH bruteforce
2019-08-06 18:52:44
149.202.88.21 attack
$f2bV_matches
2019-08-06 18:50:20
103.121.195.4 attackspambots
2019-08-06T03:57:07.259725abusebot-3.cloudsearch.cf sshd\[12845\]: Invalid user benutzer from 103.121.195.4 port 57022
2019-08-06 18:55:10

Recently Reported IPs

104.149.217.150 104.152.208.65 104.152.52.100 104.154.106.43
104.154.131.234 104.154.142.214 104.154.147.14 104.154.145.231
104.154.149.32 104.154.155.145 104.154.167.26 104.153.251.126
104.154.168.186 104.154.180.229 104.154.179.227 104.154.188.192
104.154.192.86 104.154.197.154 104.154.197.164 104.154.20.60