City: Singapore
Region: unknown
Country: Singapore
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 52.221.241.210 | attack | Jun 17 07:19:22 mail sshd[20847]: Failed password for root from 52.221.241.210 port 46836 ssh2 Jun 17 07:25:42 mail sshd[20974]: Invalid user user from 52.221.241.210 port 45362 ... |
2020-06-17 14:29:00 |
| 52.221.207.239 | attackbotsspam | Lines containing failures of 52.221.207.239 Apr 18 22:14:23 shared05 sshd[26766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.207.239 user=r.r Apr 18 22:14:24 shared05 sshd[26766]: Failed password for r.r from 52.221.207.239 port 44846 ssh2 Apr 18 22:14:24 shared05 sshd[26766]: Received disconnect from 52.221.207.239 port 44846:11: Bye Bye [preauth] Apr 18 22:14:24 shared05 sshd[26766]: Disconnected from authenticating user r.r 52.221.207.239 port 44846 [preauth] Apr 18 22:19:44 shared05 sshd[28936]: Invalid user pu from 52.221.207.239 port 41626 Apr 18 22:19:44 shared05 sshd[28936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.207.239 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=52.221.207.239 |
2020-04-19 05:18:44 |
| 52.221.226.107 | attack | The IP has triggered Cloudflare WAF. CF-Ray: 541754bd7ea2c3a4 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: SG | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 | CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB). |
2019-12-08 04:19:41 |
| 52.221.24.54 | attackbots | Automatic report - XMLRPC Attack |
2019-10-23 20:44:49 |
| 52.221.240.65 | attackbotsspam | SSH/22 MH Probe, BF, Hack - |
2019-10-21 07:33:56 |
| 52.221.216.213 | attackbotsspam | Sep 19 20:34:25 MK-Soft-VM5 sshd\[8371\]: Invalid user faye from 52.221.216.213 port 56396 Sep 19 20:34:25 MK-Soft-VM5 sshd\[8371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.216.213 Sep 19 20:34:27 MK-Soft-VM5 sshd\[8371\]: Failed password for invalid user faye from 52.221.216.213 port 56396 ssh2 ... |
2019-09-20 05:31:31 |
| 52.221.227.130 | attackbots | Sep 5 13:09:55 hpm sshd\[20563\]: Invalid user wwwadmin from 52.221.227.130 Sep 5 13:09:55 hpm sshd\[20563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-221-227-130.ap-southeast-1.compute.amazonaws.com Sep 5 13:09:57 hpm sshd\[20563\]: Failed password for invalid user wwwadmin from 52.221.227.130 port 46323 ssh2 Sep 5 13:14:48 hpm sshd\[20948\]: Invalid user redmine from 52.221.227.130 Sep 5 13:14:48 hpm sshd\[20948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-221-227-130.ap-southeast-1.compute.amazonaws.com |
2019-09-06 07:26:34 |
| 52.221.240.4 | attack | 6443/tcp [2019-07-02]2pkt |
2019-07-03 05:05:48 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.221.2.171
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53290
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;52.221.2.171. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025121401 1800 900 604800 86400
;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 15 12:13:40 CST 2025
;; MSG SIZE rcvd: 105171.2.221.52.in-addr.arpa domain name pointer ec2-52-221-2-171.ap-southeast-1.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
171.2.221.52.in-addr.arpa name = ec2-52-221-2-171.ap-southeast-1.compute.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 37.187.113.144 | attackspambots | $f2bV_matches |
2020-06-11 14:15:20 |
| 197.248.20.205 | attackspambots | 2020-06-10 18:20:56 Reject access to port(s):465 2 times a day |
2020-06-11 14:21:42 |
