131.161.11.66 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
131.161.119.172	attack	Suspicious access to SMTP/POP/IMAP services.	2020-06-09 19:05:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.161.11.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29316
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.161.11.66.			IN	A

;; AUTHORITY SECTION:
.			287	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062202 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 23 05:57:21 CST 2022
;; MSG SIZE  rcvd: 106

Host info

66.11.161.131.in-addr.arpa domain name pointer dynamic-131-161-11-66.gptelecomprovedor.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.11.161.131.in-addr.arpa	name = dynamic-131-161-11-66.gptelecomprovedor.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.80.117.214	attackspam	Oct 18 02:24:08 ny01 sshd[16631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.80.117.214 Oct 18 02:24:10 ny01 sshd[16631]: Failed password for invalid user Abc5 from 103.80.117.214 port 53620 ssh2 Oct 18 02:28:04 ny01 sshd[17507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.80.117.214	2019-10-18 14:28:42
115.231.174.170	attackspam	Oct 17 17:41:55 ahost sshd[23086]: Invalid user adrc from 115.231.174.170 Oct 17 17:41:55 ahost sshd[23086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.174.170 Oct 17 17:41:56 ahost sshd[23086]: Failed password for invalid user adrc from 115.231.174.170 port 37565 ssh2 Oct 17 17:41:57 ahost sshd[23086]: Received disconnect from 115.231.174.170: 11: Bye Bye [preauth] Oct 17 17:53:34 ahost sshd[23202]: Invalid user test from 115.231.174.170 Oct 17 17:53:34 ahost sshd[23202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.174.170 Oct 17 17:53:36 ahost sshd[23202]: Failed password for invalid user test from 115.231.174.170 port 41896 ssh2 Oct 17 17:53:36 ahost sshd[23202]: Received disconnect from 115.231.174.170: 11: Bye Bye [preauth] Oct 17 17:59:08 ahost sshd[23267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.174.170 ........ ------------------------------	2019-10-18 14:26:11
79.23.220.118	attackspambots	Oct 18 05:43:26 mxgate1 postfix/postscreen[19384]: CONNECT from [79.23.220.118]:53866 to [176.31.12.44]:25 Oct 18 05:43:26 mxgate1 postfix/dnsblog[19486]: addr 79.23.220.118 listed by domain zen.spamhaus.org as 127.0.0.10 Oct 18 05:43:26 mxgate1 postfix/dnsblog[19486]: addr 79.23.220.118 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 18 05:43:26 mxgate1 postfix/dnsblog[19487]: addr 79.23.220.118 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 18 05:43:26 mxgate1 postfix/dnsblog[19484]: addr 79.23.220.118 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 18 05:43:26 mxgate1 postfix/dnsblog[19485]: addr 79.23.220.118 listed by domain bl.spamcop.net as 127.0.0.2 Oct 18 05:43:32 mxgate1 postfix/postscreen[19384]: DNSBL rank 5 for [79.23.220.118]:53866 Oct x@x Oct 18 05:43:32 mxgate1 postfix/postscreen[19384]: HANGUP after 0.3 from [79.23.220.118]:53866 in tests after SMTP handshake Oct 18 05:43:32 mxgate1 postfix/postscreen[19384]: DISCONNECT [79.23.220.118]:53........ -------------------------------	2019-10-18 14:35:06
106.13.53.173	attackbotsspam	Oct 18 07:54:35 markkoudstaal sshd[22321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.173 Oct 18 07:54:37 markkoudstaal sshd[22321]: Failed password for invalid user osql from 106.13.53.173 port 34096 ssh2 Oct 18 07:59:56 markkoudstaal sshd[22823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.173	2019-10-18 14:17:47
