52.221.2.171 - IPInfo

Basic Info

City: Singapore

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.221.241.210	attack	Jun 17 07:19:22 mail sshd[20847]: Failed password for root from 52.221.241.210 port 46836 ssh2 Jun 17 07:25:42 mail sshd[20974]: Invalid user user from 52.221.241.210 port 45362 ...	2020-06-17 14:29:00
52.221.207.239	attackbotsspam	Lines containing failures of 52.221.207.239 Apr 18 22:14:23 shared05 sshd[26766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.207.239 user=r.r Apr 18 22:14:24 shared05 sshd[26766]: Failed password for r.r from 52.221.207.239 port 44846 ssh2 Apr 18 22:14:24 shared05 sshd[26766]: Received disconnect from 52.221.207.239 port 44846:11: Bye Bye [preauth] Apr 18 22:14:24 shared05 sshd[26766]: Disconnected from authenticating user r.r 52.221.207.239 port 44846 [preauth] Apr 18 22:19:44 shared05 sshd[28936]: Invalid user pu from 52.221.207.239 port 41626 Apr 18 22:19:44 shared05 sshd[28936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.207.239 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=52.221.207.239	2020-04-19 05:18:44
52.221.226.107	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541754bd7ea2c3a4 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: SG \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 \| CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:19:41
52.221.24.54	attackbots	Automatic report - XMLRPC Attack	2019-10-23 20:44:49
52.221.240.65	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2019-10-21 07:33:56
52.221.216.213	attackbotsspam	Sep 19 20:34:25 MK-Soft-VM5 sshd\[8371\]: Invalid user faye from 52.221.216.213 port 56396 Sep 19 20:34:25 MK-Soft-VM5 sshd\[8371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.216.213 Sep 19 20:34:27 MK-Soft-VM5 sshd\[8371\]: Failed password for invalid user faye from 52.221.216.213 port 56396 ssh2 ...	2019-09-20 05:31:31
52.221.227.130	attackbots	Sep 5 13:09:55 hpm sshd\[20563\]: Invalid user wwwadmin from 52.221.227.130 Sep 5 13:09:55 hpm sshd\[20563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-221-227-130.ap-southeast-1.compute.amazonaws.com Sep 5 13:09:57 hpm sshd\[20563\]: Failed password for invalid user wwwadmin from 52.221.227.130 port 46323 ssh2 Sep 5 13:14:48 hpm sshd\[20948\]: Invalid user redmine from 52.221.227.130 Sep 5 13:14:48 hpm sshd\[20948\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-221-227-130.ap-southeast-1.compute.amazonaws.com	2019-09-06 07:26:34
52.221.240.4	attack	6443/tcp [2019-07-02]2pkt	2019-07-03 05:05:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.221.2.171
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53290
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.221.2.171.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025121401 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 15 12:13:40 CST 2025
;; MSG SIZE  rcvd: 105

Host info

171.2.221.52.in-addr.arpa domain name pointer ec2-52-221-2-171.ap-southeast-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
171.2.221.52.in-addr.arpa	name = ec2-52-221-2-171.ap-southeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.148.107	attackbots	May 25 08:34:12 roki-contabo sshd\[2937\]: Invalid user endah from 134.209.148.107 May 25 08:34:12 roki-contabo sshd\[2937\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 May 25 08:34:14 roki-contabo sshd\[2937\]: Failed password for invalid user endah from 134.209.148.107 port 58436 ssh2 May 25 08:37:16 roki-contabo sshd\[2982\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 user=root May 25 08:37:17 roki-contabo sshd\[2982\]: Failed password for root from 134.209.148.107 port 44776 ssh2 ...	2020-05-25 14:55:30
120.53.24.140	attackbots	Invalid user matthew from 120.53.24.140 port 55412	2020-05-25 15:08:15
217.182.241.115	attackspam	Hits on port : 2873	2020-05-25 14:52:41
118.242.19.74	attackspambots	SMB Server BruteForce Attack	2020-05-25 14:50:57
144.76.29.148	attackspam	20 attempts against mh-misbehave-ban on wood	2020-05-25 15:07:00
193.58.196.146	attack	$f2bV_matches	2020-05-25 15:00:50
190.213.130.83	attackbotsspam	Port Scan detected! ...	2020-05-25 14:36:04
104.128.65.98	attack	[portscan] Port scan	2020-05-25 14:58:54
223.223.190.130	attack	May 25 06:31:31 sshgateway sshd\[12352\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.223.190.130 user=root May 25 06:31:33 sshgateway sshd\[12352\]: Failed password for root from 223.223.190.130 port 62312 ssh2 May 25 06:37:05 sshgateway sshd\[12453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.223.190.130 user=root	2020-05-25 14:49:44
139.59.66.101	attack	5x Failed Password	2020-05-25 14:57:09
185.175.93.23	attack	May 25 08:27:51 debian-2gb-nbg1-2 kernel: \[12646876.391779\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.23 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=54651 PROTO=TCP SPT=54937 DPT=5926 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-25 14:58:34
180.164.180.120	attack	May 25 03:48:56 vlre-nyc-1 sshd\[9388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.180.120 user=root May 25 03:48:59 vlre-nyc-1 sshd\[9388\]: Failed password for root from 180.164.180.120 port 34248 ssh2 May 25 03:50:26 vlre-nyc-1 sshd\[9427\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.180.120 user=root May 25 03:50:28 vlre-nyc-1 sshd\[9427\]: Failed password for root from 180.164.180.120 port 57122 ssh2 May 25 03:52:02 vlre-nyc-1 sshd\[9468\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.180.120 user=root ...	2020-05-25 15:16:16
202.137.142.68	attack	$f2bV_matches	2020-05-25 14:34:22
112.194.89.250	attackbots	May 24 06:38:11 warning: unknown[112.194.89.250]: SASL LOGIN authentication failed: authentication failure May 24 06:38:12 warning: unknown[112.194.89.250]: SASL LOGIN authentication failed: authentication failure May 24 06:38:14 warning: unknown[112.194.89.250]: SASL LOGIN authentication failed: authentication failure	2020-05-25 15:02:51
67.211.216.7	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-25 14:41:17

Recently Reported IPs

22.245.118.86	178.203.198.55	96.50.219.252	155.5.33.90
79.79.199.94	250.94.145.193	55.117.129.136	150.162.57.8
220.122.2.172	243.26.84.164	205.58.57.17	29.218.16.234
36.138.108.141	204.86.72.72	207.42.78.31	14.24.13.95
235.82.172.32	152.235.210.109	196.130.168.190	203.80.255.44