104.131.12.161

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.128.20	proxy	VPN fraud	2023-03-27 12:51:53
104.131.12.184	attack	Oct 7 23:33:50 pornomens sshd\[27527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.12.184 user=root Oct 7 23:33:53 pornomens sshd\[27527\]: Failed password for root from 104.131.12.184 port 36354 ssh2 Oct 8 00:03:03 pornomens sshd\[28137\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.12.184 user=root ...	2020-10-08 06:59:54
104.131.12.184	attackbotsspam	(sshd) Failed SSH login from 104.131.12.184 (US/United States/-): 10 in the last 3600 secs	2020-10-07 23:23:18
104.131.12.184	attackspambots	Oct 7 09:07:10 ns381471 sshd[12901]: Failed password for root from 104.131.12.184 port 53172 ssh2	2020-10-07 15:28:10
104.131.126.10	attack	Oct 1 20:52:41 gitlab sshd[2460932]: Invalid user ubuntu from 104.131.126.10 port 47952 Oct 1 20:52:41 gitlab sshd[2460932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.126.10 Oct 1 20:52:41 gitlab sshd[2460932]: Invalid user ubuntu from 104.131.126.10 port 47952 Oct 1 20:52:43 gitlab sshd[2460932]: Failed password for invalid user ubuntu from 104.131.126.10 port 47952 ssh2 Oct 1 20:56:10 gitlab sshd[2461469]: Invalid user mine from 104.131.126.10 port 56272 ...	2020-10-02 05:09:19
104.131.126.10	attack	Invalid user pierre from 104.131.126.10 port 40330	2020-10-01 21:27:32
104.131.126.10	attackspambots	Invalid user pierre from 104.131.126.10 port 40330	2020-10-01 13:43:08
104.131.12.67	attackspambots	Automatic report - Banned IP Access	2020-09-27 03:48:56
104.131.12.67	attackbotsspam	Automatic report - Banned IP Access	2020-09-26 19:49:40
104.131.126.10	attack	Brute-force attempt banned	2020-09-25 05:30:35
104.131.12.184	attack	2020-09-10 UTC: (2x) - media,root	2020-09-12 03:29:22
104.131.12.184	attackbots	2020-09-10 UTC: (2x) - media,root	2020-09-11 19:31:39
104.131.12.184	attackspambots	Sep 1 09:18:58 server sshd[10645]: Invalid user nfe from 104.131.12.184 port 43420 ...	2020-09-01 15:48:00
104.131.12.67	attackspam	104.131.12.67 - - [29/Aug/2020:08:29:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2083 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.12.67 - - [29/Aug/2020:08:29:57 +0100] "POST /wp-login.php HTTP/1.1" 200 2081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.12.67 - - [29/Aug/2020:08:29:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2084 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-29 16:48:45
104.131.12.184	attackbots	Invalid user student from 104.131.12.184 port 48256	2020-08-22 05:19:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.12.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27410
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.12.161.			IN	A

;; AUTHORITY SECTION:
.			255	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 19:11:44 CST 2022
;; MSG SIZE  rcvd: 107

