104.152.52.141

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
botsattack	Vulnerability Scanner	2025-01-09 22:45:15

Comments on same subnet:

IP	Type	Details	Datetime
104.152.52.231	botsattackproxy	Bot attacker IP	2025-03-25 13:44:38
104.152.52.145	botsattackproxy	Vulnerability Scanner	2025-03-20 13:41:36
104.152.52.100	spamattackproxy	VoIP blacklist IP	2025-03-14 22:09:59
104.152.52.139	attack	Brute-force attacker IP	2025-03-10 13:45:36
104.152.52.219	botsattackproxy	Bot attacker IP	2025-03-04 13:55:48
104.152.52.124	botsattackproxy	Vulnerability Scanner	2025-02-26 17:12:59
104.152.52.146	botsattackproxy	Bot attacker IP	2025-02-21 12:31:03
104.152.52.161	botsattackproxy	Vulnerability Scanner	2025-02-05 14:00:57
104.152.52.176	botsattackproxy	Botnet DB Scanner	2025-01-20 14:03:26
104.152.52.165	botsattackproxy	Bot attacker IP	2024-09-24 16:44:08
104.152.52.226	botsattackproxy	Vulnerability Scanner	2024-08-28 12:46:53
104.152.52.142	spambotsattack	Vulnerability Scanner	2024-08-26 12:47:13
104.152.52.116	spamattack	Compromised IP	2024-07-06 14:07:26
104.152.52.204	attack	Bad IP	2024-07-01 12:36:27
104.152.52.242	attackproxy	Bot attacker IP	2024-06-25 12:37:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14892
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.152.52.141.			IN	A

;; AUTHORITY SECTION:
.			193	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 150 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 06:30:35 CST 2022
;; MSG SIZE  rcvd: 107

Host info

141.52.152.104.in-addr.arpa domain name pointer internettl.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
141.52.152.104.in-addr.arpa	name = internettl.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.139.228.217	attack	Mar 5 22:43:40 motanud sshd\[28509\]: Invalid user hq from 14.139.228.217 port 33099 Mar 5 22:43:40 motanud sshd\[28509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.228.217 Mar 5 22:43:42 motanud sshd\[28509\]: Failed password for invalid user hq from 14.139.228.217 port 33099 ssh2	2019-08-10 21:05:09
96.75.52.245	attackbotsspam	Aug 10 02:22:30 *** sshd[28756]: Invalid user cubie from 96.75.52.245	2019-08-10 20:21:39
14.116.254.127	attackbotsspam	Feb 22 17:34:34 motanud sshd\[32317\]: Invalid user ubuntu from 14.116.254.127 port 47364 Feb 22 17:34:34 motanud sshd\[32317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.254.127 Feb 22 17:34:36 motanud sshd\[32317\]: Failed password for invalid user ubuntu from 14.116.254.127 port 47364 ssh2	2019-08-10 21:14:05
66.150.8.90	attack	ICMP MP Probe, Scan -	2019-08-10 20:49:47
45.55.231.94	attackbotsspam	Aug 10 14:23:28 host sshd\[40310\]: Invalid user jy from 45.55.231.94 port 46094 Aug 10 14:23:28 host sshd\[40310\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 ...	2019-08-10 20:51:00
14.139.59.195	attackspam	Mar 4 08:55:12 motanud sshd\[12767\]: Invalid user sh from 14.139.59.195 port 42112 Mar 4 08:55:12 motanud sshd\[12767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.59.195 Mar 4 08:55:14 motanud sshd\[12767\]: Failed password for invalid user sh from 14.139.59.195 port 42112 ssh2	2019-08-10 21:04:04
180.249.22.193	attackspam	Aug 10 13:35:46 xb3 sshd[7559]: Failed password for invalid user 888888 from 180.249.22.193 port 57587 ssh2 Aug 10 13:35:46 xb3 sshd[7557]: Failed password for invalid user 888888 from 180.249.22.193 port 57105 ssh2 Aug 10 13:35:46 xb3 sshd[7561]: Failed password for invalid user 888888 from 180.249.22.193 port 57632 ssh2 Aug 10 13:35:46 xb3 sshd[7559]: Connection closed by 180.249.22.193 [preauth] Aug 10 13:35:46 xb3 sshd[7561]: Connection closed by 180.249.22.193 [preauth] Aug 10 13:35:46 xb3 sshd[7557]: Connection closed by 180.249.22.193 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=180.249.22.193	2019-08-10 20:59:27
74.82.47.6	attackspambots	Honeypot attack, port: 389, PTR: scan-09a.shadowserver.org.	2019-08-10 20:41:33
169.197.97.34	attack	Automatic report - Banned IP Access	2019-08-10 20:16:25
14.139.237.162	attackbots	Mar 1 17:15:38 motanud sshd\[25354\]: Invalid user zt from 14.139.237.162 port 40332 Mar 1 17:15:38 motanud sshd\[25354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.237.162 Mar 1 17:15:40 motanud sshd\[25354\]: Failed password for invalid user zt from 14.139.237.162 port 40332 ssh2	2019-08-10 21:04:24
49.148.248.174	attackspambots	Lines containing failures of 49.148.248.174 (max 1000) Aug 10 07:37:49 Server sshd[18015]: Did not receive identification string from 49.148.248.174 port 49946 Aug 10 07:38:03 Server sshd[18016]: Invalid user dircreate from 49.148.248.174 port 12400 Aug 10 07:38:04 Server sshd[18016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.148.248.174 Aug 10 07:38:06 Server sshd[18016]: Failed password for invalid user dircreate from 49.148.248.174 port 12400 ssh2 Aug 10 07:38:07 Server sshd[18016]: Connection closed by invalid user dircreate 49.148.248.174 port 12400 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.148.248.174	2019-08-10 20:13:00
176.58.210.21	attackspam	DATE:2019-08-10 14:24:00, IP:176.58.210.21, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-08-10 20:28:35
74.113.236.37	attackbots	ICMP MP Probe, Scan -	2019-08-10 20:30:54
121.234.25.89	attackbotsspam	port scan and connect, tcp 22 (ssh)	2019-08-10 20:14:13
140.240.202.26	attack	Lines containing failures of 140.240.202.26 Aug 10 14:06:34 serverjouille sshd[24813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.240.202.26 user=r.r Aug 10 14:06:36 serverjouille sshd[24813]: Failed password for r.r from 140.240.202.26 port 53919 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=140.240.202.26	2019-08-10 20:43:11

Recently Reported IPs

104.152.52.164	104.152.52.145	104.152.52.152	104.152.52.184
104.152.52.181	104.156.226.243	104.156.250.155	104.162.82.245
104.163.142.201	104.168.86.200	104.19.152.75	104.168.77.133
104.171.59.205	104.175.201.239	104.160.18.108	104.196.104.237
104.194.11.205	104.196.22.115	104.197.138.6	104.197.244.255