44.199.252.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 44.199.252.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10512
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;44.199.252.2.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 16:28:24 CST 2025
;; MSG SIZE  rcvd: 105

Host info

2.252.199.44.in-addr.arpa domain name pointer ec2-44-199-252-2.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.252.199.44.in-addr.arpa	name = ec2-44-199-252-2.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.133.151.31	attack	Honeypot attack, port: 445, PTR: dsl-187-133-151-31-dyn.prod-infinitum.com.mx.	2020-07-06 00:39:57
85.204.246.240	attackbotsspam	85.204.246.240 - - [05/Jul/2020:17:05:08 +0100] "POST /wp-login.php HTTP/1.1" 200 3568 "https://wpeagledemoblog.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.90 Safari/537.36 2345Explorer/9.3.2.17331" 85.204.246.240 - - [05/Jul/2020:17:05:09 +0100] "POST /wp-login.php HTTP/1.1" 200 3568 "https://wpeagledemoblog.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.90 Safari/537.36 2345Explorer/9.3.2.17331" 85.204.246.240 - - [05/Jul/2020:17:05:10 +0100] "POST /wp-login.php HTTP/1.1" 200 3625 "https://wpeagledemoblog.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.90 Safari/537.36 2345Explorer/9.3.2.17331" ...	2020-07-06 00:43:24
27.147.44.2	attackbots	Honeypot attack, port: 5555, PTR: PTR record not found	2020-07-06 01:25:15
124.206.0.228	attack	Jul 5 16:47:59 rush sshd[16387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.206.0.228 Jul 5 16:48:01 rush sshd[16387]: Failed password for invalid user user from 124.206.0.228 port 14977 ssh2 Jul 5 16:50:32 rush sshd[16433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.206.0.228 ...	2020-07-06 01:05:41
52.130.93.119	attack	Jul 5 15:56:52 pornomens sshd\[18623\]: Invalid user xwz from 52.130.93.119 port 1024 Jul 5 15:56:52 pornomens sshd\[18623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.130.93.119 Jul 5 15:56:53 pornomens sshd\[18623\]: Failed password for invalid user xwz from 52.130.93.119 port 1024 ssh2 ...	2020-07-06 01:20:56
156.236.118.70	attackspam	21 attempts against mh-ssh on creek	2020-07-06 00:56:57
104.211.203.197	attackspambots	" "	2020-07-06 00:51:20
171.247.152.17	attack	Honeypot attack, port: 81, PTR: dynamic-ip-adsl.viettel.vn.	2020-07-06 01:00:58
187.32.89.162	attackspambots	2020-07-05T22:12:55.813369hostname sshd[82813]: Invalid user ck from 187.32.89.162 port 33673 ...	2020-07-06 01:19:53
132.148.165.216	attackbots	2020-07-05T12:36:19.284954shield sshd\[14494\]: Invalid user update from 132.148.165.216 port 33952 2020-07-05T12:36:19.289031shield sshd\[14494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-132-148-165-216.ip.secureserver.net 2020-07-05T12:36:21.041180shield sshd\[14494\]: Failed password for invalid user update from 132.148.165.216 port 33952 ssh2 2020-07-05T12:39:33.884172shield sshd\[15024\]: Invalid user cdk from 132.148.165.216 port 33062 2020-07-05T12:39:33.887809shield sshd\[15024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-132-148-165-216.ip.secureserver.net	2020-07-06 00:46:43
122.100.222.61	attack	Honeypot attack, port: 5555, PTR: nz222l61.bb122100.ctm.net.	2020-07-06 01:20:38
167.99.170.91	attack	Jul 5 19:09:40 debian-2gb-nbg1-2 kernel: \[16227593.275902\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=167.99.170.91 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=34579 PROTO=TCP SPT=53047 DPT=21170 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-06 01:16:13
61.177.172.128	attack	Brute-force attempt banned	2020-07-06 00:59:26
102.39.111.112	attackbots	Lines containing failures of 102.39.111.112 Jul 4 09:30:01 neweola postfix/smtpd[23842]: connect from unknown[102.39.111.112] Jul 4 09:30:02 neweola postfix/smtpd[23842]: lost connection after AUTH from unknown[102.39.111.112] Jul 4 09:30:02 neweola postfix/smtpd[23842]: disconnect from unknown[102.39.111.112] ehlo=1 auth=0/1 commands=1/2 Jul 4 09:30:02 neweola postfix/smtpd[23842]: connect from unknown[102.39.111.112] Jul 4 09:30:03 neweola postfix/smtpd[23842]: lost connection after AUTH from unknown[102.39.111.112] Jul 4 09:30:03 neweola postfix/smtpd[23842]: disconnect from unknown[102.39.111.112] ehlo=1 auth=0/1 commands=1/2 Jul 4 09:30:03 neweola postfix/smtpd[23860]: connect from unknown[102.39.111.112] Jul 4 09:30:04 neweola postfix/smtpd[23860]: lost connection after AUTH from unknown[102.39.111.112] Jul 4 09:30:04 neweola postfix/smtpd[23860]: disconnect from unknown[102.39.111.112] ehlo=1 auth=0/1 commands=1/2 Jul 4 09:30:05 neweola postfix/smtpd[238........ ------------------------------	2020-07-06 00:49:47
128.199.197.161	attackspam	Jul 5 19:04:24 abendstille sshd\[7802\]: Invalid user jk from 128.199.197.161 Jul 5 19:04:24 abendstille sshd\[7802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.197.161 Jul 5 19:04:26 abendstille sshd\[7802\]: Failed password for invalid user jk from 128.199.197.161 port 55680 ssh2 Jul 5 19:07:49 abendstille sshd\[11176\]: Invalid user networking from 128.199.197.161 Jul 5 19:07:49 abendstille sshd\[11176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.197.161 ...	2020-07-06 01:13:47

Recently Reported IPs

68.29.18.70	26.26.228.139	166.52.3.166	28.207.146.113
61.144.44.242	233.243.251.224	191.188.107.212	227.34.108.193
87.122.36.255	217.84.116.6	238.245.103.37	29.215.193.138
7.4.22.159	107.209.198.55	232.194.231.161	97.16.94.128
91.234.238.29	60.175.60.188	89.134.102.241	194.83.131.44