104.152.52.157

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.152.52.231	botsattackproxy	Bot attacker IP	2025-03-25 13:44:38
104.152.52.145	botsattackproxy	Vulnerability Scanner	2025-03-20 13:41:36
104.152.52.100	spamattackproxy	VoIP blacklist IP	2025-03-14 22:09:59
104.152.52.139	attack	Brute-force attacker IP	2025-03-10 13:45:36
104.152.52.219	botsattackproxy	Bot attacker IP	2025-03-04 13:55:48
104.152.52.124	botsattackproxy	Vulnerability Scanner	2025-02-26 17:12:59
104.152.52.146	botsattackproxy	Bot attacker IP	2025-02-21 12:31:03
104.152.52.161	botsattackproxy	Vulnerability Scanner	2025-02-05 14:00:57
104.152.52.176	botsattackproxy	Botnet DB Scanner	2025-01-20 14:03:26
104.152.52.141	botsattack	Vulnerability Scanner	2025-01-09 22:45:15
104.152.52.165	botsattackproxy	Bot attacker IP	2024-09-24 16:44:08
104.152.52.226	botsattackproxy	Vulnerability Scanner	2024-08-28 12:46:53
104.152.52.142	spambotsattack	Vulnerability Scanner	2024-08-26 12:47:13
104.152.52.116	spamattack	Compromised IP	2024-07-06 14:07:26
104.152.52.204	attack	Bad IP	2024-07-01 12:36:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34445
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.152.52.157.			IN	A

;; AUTHORITY SECTION:
.			257	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 01:09:06 CST 2022
;; MSG SIZE  rcvd: 107

Host info

157.52.152.104.in-addr.arpa domain name pointer internettl.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.52.152.104.in-addr.arpa	name = internettl.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.13.188	attack	Feb 10 01:38:52 lnxded64 sshd[11418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188 Feb 10 01:38:54 lnxded64 sshd[11418]: Failed password for invalid user oeq from 106.13.13.188 port 59390 ssh2 Feb 10 01:48:20 lnxded64 sshd[13875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.13.188	2020-02-10 09:29:20
83.11.224.118	attackspam	Lines containing failures of 83.11.224.118 Feb 8 22:05:15 shared05 sshd[7394]: Invalid user apd from 83.11.224.118 port 57344 Feb 8 22:05:15 shared05 sshd[7394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.11.224.118 Feb 8 22:05:17 shared05 sshd[7394]: Failed password for invalid user apd from 83.11.224.118 port 57344 ssh2 Feb 8 22:05:17 shared05 sshd[7394]: Received disconnect from 83.11.224.118 port 57344:11: Bye Bye [preauth] Feb 8 22:05:17 shared05 sshd[7394]: Disconnected from invalid user apd 83.11.224.118 port 57344 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=83.11.224.118	2020-02-10 09:24:26
92.63.194.104	attack	Feb 10 06:01:15 areeb-Workstation sshd[22446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.104 Feb 10 06:01:16 areeb-Workstation sshd[22446]: Failed password for invalid user admin from 92.63.194.104 port 38305 ssh2 ...	2020-02-10 09:09:23
154.70.98.11	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/154.70.98.11/ CM - 1H : (1) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CM NAME ASN : ASN30992 IP : 154.70.98.11 CIDR : 154.70.96.0/22 PREFIX COUNT : 87 UNIQUE IP COUNT : 83968 ATTACKS DETECTED ASN30992 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2020-02-09 23:06:10 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2020-02-10 09:15:43
118.168.90.147	attackspam	Telnet/23 MH Probe, BF, Hack -	2020-02-10 09:38:41
222.186.30.76	attackbotsspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Failed password for root from 222.186.30.76 port 64775 ssh2 Failed password for root from 222.186.30.76 port 64775 ssh2 Failed password for root from 222.186.30.76 port 64775 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root	2020-02-10 09:09:02
1.54.88.77	attackspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-10 09:21:43
62.210.149.30	attack	[2020-02-09 17:47:21] NOTICE[1148][C-000076d5] chan_sip.c: Call from '' (62.210.149.30:56123) to extension '011623972598124182' rejected because extension not found in context 'public'. [2020-02-09 17:47:21] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-02-09T17:47:21.173-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="011623972598124182",SessionID="0x7fd82c31abc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.149.30/56123",ACLName="no_extension_match" [2020-02-09 17:47:32] NOTICE[1148][C-000076d7] chan_sip.c: Call from '' (62.210.149.30:56914) to extension '011624972598124182' rejected because extension not found in context 'public'. [2020-02-09 17:47:32] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-02-09T17:47:32.538-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="011624972598124182",SessionID="0x7fd82c5547b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddres ...	2020-02-10 09:12:13
221.163.8.108	attackbots	Feb 9 22:15:28 firewall sshd[15355]: Invalid user rmm from 221.163.8.108 Feb 9 22:15:30 firewall sshd[15355]: Failed password for invalid user rmm from 221.163.8.108 port 40976 ssh2 Feb 9 22:18:24 firewall sshd[15452]: Invalid user zek from 221.163.8.108 ...	2020-02-10 09:38:21
203.172.66.222	attack	Feb 9 23:02:47 legacy sshd[23906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.66.222 Feb 9 23:02:49 legacy sshd[23906]: Failed password for invalid user yvo from 203.172.66.222 port 33082 ssh2 Feb 9 23:06:10 legacy sshd[24088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.66.222 ...	2020-02-10 09:17:06
180.76.134.238	attackspam	Feb 10 02:13:09 legacy sshd[32492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.134.238 Feb 10 02:13:12 legacy sshd[32492]: Failed password for invalid user kvq from 180.76.134.238 port 52312 ssh2 Feb 10 02:17:32 legacy sshd[32662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.134.238 ...	2020-02-10 09:24:06
103.59.132.202	attack	Feb 10 01:50:28 lnxded63 sshd[28717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.59.132.202	2020-02-10 09:13:26
112.85.42.180	attackbotsspam	IP blocked	2020-02-10 09:37:34
58.187.78.170	attackspambots	Telnet/23 MH Probe, BF, Hack -	2020-02-10 08:58:16
88.205.172.18	attackbotsspam	20/2/9@18:01:05: FAIL: Alarm-Network address from=88.205.172.18 ...	2020-02-10 09:19:06

Recently Reported IPs

213.108.161.42	114.205.68.192	201.131.245.5	51.254.16.102
82.65.200.190	41.211.127.167	79.65.33.106	50.238.125.45
125.42.234.132	89.109.50.117	125.40.151.254	183.148.63.89
23.254.247.142	219.85.179.78	189.212.112.207	115.56.5.158
200.38.231.70	78.87.217.47	91.244.74.224	82.213.191.16