| 106.12.148.201 | attackbots | Wordpress malicious attack:[sshd] |
2020-06-11 14:48:12 |
| 129.211.146.50 | attack | $f2bV_matches |
2020-06-11 14:31:49 |
| 222.186.175.202 | attackbots | 2020-06-11T06:21:59.837594shield sshd\[23301\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root 2020-06-11T06:22:01.055791shield sshd\[23301\]: Failed password for root from 222.186.175.202 port 46760 ssh2 2020-06-11T06:22:04.590495shield sshd\[23301\]: Failed password for root from 222.186.175.202 port 46760 ssh2 2020-06-11T06:22:08.168257shield sshd\[23301\]: Failed password for root from 222.186.175.202 port 46760 ssh2 2020-06-11T06:22:11.330181shield sshd\[23301\]: Failed password for root from 222.186.175.202 port 46760 ssh2 |
2020-06-11 14:22:34 |
| 133.130.119.178 | attack | SSH Brute-Force. Ports scanning. |
2020-06-11 14:49:10 |
| 83.97.20.35 | attackspambots | Jun 11 08:10:33 debian-2gb-nbg1-2 kernel: \[14114561.059962\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=83.97.20.35 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=59075 DPT=49154 WINDOW=65535 RES=0x00 SYN URGP=0 |
2020-06-11 14:35:42 |
| 123.126.106.88 | attack | $f2bV_matches |
2020-06-11 14:47:55 |
| 59.100.4.19 | attackbots | TCP port 8080: Scan and connection |
2020-06-11 14:42:07 |
| 189.7.81.29 | attackspambots | Jun 11 00:15:32 server1 sshd\[22509\]: Failed password for invalid user user3 from 189.7.81.29 port 48636 ssh2 Jun 11 00:20:33 server1 sshd\[26018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.81.29 user=root Jun 11 00:20:36 server1 sshd\[26018\]: Failed password for root from 189.7.81.29 port 51848 ssh2 Jun 11 00:25:27 server1 sshd\[29631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.81.29 user=root Jun 11 00:25:29 server1 sshd\[29631\]: Failed password for root from 189.7.81.29 port 55056 ssh2 ... |
2020-06-11 14:36:25 |
| 190.102.134.70 | attack | SMB Server BruteForce Attack |
2020-06-11 14:29:16 |
| 160.124.140.178 | attackbotsspam | 20 attempts against mh-ssh on cloud |
2020-06-11 14:47:34 |
| 42.239.155.148 | attackspambots | MultiHost/MultiPort Probe, Scan, Hack - |
2020-06-11 14:34:52 |
| 161.35.77.82 | attack | Jun 11 01:59:26 firewall sshd[27646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.77.82 user=root Jun 11 01:59:29 firewall sshd[27646]: Failed password for root from 161.35.77.82 port 43724 ssh2 Jun 11 02:02:32 firewall sshd[27759]: Invalid user jasper from 161.35.77.82 ... |
2020-06-11 14:39:55 |
| 92.255.110.146 | attackbotsspam | 2020-06-11T04:25:38.449483abusebot-6.cloudsearch.cf sshd[26361]: Invalid user oracle from 92.255.110.146 port 42470 2020-06-11T04:25:38.456009abusebot-6.cloudsearch.cf sshd[26361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=usr-92-255-110-146.clgp.ru 2020-06-11T04:25:38.449483abusebot-6.cloudsearch.cf sshd[26361]: Invalid user oracle from 92.255.110.146 port 42470 2020-06-11T04:25:40.305060abusebot-6.cloudsearch.cf sshd[26361]: Failed password for invalid user oracle from 92.255.110.146 port 42470 ssh2 2020-06-11T04:27:43.351194abusebot-6.cloudsearch.cf sshd[26571]: Invalid user xbyang from 92.255.110.146 port 51340 2020-06-11T04:27:43.365058abusebot-6.cloudsearch.cf sshd[26571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=usr-92-255-110-146.clgp.ru 2020-06-11T04:27:43.351194abusebot-6.cloudsearch.cf sshd[26571]: Invalid user xbyang from 92.255.110.146 port 51340 2020-06-11T04:27:45.041496abusebot- ... |
2020-06-11 14:18:00 |