104.152.52.58 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.152.52.231	botsattackproxy	Bot attacker IP	2025-03-25 13:44:38
104.152.52.145	botsattackproxy	Vulnerability Scanner	2025-03-20 13:41:36
104.152.52.100	spamattackproxy	VoIP blacklist IP	2025-03-14 22:09:59
104.152.52.139	attack	Brute-force attacker IP	2025-03-10 13:45:36
104.152.52.219	botsattackproxy	Bot attacker IP	2025-03-04 13:55:48
104.152.52.124	botsattackproxy	Vulnerability Scanner	2025-02-26 17:12:59
104.152.52.146	botsattackproxy	Bot attacker IP	2025-02-21 12:31:03
104.152.52.161	botsattackproxy	Vulnerability Scanner	2025-02-05 14:00:57
104.152.52.176	botsattackproxy	Botnet DB Scanner	2025-01-20 14:03:26
104.152.52.141	botsattack	Vulnerability Scanner	2025-01-09 22:45:15
104.152.52.165	botsattackproxy	Bot attacker IP	2024-09-24 16:44:08
104.152.52.226	botsattackproxy	Vulnerability Scanner	2024-08-28 12:46:53
104.152.52.142	spambotsattack	Vulnerability Scanner	2024-08-26 12:47:13
104.152.52.116	spamattack	Compromised IP	2024-07-06 14:07:26
104.152.52.204	attack	Bad IP	2024-07-01 12:36:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27886
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.152.52.58.			IN	A

;; AUTHORITY SECTION:
.			55	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 23:48:00 CST 2022
;; MSG SIZE  rcvd: 106

Host info

58.52.152.104.in-addr.arpa domain name pointer internettl.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
58.52.152.104.in-addr.arpa	name = internettl.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.247.110.8	attackspam	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-09-27 23:50:02
87.117.52.214	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:10:42.	2019-09-28 00:32:27
46.101.43.224	attack	Sep 27 21:08:17 gw1 sshd[31841]: Failed password for root from 46.101.43.224 port 36276 ssh2 Sep 27 21:12:48 gw1 sshd[32006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.43.224 ...	2019-09-28 00:25:48
31.44.117.74	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-27 23:58:51
112.13.91.29	attackbots	Sep 27 17:30:31 nextcloud sshd\[23504\]: Invalid user rosa from 112.13.91.29 Sep 27 17:30:31 nextcloud sshd\[23504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.13.91.29 Sep 27 17:30:33 nextcloud sshd\[23504\]: Failed password for invalid user rosa from 112.13.91.29 port 3548 ssh2 ...	2019-09-28 00:08:38
197.41.144.207	attackspam	Telnetd brute force attack detected by fail2ban	2019-09-28 00:08:08
3.112.251.246	attack	Lines containing failures of 3.112.251.246 (max 1000) Sep 27 18:04:15 Server sshd[2311]: Invalid user mantis from 3.112.251.246 port 56418 Sep 27 18:04:15 Server sshd[2311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.112.251.246 Sep 27 18:04:17 Server sshd[2311]: Failed password for invalid user mantis from 3.112.251.246 port 56418 ssh2 Sep 27 18:04:17 Server sshd[2311]: Received disconnect from 3.112.251.246 port 56418:11: Bye Bye [preauth] Sep 27 18:04:17 Server sshd[2311]: Disconnected from invalid user mantis 3.112.251.246 port 56418 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=3.112.251.246	2019-09-27 23:49:20
61.94.150.113	attack	Sep 27 02:02:43 web9 sshd\[8236\]: Invalid user oe from 61.94.150.113 Sep 27 02:02:43 web9 sshd\[8236\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.94.150.113 Sep 27 02:02:44 web9 sshd\[8236\]: Failed password for invalid user oe from 61.94.150.113 port 44956 ssh2 Sep 27 02:10:44 web9 sshd\[9695\]: Invalid user oracle from 61.94.150.113 Sep 27 02:10:44 web9 sshd\[9695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.94.150.113	2019-09-28 00:29:14
144.217.80.190	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-09-27 23:56:10
68.32.83.238	attackbotsspam	detected by Fail2Ban	2019-09-28 00:06:36
61.190.99.62	attack	(mod_security) mod_security (id:230011) triggered by 61.190.99.62 (CN/China/-): 5 in the last 3600 secs	2019-09-28 00:00:29
106.13.87.170	attack	Sep 27 16:16:24 ns41 sshd[21817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.87.170	2019-09-28 00:31:38
92.46.73.184	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:10:45.	2019-09-28 00:26:39
182.101.207.194	attackspam	\[Fri Sep 27 16:45:01 2019\] \[error\] \[client 182.101.207.194\] client denied by server configuration: /var/www/html/default/ \[Fri Sep 27 16:45:01 2019\] \[error\] \[client 182.101.207.194\] client denied by server configuration: /var/www/html/default/.noindex.html \[Fri Sep 27 16:45:06 2019\] \[error\] \[client 182.101.207.194\] client denied by server configuration: /var/www/html/default/index.action ...	2019-09-28 00:19:58
150.129.3.232	attackbotsspam	Sep 27 06:12:03 kapalua sshd\[9208\]: Invalid user temp from 150.129.3.232 Sep 27 06:12:03 kapalua sshd\[9208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.129.3.232 Sep 27 06:12:05 kapalua sshd\[9208\]: Failed password for invalid user temp from 150.129.3.232 port 37732 ssh2 Sep 27 06:18:18 kapalua sshd\[9804\]: Invalid user admin from 150.129.3.232 Sep 27 06:18:18 kapalua sshd\[9804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.129.3.232	2019-09-28 00:22:18

Recently Reported IPs

36.67.8.13	177.228.73.170	175.176.41.5	121.34.35.135
106.14.24.213	114.243.173.98	2.183.110.245	185.112.83.28
41.239.66.126	223.17.165.127	37.75.81.69	23.81.127.87
41.45.182.116	197.46.66.42	177.44.16.43	197.162.185.173
197.249.20.32	49.66.222.59	103.197.133.110	180.242.195.194