104.152.52.152

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackproxy	Vulnerability Scanner	2024-06-14 12:52:07
attack	Port scan	2022-05-12 12:55:07

Comments on same subnet:

IP	Type	Details	Datetime
104.152.52.231	botsattackproxy	Bot attacker IP	2025-03-25 13:44:38
104.152.52.145	botsattackproxy	Vulnerability Scanner	2025-03-20 13:41:36
104.152.52.100	spamattackproxy	VoIP blacklist IP	2025-03-14 22:09:59
104.152.52.139	attack	Brute-force attacker IP	2025-03-10 13:45:36
104.152.52.219	botsattackproxy	Bot attacker IP	2025-03-04 13:55:48
104.152.52.124	botsattackproxy	Vulnerability Scanner	2025-02-26 17:12:59
104.152.52.146	botsattackproxy	Bot attacker IP	2025-02-21 12:31:03
104.152.52.161	botsattackproxy	Vulnerability Scanner	2025-02-05 14:00:57
104.152.52.176	botsattackproxy	Botnet DB Scanner	2025-01-20 14:03:26
104.152.52.141	botsattack	Vulnerability Scanner	2025-01-09 22:45:15
104.152.52.165	botsattackproxy	Bot attacker IP	2024-09-24 16:44:08
104.152.52.226	botsattackproxy	Vulnerability Scanner	2024-08-28 12:46:53
104.152.52.142	spambotsattack	Vulnerability Scanner	2024-08-26 12:47:13
104.152.52.116	spamattack	Compromised IP	2024-07-06 14:07:26
104.152.52.204	attack	Bad IP	2024-07-01 12:36:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38567
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.152.52.152.			IN	A

;; AUTHORITY SECTION:
.			252	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 06:30:36 CST 2022
;; MSG SIZE  rcvd: 107

Host info

152.52.152.104.in-addr.arpa domain name pointer internettl.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
152.52.152.104.in-addr.arpa	name = internettl.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
196.15.211.92	attack	Mar 6 03:30:12 wbs sshd\[13178\]: Invalid user ts3 from 196.15.211.92 Mar 6 03:30:12 wbs sshd\[13178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.15.211.92 Mar 6 03:30:14 wbs sshd\[13178\]: Failed password for invalid user ts3 from 196.15.211.92 port 42300 ssh2 Mar 6 03:34:09 wbs sshd\[13498\]: Invalid user fenghl from 196.15.211.92 Mar 6 03:34:09 wbs sshd\[13498\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.15.211.92	2020-03-06 21:48:21
113.173.84.49	attackspambots	Brute force attempt	2020-03-06 21:13:45
115.159.222.206	attackbots	$f2bV_matches	2020-03-06 21:29:35
183.157.169.16	attackspambots	suspicious action Fri, 06 Mar 2020 10:34:20 -0300	2020-03-06 21:40:57
123.139.46.180	attack	Mar 6 08:31:01 163-172-32-151 sshd[29324]: Invalid user sftp from 123.139.46.180 port 61062 ...	2020-03-06 21:22:12
14.161.14.81	attackspambots	Unauthorized connection attempt from IP address 14.161.14.81 on Port 445(SMB)	2020-03-06 21:30:25
118.98.73.5	attack	118.98.73.5 - - [06/Mar/2020:12:11:37 +0100] "GET /wp-login.php HTTP/1.1" 200 5268 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 118.98.73.5 - - [06/Mar/2020:12:11:39 +0100] "POST /wp-login.php HTTP/1.1" 200 6167 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 118.98.73.5 - - [06/Mar/2020:13:48:16 +0100] "GET /wp-login.php HTTP/1.1" 200 6353 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-06 21:32:34
222.186.30.209	attackspam	Mar 6 14:34:18 vps691689 sshd[20882]: Failed password for root from 222.186.30.209 port 18894 ssh2 Mar 6 14:34:20 vps691689 sshd[20882]: Failed password for root from 222.186.30.209 port 18894 ssh2 Mar 6 14:34:22 vps691689 sshd[20882]: Failed password for root from 222.186.30.209 port 18894 ssh2 ...	2020-03-06 21:38:27
180.254.198.3	attackbotsspam	1583472146 - 03/06/2020 06:22:26 Host: 180.254.198.3/180.254.198.3 Port: 445 TCP Blocked	2020-03-06 21:20:44
87.249.164.79	attackbotsspam	suspicious action Fri, 06 Mar 2020 09:38:37 -0300	2020-03-06 21:19:36
49.88.112.75	attackspambots	Mar 6 14:13:20 vps647732 sshd[31448]: Failed password for root from 49.88.112.75 port 39001 ssh2 ...	2020-03-06 21:21:05
180.242.154.194	attackbotsspam	scan r	2020-03-06 21:51:37
178.33.145.241	attackbots	Mar 6 12:44:50 legacy sshd[18003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.145.241 Mar 6 12:44:51 legacy sshd[18003]: Failed password for invalid user ubuntu from 178.33.145.241 port 44212 ssh2 Mar 6 12:53:55 legacy sshd[18072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.145.241 ...	2020-03-06 21:06:09
183.157.169.112	attack	suspicious action Fri, 06 Mar 2020 10:34:12 -0300	2020-03-06 21:47:41
46.56.20.254	attackspambots	Scan detected and blocked 2020.03.06 14:34:13	2020-03-06 21:46:41

Recently Reported IPs

104.152.52.145	104.152.52.184	104.152.52.181	104.156.226.243
104.156.250.155	104.162.82.245	104.163.142.201	104.168.86.200
104.19.152.75	104.168.77.133	104.171.59.205	104.175.201.239
104.160.18.108	104.196.104.237	104.194.11.205	104.196.22.115
104.197.138.6	104.197.244.255	104.199.76.46	104.199.226.249