Host info

161.12.131.104.in-addr.arpa domain name pointer www.bauerfinancial.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
161.12.131.104.in-addr.arpa	name = www.bauerfinancial.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.209.0.3	attack	Trying ports that it shouldn't be.	2020-09-24 22:10:48
222.187.227.223	attackspambots	2020-09-23T19:29:24.494943abusebot-4.cloudsearch.cf sshd[10236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.187.227.223 user=root 2020-09-23T19:29:26.342667abusebot-4.cloudsearch.cf sshd[10236]: Failed password for root from 222.187.227.223 port 54142 ssh2 2020-09-23T19:29:29.660193abusebot-4.cloudsearch.cf sshd[10238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.187.227.223 user=root 2020-09-23T19:29:31.191981abusebot-4.cloudsearch.cf sshd[10238]: Failed password for root from 222.187.227.223 port 59834 ssh2 2020-09-23T19:29:35.582262abusebot-4.cloudsearch.cf sshd[10244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.187.227.223 user=root 2020-09-23T19:29:36.938338abusebot-4.cloudsearch.cf sshd[10244]: Failed password for root from 222.187.227.223 port 36524 ssh2 2020-09-23T19:29:40.479787abusebot-4.cloudsearch.cf sshd[10246]: pam_unix(sshd: ...	2020-09-24 21:59:32
51.75.24.200	attackspam	Invalid user juan from 51.75.24.200 port 39876	2020-09-24 21:35:10
67.205.143.140	attackspambots	67.205.143.140 - - [24/Sep/2020:12:19:47 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 67.205.143.140 - - [24/Sep/2020:12:19:49 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 67.205.143.140 - - [24/Sep/2020:12:19:55 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-24 21:55:43
67.205.137.155	attack	$f2bV_matches	2020-09-24 22:11:14
201.236.182.92	attackspambots	Invalid user mike from 201.236.182.92 port 35840	2020-09-24 22:13:49
124.185.128.97	attackspam	2020-09-24T06:38:58.209127linuxbox-skyline sshd[114772]: Invalid user packer from 124.185.128.97 port 36862 ...	2020-09-24 21:36:41
116.58.172.118	attack	Sep 24 13:28:50 ovpn sshd\[32025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.58.172.118 user=root Sep 24 13:28:52 ovpn sshd\[32025\]: Failed password for root from 116.58.172.118 port 50386 ssh2 Sep 24 13:35:00 ovpn sshd\[1127\]: Invalid user haoyu from 116.58.172.118 Sep 24 13:35:00 ovpn sshd\[1127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.58.172.118 Sep 24 13:35:02 ovpn sshd\[1127\]: Failed password for invalid user haoyu from 116.58.172.118 port 45331 ssh2	2020-09-24 21:32:58
178.32.197.90	attack	Sep 23 19:04:54 mail postfix/submission/smtpd[17759]: lost connection after STARTTLS from swift.probe.onyphe.net[178.32.197.90]	2020-09-24 21:42:04
198.71.238.6	attackspam	Automatic report - Banned IP Access	2020-09-24 22:08:06
128.199.131.150	attack	Sep 24 10:05:10 vlre-nyc-1 sshd\[12083\]: Invalid user josh from 128.199.131.150 Sep 24 10:05:10 vlre-nyc-1 sshd\[12083\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.131.150 Sep 24 10:05:12 vlre-nyc-1 sshd\[12083\]: Failed password for invalid user josh from 128.199.131.150 port 43590 ssh2 Sep 24 10:14:26 vlre-nyc-1 sshd\[12228\]: Invalid user ubuntu from 128.199.131.150 Sep 24 10:14:26 vlre-nyc-1 sshd\[12228\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.131.150 ...	2020-09-24 21:32:29
74.82.47.9	attackspambots	UDP 74.82.47.9:35869 -> port 17, len 29	2020-09-24 21:37:43
217.14.211.216	attackspambots	Invalid user vpn from 217.14.211.216 port 43044	2020-09-24 22:07:48
219.246.187.32	attack	2020-09-23T22:19:35.332190correo.[domain] sshd[20230]: Invalid user tibco from 219.246.187.32 port 41988 2020-09-23T22:19:37.210944correo.[domain] sshd[20230]: Failed password for invalid user tibco from 219.246.187.32 port 41988 ssh2 2020-09-23T22:31:48.782287correo.[domain] sshd[21501]: Invalid user sg from 219.246.187.32 port 58730 ...	2020-09-24 22:13:35
116.103.32.30	attackbotsspam	TCP (SYN) 116.103.32.30:46780 -> port 23, len 44	2020-09-24 22:12:28

Recently Reported IPs

104.131.117.77	104.131.12.172	104.131.125.117	104.131.128.83
104.131.128.96	104.131.13.88	104.131.130.40	104.131.132.135
104.131.132.64	104.131.134.94	104.131.149.64	104.131.15.232
134.13.69.211	104.131.15.94	104.131.156.107	104.131.16.36
104.131.164.125	104.131.165.46	104.131.165.7	104.131.17.170