222.76.212.13	attack	Oct 18 06:45:11 intra sshd\[15622\]: Invalid user 123pass from 222.76.212.13Oct 18 06:45:13 intra sshd\[15622\]: Failed password for invalid user 123pass from 222.76.212.13 port 59746 ssh2Oct 18 06:49:30 intra sshd\[15774\]: Invalid user qwertyuiop from 222.76.212.13Oct 18 06:49:32 intra sshd\[15774\]: Failed password for invalid user qwertyuiop from 222.76.212.13 port 41292 ssh2Oct 18 06:53:52 intra sshd\[15949\]: Invalid user edcrfv from 222.76.212.13Oct 18 06:53:54 intra sshd\[15949\]: Failed password for invalid user edcrfv from 222.76.212.13 port 51068 ssh2 ...	2019-10-18 14:13:41
182.61.48.178	attackbotsspam	Oct 17 20:08:13 php1 sshd\[1158\]: Invalid user lounanren@031106 from 182.61.48.178 Oct 17 20:08:13 php1 sshd\[1158\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.48.178 Oct 17 20:08:15 php1 sshd\[1158\]: Failed password for invalid user lounanren@031106 from 182.61.48.178 port 58378 ssh2 Oct 17 20:13:29 php1 sshd\[1728\]: Invalid user order from 182.61.48.178 Oct 17 20:13:29 php1 sshd\[1728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.48.178	2019-10-18 14:27:08
128.199.240.120	attackspam	Invalid user hk1410 from 128.199.240.120 port 53252	2019-10-18 14:13:03
159.89.165.36	attack	Oct 18 06:56:48 cvbnet sshd[2070]: Failed password for root from 159.89.165.36 port 48910 ssh2 ...	2019-10-18 14:00:28
67.174.104.7	attackspam	Oct 18 08:18:25 dedicated sshd[25581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.174.104.7 user=root Oct 18 08:18:27 dedicated sshd[25581]: Failed password for root from 67.174.104.7 port 35338 ssh2	2019-10-18 14:30:47
193.112.219.176	attackbotsspam	Oct 18 06:57:41 h2177944 sshd\[8915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.219.176 user=root Oct 18 06:57:43 h2177944 sshd\[8915\]: Failed password for root from 193.112.219.176 port 43508 ssh2 Oct 18 07:02:48 h2177944 sshd\[9511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.219.176 user=root Oct 18 07:02:50 h2177944 sshd\[9511\]: Failed password for root from 193.112.219.176 port 51690 ssh2 ...	2019-10-18 14:03:53
144.217.217.179	attackspambots	Oct 18 05:50:53 SilenceServices sshd[20770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.217.179 Oct 18 05:50:55 SilenceServices sshd[20770]: Failed password for invalid user 876 from 144.217.217.179 port 33236 ssh2 Oct 18 05:54:14 SilenceServices sshd[21660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.217.179	2019-10-18 14:05:45
46.101.249.232	attackspam	Automatic report - SSH Brute-Force Attack	2019-10-18 14:19:59
49.206.30.37	attackbotsspam	Oct 18 07:40:09 vps647732 sshd[13358]: Failed password for root from 49.206.30.37 port 51238 ssh2 ...	2019-10-18 14:08:27
72.167.190.198	attackbots	xmlrpc attack	2019-10-18 14:23:42
222.186.175.216	attack	Oct 18 07:29:26 root sshd[7735]: Failed password for root from 222.186.175.216 port 2006 ssh2 Oct 18 07:29:32 root sshd[7735]: Failed password for root from 222.186.175.216 port 2006 ssh2 Oct 18 07:29:38 root sshd[7735]: Failed password for root from 222.186.175.216 port 2006 ssh2 Oct 18 07:29:43 root sshd[7735]: Failed password for root from 222.186.175.216 port 2006 ssh2 ...	2019-10-18 14:24:47

Recently Reported IPs

131.161.11.89	138.118.235.148	131.161.10.249	131.161.11.15
131.161.11.56	131.161.10.225	137.226.108.32	137.226.249.58
137.226.243.254	137.226.32.188	169.229.35.18	137.226.248.107
137.226.247.214	131.161.10.246	169.229.39.39	131.161.11.13
169.229.48.123	169.229.35.236	169.229.38.81	137.226.245.226