104.152.52.224

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackproxy	Bot attacker IP	2024-05-22 17:21:06

Comments on same subnet:

IP	Type	Details	Datetime
104.152.52.231	botsattackproxy	Bot attacker IP	2025-03-25 13:44:38
104.152.52.145	botsattackproxy	Vulnerability Scanner	2025-03-20 13:41:36
104.152.52.100	spamattackproxy	VoIP blacklist IP	2025-03-14 22:09:59
104.152.52.139	attack	Brute-force attacker IP	2025-03-10 13:45:36
104.152.52.219	botsattackproxy	Bot attacker IP	2025-03-04 13:55:48
104.152.52.124	botsattackproxy	Vulnerability Scanner	2025-02-26 17:12:59
104.152.52.146	botsattackproxy	Bot attacker IP	2025-02-21 12:31:03
104.152.52.161	botsattackproxy	Vulnerability Scanner	2025-02-05 14:00:57
104.152.52.176	botsattackproxy	Botnet DB Scanner	2025-01-20 14:03:26
104.152.52.141	botsattack	Vulnerability Scanner	2025-01-09 22:45:15
104.152.52.165	botsattackproxy	Bot attacker IP	2024-09-24 16:44:08
104.152.52.226	botsattackproxy	Vulnerability Scanner	2024-08-28 12:46:53
104.152.52.142	spambotsattack	Vulnerability Scanner	2024-08-26 12:47:13
104.152.52.116	spamattack	Compromised IP	2024-07-06 14:07:26
104.152.52.204	attack	Bad IP	2024-07-01 12:36:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.224
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53925
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.152.52.224.			IN	A

;; AUTHORITY SECTION:
.			399	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023011500 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 16 01:36:34 CST 2023
;; MSG SIZE  rcvd: 107

Host info

224.52.152.104.in-addr.arpa domain name pointer internettl.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
224.52.152.104.in-addr.arpa	name = internettl.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.209.65.130	attackspambots	Unauthorized connection attempt from IP address 125.209.65.130 on Port 445(SMB)	2019-09-07 06:15:11
46.97.44.18	attackspambots	Sep 6 11:37:25 hanapaa sshd\[12077\]: Invalid user tf2server from 46.97.44.18 Sep 6 11:37:25 hanapaa sshd\[12077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.97.44.18 Sep 6 11:37:27 hanapaa sshd\[12077\]: Failed password for invalid user tf2server from 46.97.44.18 port 49131 ssh2 Sep 6 11:42:10 hanapaa sshd\[12577\]: Invalid user ftptest from 46.97.44.18 Sep 6 11:42:10 hanapaa sshd\[12577\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.97.44.18	2019-09-07 05:45:16
103.50.37.17	attackbots	Sep 6 19:08:26 SilenceServices sshd[9651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.50.37.17 Sep 6 19:08:28 SilenceServices sshd[9651]: Failed password for invalid user testuser from 103.50.37.17 port 45849 ssh2 Sep 6 19:11:28 SilenceServices sshd[10845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.50.37.17	2019-09-07 05:52:33
125.160.135.12	attackbots	Unauthorized connection attempt from IP address 125.160.135.12 on Port 445(SMB)	2019-09-07 05:54:01
12.7.109.254	attackbotsspam	2019-09-02T15:57:54.124267 X postfix/smtpd[30182]: NOQUEUE: reject: RCPT from unknown[12.7.109.254]: 554 5.7.1 Service unavailable; Client host [12.7.109.254] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?12.7.109.254; from= to= proto=ESMTP helo=	2019-09-07 05:49:20
112.85.42.185	attackbotsspam	Sep 6 16:30:31 aat-srv002 sshd[27093]: Failed password for root from 112.85.42.185 port 64898 ssh2 Sep 6 16:46:29 aat-srv002 sshd[27561]: Failed password for root from 112.85.42.185 port 15983 ssh2 Sep 6 16:46:32 aat-srv002 sshd[27561]: Failed password for root from 112.85.42.185 port 15983 ssh2 Sep 6 16:46:34 aat-srv002 sshd[27561]: Failed password for root from 112.85.42.185 port 15983 ssh2 ...	2019-09-07 06:02:15
203.187.194.131	attackbots	Sep 6 22:13:20 ArkNodeAT sshd\[11229\]: Invalid user 123456 from 203.187.194.131 Sep 6 22:13:20 ArkNodeAT sshd\[11229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.187.194.131 Sep 6 22:13:22 ArkNodeAT sshd\[11229\]: Failed password for invalid user 123456 from 203.187.194.131 port 47873 ssh2	2019-09-07 05:57:25
49.36.28.19	attackspam	Unauthorized connection attempt from IP address 49.36.28.19 on Port 445(SMB)	2019-09-07 06:04:39
105.224.226.248	attack	Automatic report - Port Scan Attack	2019-09-07 05:30:33
191.5.160.198	attack	port scan and connect, tcp 80 (http)	2019-09-07 05:35:13
165.227.108.233	attack	Sep 6 23:18:19 intra sshd\[48046\]: Invalid user wp-user from 165.227.108.233Sep 6 23:18:22 intra sshd\[48046\]: Failed password for invalid user wp-user from 165.227.108.233 port 59000 ssh2Sep 6 23:22:12 intra sshd\[48108\]: Invalid user user2 from 165.227.108.233Sep 6 23:22:14 intra sshd\[48108\]: Failed password for invalid user user2 from 165.227.108.233 port 46558 ssh2Sep 6 23:26:08 intra sshd\[48145\]: Invalid user git from 165.227.108.233Sep 6 23:26:11 intra sshd\[48145\]: Failed password for invalid user git from 165.227.108.233 port 34120 ssh2 ...	2019-09-07 06:14:37
123.108.64.9	attackbotsspam	SPF Fail sender not permitted to send mail for @2002yahoo.com / Mail sent to address hacked/leaked from Last.fm	2019-09-07 06:09:09
188.226.226.82	attackbots	Sep 6 11:22:40 php2 sshd\[550\]: Invalid user administrator from 188.226.226.82 Sep 6 11:22:40 php2 sshd\[550\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.226.82 Sep 6 11:22:43 php2 sshd\[550\]: Failed password for invalid user administrator from 188.226.226.82 port 44831 ssh2 Sep 6 11:27:18 php2 sshd\[1019\]: Invalid user tomcat from 188.226.226.82 Sep 6 11:27:18 php2 sshd\[1019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.226.82	2019-09-07 05:31:16
170.254.56.75	attackbotsspam	Unauthorized connection attempt from IP address 170.254.56.75 on Port 445(SMB)	2019-09-07 05:29:18
51.75.195.39	attackbotsspam	Sep 6 15:20:30 hb sshd\[26885\]: Invalid user webmaster from 51.75.195.39 Sep 6 15:20:30 hb sshd\[26885\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.ip-51-75-195.eu Sep 6 15:20:32 hb sshd\[26885\]: Failed password for invalid user webmaster from 51.75.195.39 port 48428 ssh2 Sep 6 15:24:35 hb sshd\[27219\]: Invalid user user1 from 51.75.195.39 Sep 6 15:24:35 hb sshd\[27219\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.ip-51-75-195.eu	2019-09-07 05:59:46

Recently Reported IPs

109.208.84.168	71.12.107.124	192.111.5.146	90.202.5.106
177.109.249.46	138.197.224.230	129.133.145.31	131.56.202.159
189.236.32.101	189.236.32.246	168.100.245.81	172.6.13.58
144.83.179.14	219.100.37.222	236.42.138.31	32.176.41.52
131.122.228.5	238.229.214.32	135.65.13.214	219.100.37.125