Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
104.152.52.231 botsattackproxy
Bot attacker IP
2025-03-25 13:44:38
104.152.52.145 botsattackproxy
Vulnerability Scanner
2025-03-20 13:41:36
104.152.52.100 spamattackproxy
VoIP blacklist IP
2025-03-14 22:09:59
104.152.52.139 attack
Brute-force attacker IP
2025-03-10 13:45:36
104.152.52.219 botsattackproxy
Bot attacker IP
2025-03-04 13:55:48
104.152.52.124 botsattackproxy
Vulnerability Scanner
2025-02-26 17:12:59
104.152.52.146 botsattackproxy
Bot attacker IP
2025-02-21 12:31:03
104.152.52.161 botsattackproxy
Vulnerability Scanner
2025-02-05 14:00:57
104.152.52.176 botsattackproxy
Botnet DB Scanner
2025-01-20 14:03:26
104.152.52.141 botsattack
Vulnerability Scanner
2025-01-09 22:45:15
104.152.52.165 botsattackproxy
Bot attacker IP
2024-09-24 16:44:08
104.152.52.226 botsattackproxy
Vulnerability Scanner
2024-08-28 12:46:53
104.152.52.142 spambotsattack
Vulnerability Scanner
2024-08-26 12:47:13
104.152.52.116 spamattack
Compromised IP
2024-07-06 14:07:26
104.152.52.204 attack
Bad IP
2024-07-01 12:36:27
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5411
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.152.52.2.			IN	A

;; AUTHORITY SECTION:
.			290	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030300 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 01:02:55 CST 2022
;; MSG SIZE  rcvd: 105
Host info
2.52.152.104.in-addr.arpa domain name pointer internettl.org.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.52.152.104.in-addr.arpa	name = internettl.org.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
106.12.186.74 attackspam
Mar  1 06:56:01 gw1 sshd[28068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.186.74
Mar  1 06:56:03 gw1 sshd[28068]: Failed password for invalid user miaohaoran from 106.12.186.74 port 35286 ssh2
...
2020-03-01 10:01:06
180.250.115.121 attackspambots
$f2bV_matches
2020-03-01 13:02:46
85.239.42.180 attack
Postfix RBL failed
2020-03-01 10:08:55
45.33.70.146 attackbotsspam
Unauthorized connection attempt detected from IP address 45.33.70.146 to port 22 [J]
2020-03-01 10:08:01
108.59.8.70 attackspambots
Automatic report - Banned IP Access
2020-03-01 09:38:42
49.235.91.92 attack
Lines containing failures of 49.235.91.92
Feb 25 12:35:07 install sshd[11148]: Invalid user pms from 49.235.91.92 port 48562
Feb 25 12:35:07 install sshd[11148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.91.92
Feb 25 12:35:10 install sshd[11148]: Failed password for invalid user pms from 49.235.91.92 port 48562 ssh2
Feb 25 12:35:10 install sshd[11148]: Received disconnect from 49.235.91.92 port 48562:11: Bye Bye [preauth]
Feb 25 12:35:10 install sshd[11148]: Disconnected from invalid user pms 49.235.91.92 port 48562 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=49.235.91.92
2020-03-01 09:39:04
70.31.200.12 attackspambots
Automatic report - Port Scan Attack
2020-03-01 09:40:09
175.6.108.125 attack
SSH brute force
2020-03-01 10:01:49
185.143.223.166 attackspambots
Mar  1 02:25:36 grey postfix/smtpd\[19873\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.166\]: 554 5.7.1 Service unavailable\; Client host \[185.143.223.166\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.143.223.166\]\; from=\<36t5a1c62kbb@jmb-production.fr\> to=\ proto=ESMTP helo=\<\[185.143.223.170\]\>Mar  1 02:25:36 grey postfix/smtpd\[19873\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.166\]: 554 5.7.1 Service unavailable\; Client host \[185.143.223.166\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.143.223.166\]\; from=\<36t5a1c62kbb@jmb-production.fr\> to=\ proto=ESMTP helo=\<\[185.143.223.170\]\>Mar  1 02:25:36 grey postfix/smtpd\[19873\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.166\]: 554 5.7.1 Service unavailable\; Client host \[185.143.223.166\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[185.143.223.166\]\; from=\<36t5a1c62kbb@jmb-p
...
2020-03-01 09:39:47
46.60.1.10 attack
20/2/29@17:47:10: FAIL: Alarm-Intrusion address from=46.60.1.10
...
2020-03-01 09:44:43
222.254.25.239 attackspambots
Brute force attempt
2020-03-01 09:35:39
59.127.1.12 attackspambots
Feb 29 18:58:04 NPSTNNYC01T sshd[13599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.127.1.12
Feb 29 18:58:06 NPSTNNYC01T sshd[13599]: Failed password for invalid user ubuntu from 59.127.1.12 port 35012 ssh2
Feb 29 19:04:24 NPSTNNYC01T sshd[14009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.127.1.12
...
2020-03-01 09:50:21
202.51.110.214 attack
Mar  1 06:28:14 gw1 sshd[25702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.110.214
Mar  1 06:28:16 gw1 sshd[25702]: Failed password for invalid user cron from 202.51.110.214 port 51540 ssh2
...
2020-03-01 09:43:31
112.134.129.187 attack
*Port Scan* detected from 112.134.129.187 (LK/Sri Lanka/-). 7 hits in the last 220 seconds
2020-03-01 10:04:51
201.242.216.164 attack
Feb 29 15:47:32 kapalua sshd\[520\]: Invalid user test from 201.242.216.164
Feb 29 15:47:32 kapalua sshd\[520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.242.216.164
Feb 29 15:47:34 kapalua sshd\[520\]: Failed password for invalid user test from 201.242.216.164 port 36772 ssh2
Feb 29 15:53:04 kapalua sshd\[935\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.242.216.164  user=mysql
Feb 29 15:53:07 kapalua sshd\[935\]: Failed password for mysql from 201.242.216.164 port 49765 ssh2
2020-03-01 09:58:19

Recently Reported IPs

104.152.52.192 104.153.105.28 104.153.109.189 104.153.109.218
104.153.109.242 104.153.52.54 104.153.85.170 104.154.140.196
104.154.203.249 104.154.255.241 104.154.54.78 104.155.111.157
104.155.115.2 104.155.27.85 104.155.34.176 104.155.39.16
104.155.42.186 104.16.12.156 104.16.12.72 104.16.121.121