52.220.147.166

Basic Info

City: Singapore

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.220.147.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56766
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.220.147.166.			IN	A

;; AUTHORITY SECTION:
.			541	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022102200 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 22 22:22:41 CST 2022
;; MSG SIZE  rcvd: 107

Host info

166.147.220.52.in-addr.arpa domain name pointer ec2-52-220-147-166.ap-southeast-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.147.220.52.in-addr.arpa	name = ec2-52-220-147-166.ap-southeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
195.9.192.50	attackspam	Sep 30 14:29:58 our-server-hostname postfix/smtpd[6587]: connect from unknown[195.9.192.50] Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=195.9.192.50	2019-10-04 16:59:48
118.70.118.21	attackspam	Oct 3 23:51:58 localhost kernel: [3898937.924405] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=118.70.118.21 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=15813 DF PROTO=TCP SPT=56301 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 Oct 3 23:51:58 localhost kernel: [3898937.924444] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=118.70.118.21 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=15813 DF PROTO=TCP SPT=56301 DPT=445 SEQ=99715230 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405A00103030201010402) Oct 3 23:52:01 localhost kernel: [3898940.925132] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=118.70.118.21 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=111 ID=17249 DF PROTO=TCP SPT=56301 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 Oct 3 23:52:01 localhost kernel: [3898940.925140] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=118.70.118.21 D	2019-10-04 17:43:52
165.227.11.173	attackbotsspam	Nov 30 03:22:34 server6 sshd[4166]: reveeclipse mapping checking getaddrinfo for 209310.cloudwaysapps.com [165.227.11.173] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 30 03:22:35 server6 sshd[4166]: Failed password for invalid user tecnici from 165.227.11.173 port 45351 ssh2 Nov 30 03:22:35 server6 sshd[4166]: Received disconnect from 165.227.11.173: 11: Bye Bye [preauth] Nov 30 04:42:27 server6 sshd[30609]: reveeclipse mapping checking getaddrinfo for 209310.cloudwaysapps.com [165.227.11.173] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 30 04:42:29 server6 sshd[30609]: Failed password for invalid user ts3 from 165.227.11.173 port 38217 ssh2 Nov 30 04:42:29 server6 sshd[30609]: Received disconnect from 165.227.11.173: 11: Bye Bye [preauth] Nov 30 06:00:31 server6 sshd[3014]: reveeclipse mapping checking getaddrinfo for 209310.cloudwaysapps.com [165.227.11.17 .... truncated .... reauth] Dec 1 20:01:30 server6 sshd[18427]: reveeclipse mapping checking getaddrinfo for 209310.clou........ -------------------------------	2019-10-04 17:17:30
104.244.78.55	attackspam	Oct 4 08:56:53 hcbbdb sshd\[4412\]: Invalid user aaron from 104.244.78.55 Oct 4 08:56:53 hcbbdb sshd\[4412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.78.55 Oct 4 08:56:56 hcbbdb sshd\[4412\]: Failed password for invalid user aaron from 104.244.78.55 port 50092 ssh2 Oct 4 08:56:58 hcbbdb sshd\[4412\]: Failed password for invalid user aaron from 104.244.78.55 port 50092 ssh2 Oct 4 08:57:00 hcbbdb sshd\[4412\]: Failed password for invalid user aaron from 104.244.78.55 port 50092 ssh2	2019-10-04 17:21:56
45.23.108.9	attack	Oct 4 07:04:28 www5 sshd\[37265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.23.108.9 user=root Oct 4 07:04:31 www5 sshd\[37265\]: Failed password for root from 45.23.108.9 port 58935 ssh2 Oct 4 07:08:37 www5 sshd\[38141\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.23.108.9 user=root ...	2019-10-04 17:43:34
185.234.218.156	attackbots	Oct 4 09:18:54 mail postfix/smtpd\[9782\]: warning: unknown\[185.234.218.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 4 09:27:34 mail postfix/smtpd\[10124\]: warning: unknown\[185.234.218.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 4 10:02:02 mail postfix/smtpd\[10980\]: warning: unknown\[185.234.218.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 4 10:10:38 mail postfix/smtpd\[10980\]: warning: unknown\[185.234.218.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-10-04 17:19:51
185.58.53.66	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2019-10-04 17:23:45
51.38.186.47	attackspambots	Oct 4 06:45:19 intra sshd\[24597\]: Invalid user 123Lemon from 51.38.186.47Oct 4 06:45:21 intra sshd\[24597\]: Failed password for invalid user 123Lemon from 51.38.186.47 port 42616 ssh2Oct 4 06:49:07 intra sshd\[24663\]: Invalid user Pa$$w0rd@1 from 51.38.186.47Oct 4 06:49:09 intra sshd\[24663\]: Failed password for invalid user Pa$$w0rd@1 from 51.38.186.47 port 54800 ssh2Oct 4 06:52:58 intra sshd\[24754\]: Invalid user 123Mass from 51.38.186.47Oct 4 06:53:00 intra sshd\[24754\]: Failed password for invalid user 123Mass from 51.38.186.47 port 38748 ssh2 ...	2019-10-04 16:57:46
185.36.81.236	attackbotsspam	Rude login attack (7 tries in 1d)	2019-10-04 16:56:14
206.189.145.251	attackspam	Automatic report - Banned IP Access	2019-10-04 17:41:07
176.115.100.201	attackspambots	Oct 4 10:55:08 dedicated sshd[15110]: Invalid user Qaz@2018 from 176.115.100.201 port 50068	2019-10-04 17:17:15
200.44.50.155	attackspambots	Lines containing failures of 200.44.50.155 Oct 1 02:27:14 shared09 sshd[14058]: Invalid user apache from 200.44.50.155 port 36926 Oct 1 02:27:14 shared09 sshd[14058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.44.50.155 Oct 1 02:27:16 shared09 sshd[14058]: Failed password for invalid user apache from 200.44.50.155 port 36926 ssh2 Oct 1 02:27:16 shared09 sshd[14058]: Received disconnect from 200.44.50.155 port 36926:11: Bye Bye [preauth] Oct 1 02:27:16 shared09 sshd[14058]: Disconnected from invalid user apache 200.44.50.155 port 36926 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=200.44.50.155	2019-10-04 17:32:42
189.175.243.190	attackbots	fail2ban honeypot	2019-10-04 17:10:42
190.145.55.89	attackspam	$f2bV_matches	2019-10-04 17:30:37
195.154.223.29	attackspam	Oct 4 06:12:20 srv2 sshd\[15489\]: Invalid user centos from 195.154.223.29 port 37524 Oct 4 06:12:20 srv2 sshd\[15492\]: Invalid user centos from 195.154.223.29 port 40351 Oct 4 06:12:21 srv2 sshd\[15494\]: Invalid user centos from 195.154.223.29 port 43176	2019-10-04 17:30:10

Recently Reported IPs

237.189.22.79	86.36.150.71	29.10.220.6	176.199.210.56
201.170.52.169	240.74.46.181	24.90.53.31	203.128.215.67
3.229.106.13	116.158.47.225	120.115.56.49	147.32.0.253
206.189.88.197	185.46.212.80	206.189.88.56	5.141.141.79
174.198.12.79	230.200.7.39	76.152.11.52	184.150.205.4