128.2.158.27 - IPInfo

Basic Info

City: Pittsburgh

Region: Pennsylvania

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.2.158.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48155
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;128.2.158.27.			IN	A

;; AUTHORITY SECTION:
.			402	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023050400 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 04 17:55:06 CST 2023
;; MSG SIZE  rcvd: 105

Host info

27.158.2.128.in-addr.arpa domain name pointer RELAY-04.ANDREW.CMU.EDU.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
27.158.2.128.in-addr.arpa	name = RELAY-04.ANDREW.CMU.EDU.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.108.66.144	attackbotsspam	PORT-SCAN	2019-11-11 17:41:09
101.231.86.36	attackspambots	$f2bV_matches	2019-11-11 17:28:39
222.99.52.216	attackspambots	2019-11-11T03:52:01.9810201495-001 sshd\[8873\]: Invalid user server from 222.99.52.216 port 64970 2019-11-11T03:52:01.9884391495-001 sshd\[8873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.52.216 2019-11-11T03:52:03.8553331495-001 sshd\[8873\]: Failed password for invalid user server from 222.99.52.216 port 64970 ssh2 2019-11-11T03:56:16.1949641495-001 sshd\[9055\]: Invalid user iino from 222.99.52.216 port 47191 2019-11-11T03:56:16.1983891495-001 sshd\[9055\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.52.216 2019-11-11T03:56:18.7377871495-001 sshd\[9055\]: Failed password for invalid user iino from 222.99.52.216 port 47191 ssh2 ...	2019-11-11 17:37:41
86.83.195.222	attack	Automatic report - SSH Brute-Force Attack	2019-11-11 17:46:30
112.4.154.134	attackbotsspam	Automatic report - Banned IP Access	2019-11-11 17:29:25
39.155.5.129	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/39.155.5.129/ CN - 1H : (135) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN9808 IP : 39.155.5.129 CIDR : 39.155.0.0/19 PREFIX COUNT : 3598 UNIQUE IP COUNT : 18819072 ATTACKS DETECTED ASN9808 : 1H - 1 3H - 2 6H - 2 12H - 3 24H - 10 DateTime : 2019-11-11 07:26:34 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-11-11 17:28:09
217.76.40.82	attackbotsspam	ssh intrusion attempt	2019-11-11 17:30:20
52.169.122.115	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/52.169.122.115/ US - 1H : (173) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN8075 IP : 52.169.122.115 CIDR : 52.160.0.0/11 PREFIX COUNT : 242 UNIQUE IP COUNT : 18722560 ATTACKS DETECTED ASN8075 : 1H - 7 3H - 7 6H - 9 12H - 11 24H - 25 DateTime : 2019-11-11 07:31:04 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-11 17:46:16
137.74.158.143	attack	137.74.158.143 - - \[11/Nov/2019:09:12:02 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 137.74.158.143 - - \[11/Nov/2019:09:12:02 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-11-11 17:27:27
202.166.194.242	attackbotsspam	IMAP	2019-11-11 17:40:38
106.13.4.150	attackspam	Nov 11 09:30:13 pornomens sshd\[31384\]: Invalid user aries from 106.13.4.150 port 47525 Nov 11 09:30:13 pornomens sshd\[31384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.150 Nov 11 09:30:15 pornomens sshd\[31384\]: Failed password for invalid user aries from 106.13.4.150 port 47525 ssh2 ...	2019-11-11 17:12:28
39.135.1.163	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-11 17:42:32
89.248.168.217	attackspambots	11/11/2019-09:54:43.454032 89.248.168.217 Protocol: 17 ET DROP Dshield Block Listed Source group 1	2019-11-11 17:15:20
106.12.84.115	attack	$f2bV_matches	2019-11-11 17:49:41
94.191.50.165	attackbotsspam	Nov 11 10:03:17 sd-53420 sshd\[27977\]: Invalid user weske from 94.191.50.165 Nov 11 10:03:17 sd-53420 sshd\[27977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.50.165 Nov 11 10:03:19 sd-53420 sshd\[27977\]: Failed password for invalid user weske from 94.191.50.165 port 35654 ssh2 Nov 11 10:08:16 sd-53420 sshd\[29383\]: Invalid user bolding from 94.191.50.165 Nov 11 10:08:16 sd-53420 sshd\[29383\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.50.165 ...	2019-11-11 17:29:05

Recently Reported IPs

143.89.157.217	61.56.11.194	140.116.192.198	140.116.91.223
140.116.132.57	140.116.111.71	128.30.2.143	150.244.37.211
140.116.137.10	150.237.128.59	140.116.110.42	114.79.46.116
128.97.141.137	140.116.135.126	193.2.1.105	141.80.8.10
140.116.155.148	140.116.86.169	27.112.69.69	200.18.85.12