City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| Type | Details | Datetime |
|---|---|---|
| attackproxy | Bot attacker IP |
2024-04-15 01:49:14 |
| attack | Scan port |
2024-01-31 13:42:38 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.152.52.231 | botsattackproxy | Bot attacker IP |
2025-03-25 13:44:38 |
| 104.152.52.145 | botsattackproxy | Vulnerability Scanner |
2025-03-20 13:41:36 |
| 104.152.52.100 | spamattackproxy | VoIP blacklist IP |
2025-03-14 22:09:59 |
| 104.152.52.139 | attack | Brute-force attacker IP |
2025-03-10 13:45:36 |
| 104.152.52.219 | botsattackproxy | Bot attacker IP |
2025-03-04 13:55:48 |
| 104.152.52.124 | botsattackproxy | Vulnerability Scanner |
2025-02-26 17:12:59 |
| 104.152.52.146 | botsattackproxy | Bot attacker IP |
2025-02-21 12:31:03 |
| 104.152.52.161 | botsattackproxy | Vulnerability Scanner |
2025-02-05 14:00:57 |
| 104.152.52.176 | botsattackproxy | Botnet DB Scanner |
2025-01-20 14:03:26 |
| 104.152.52.141 | botsattack | Vulnerability Scanner |
2025-01-09 22:45:15 |
| 104.152.52.165 | botsattackproxy | Bot attacker IP |
2024-09-24 16:44:08 |
| 104.152.52.226 | botsattackproxy | Vulnerability Scanner |
2024-08-28 12:46:53 |
| 104.152.52.142 | spambotsattack | Vulnerability Scanner |
2024-08-26 12:47:13 |
| 104.152.52.116 | spamattack | Compromised IP |
2024-07-06 14:07:26 |
| 104.152.52.204 | attack | Bad IP |
2024-07-01 12:36:27 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.52.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26854
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.152.52.97. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024013002 1800 900 604800 86400
;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 31 13:42:35 CST 2024
;; MSG SIZE rcvd: 10697.52.152.104.in-addr.arpa domain name pointer internettl.org.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
97.52.152.104.in-addr.arpa name = internettl.org.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 129.204.240.42 | attackspambots | "fail2ban match" |
2020-06-30 17:28:09 |
| 39.59.68.96 | attackbotsspam | IP 39.59.68.96 attacked honeypot on port: 8080 at 6/29/2020 8:50:48 PM |
2020-06-30 17:21:29 |
| 59.152.98.163 | attack | 2020-06-30T03:18:59.043337server.mjenks.net sshd[3469900]: Invalid user thh from 59.152.98.163 port 59484 2020-06-30T03:18:59.050632server.mjenks.net sshd[3469900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.152.98.163 2020-06-30T03:18:59.043337server.mjenks.net sshd[3469900]: Invalid user thh from 59.152.98.163 port 59484 2020-06-30T03:19:01.414185server.mjenks.net sshd[3469900]: Failed password for invalid user thh from 59.152.98.163 port 59484 ssh2 2020-06-30T03:23:17.537789server.mjenks.net sshd[3470397]: Invalid user dst from 59.152.98.163 port 56838 ... |
2020-06-30 17:08:32 |
| 212.64.68.71 | attackbots | Brute force attempt |
2020-06-30 17:05:20 |
| 157.245.233.164 | attackbots | 157.245.233.164 - - [30/Jun/2020:05:51:32 +0200] "POST /wp-login.php HTTP/1.1" 200 3434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.233.164 - - [30/Jun/2020:05:51:33 +0200] "POST /wp-login.php HTTP/1.1" 200 3433 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-06-30 16:55:07 |
| 157.7.233.185 | attackbotsspam | 2020-06-30T06:57:29.908680ionos.janbro.de sshd[58356]: Invalid user manas from 157.7.233.185 port 34477 2020-06-30T06:57:32.543960ionos.janbro.de sshd[58356]: Failed password for invalid user manas from 157.7.233.185 port 34477 ssh2 2020-06-30T07:01:20.552756ionos.janbro.de sshd[58393]: Invalid user clare from 157.7.233.185 port 37831 2020-06-30T07:01:20.751851ionos.janbro.de sshd[58393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.7.233.185 2020-06-30T07:01:20.552756ionos.janbro.de sshd[58393]: Invalid user clare from 157.7.233.185 port 37831 2020-06-30T07:01:22.517051ionos.janbro.de sshd[58393]: Failed password for invalid user clare from 157.7.233.185 port 37831 ssh2 2020-06-30T07:05:17.016497ionos.janbro.de sshd[58398]: Invalid user carolina from 157.7.233.185 port 34833 2020-06-30T07:05:17.114878ionos.janbro.de sshd[58398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.7.233.185 2020-06-3 ... |
2020-06-30 16:59:29 |
| 94.102.57.137 | attack | Jun 30 10:53:38 debian-2gb-nbg1-2 kernel: \[15765857.042051\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.57.137 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=43394 PROTO=TCP SPT=50700 DPT=8450 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-06-30 17:13:15 |
| 72.137.28.70 | attack | 2020-06-30T13:50:34.897861luisaranguren sshd[2281620]: Invalid user tit0nich from 72.137.28.70 port 51950 2020-06-30T13:50:37.056829luisaranguren sshd[2281620]: Failed password for invalid user tit0nich from 72.137.28.70 port 51950 ssh2 ... |
2020-06-30 17:34:55 |
| 41.214.139.226 | attackspam | 2020-06-30T03:50:38+0000 Failed SSH Authentication/Brute Force Attack. (Server 6) |
2020-06-30 17:33:46 |
| 193.218.118.131 | attackbots | Unauthorized connection attempt detected from IP address 193.218.118.131 to port 465 |
2020-06-30 17:14:13 |
| 178.47.137.74 | attackspambots | fail2ban |
2020-06-30 17:30:21 |
| 103.8.147.220 | attackspam | port scan and connect, tcp 1433 (ms-sql-s) |
2020-06-30 17:09:54 |
| 113.160.72.154 | attackbotsspam | [29.06.2020 13:16:04] Login failure for user dircreate from 113.160.72.154 |
2020-06-30 17:22:26 |
| 106.12.74.99 | attackbotsspam | Jun 30 05:46:06 electroncash sshd[36951]: Failed password for invalid user zyc from 106.12.74.99 port 48340 ssh2 Jun 30 05:50:36 electroncash sshd[38288]: Invalid user lijia from 106.12.74.99 port 46170 Jun 30 05:50:36 electroncash sshd[38288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.99 Jun 30 05:50:36 electroncash sshd[38288]: Invalid user lijia from 106.12.74.99 port 46170 Jun 30 05:50:39 electroncash sshd[38288]: Failed password for invalid user lijia from 106.12.74.99 port 46170 ssh2 ... |
2020-06-30 17:33:14 |
| 223.240.109.231 | attackbots | Jun 30 02:32:26 Host-KLAX-C sshd[31114]: Disconnected from invalid user weblogic 223.240.109.231 port 59620 [preauth] ... |
2020-06-30 17:30:37 |