131.161.11.66 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
131.161.119.172	attack	Suspicious access to SMTP/POP/IMAP services.	2020-06-09 19:05:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.161.11.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29316
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.161.11.66.			IN	A

;; AUTHORITY SECTION:
.			287	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062202 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 23 05:57:21 CST 2022
;; MSG SIZE  rcvd: 106

Host info

66.11.161.131.in-addr.arpa domain name pointer dynamic-131-161-11-66.gptelecomprovedor.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.11.161.131.in-addr.arpa	name = dynamic-131-161-11-66.gptelecomprovedor.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.115.174.77	attackspam	port scan and connect, tcp 80 (http)	2019-08-18 10:43:15
220.121.58.55	attackspam	Aug 18 01:25:20 XXX sshd[60125]: Invalid user rupert79 from 220.121.58.55 port 53676	2019-08-18 10:40:00
103.225.143.118	attack	Aug 17 16:22:31 web9 sshd\[15446\]: Invalid user minecraft from 103.225.143.118 Aug 17 16:22:31 web9 sshd\[15446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.225.143.118 Aug 17 16:22:33 web9 sshd\[15446\]: Failed password for invalid user minecraft from 103.225.143.118 port 40012 ssh2 Aug 17 16:28:04 web9 sshd\[16448\]: Invalid user fernando from 103.225.143.118 Aug 17 16:28:04 web9 sshd\[16448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.225.143.118	2019-08-18 10:33:01
212.83.184.217	attackbots	\[2019-08-17 22:05:18\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '212.83.184.217:2774' - Wrong password \[2019-08-17 22:05:18\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-17T22:05:18.835-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="91721",SessionID="0x7ff4d07952f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.184.217/53042",Challenge="548b83ef",ReceivedChallenge="548b83ef",ReceivedHash="3dca85baca74855235d7b96bd2e6e3c9" \[2019-08-17 22:06:07\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '212.83.184.217:2638' - Wrong password \[2019-08-17 22:06:07\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-17T22:06:07.867-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="63078",SessionID="0x7ff4d07952f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.	2019-08-18 10:28:20
50.232.209.190	attackspambots	SSH invalid-user multiple login try	2019-08-18 10:46:10
23.96.45.221	attackspam	SSH-BruteForce	2019-08-18 10:33:56
119.57.162.18	attack	Aug 17 19:37:44 TORMINT sshd\[15658\]: Invalid user test from 119.57.162.18 Aug 17 19:37:44 TORMINT sshd\[15658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.57.162.18 Aug 17 19:37:46 TORMINT sshd\[15658\]: Failed password for invalid user test from 119.57.162.18 port 39809 ssh2 ...	2019-08-18 10:10:57
106.58.210.27	attack	Aug 18 03:46:14 lnxmail61 postfix/smtpd[16869]: warning: unknown[106.58.210.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-08-18 10:29:00
59.19.147.198	attackbotsspam	Invalid user t7adm from 59.19.147.198 port 49656	2019-08-18 10:11:56
218.234.206.107	attackspam	SSH invalid-user multiple login attempts	2019-08-18 10:35:28
148.72.209.113	attackspambots	Unauthorized access detected from banned ip	2019-08-18 10:31:31
200.108.139.242	attackbotsspam	Aug 17 12:13:28 lcdev sshd\[4024\]: Invalid user db from 200.108.139.242 Aug 17 12:13:28 lcdev sshd\[4024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242 Aug 17 12:13:30 lcdev sshd\[4024\]: Failed password for invalid user db from 200.108.139.242 port 55196 ssh2 Aug 17 12:18:31 lcdev sshd\[4665\]: Invalid user admin from 200.108.139.242 Aug 17 12:18:31 lcdev sshd\[4665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.139.242	2019-08-18 10:09:17
36.74.75.31	attackbotsspam	Invalid user qy from 36.74.75.31 port 51930	2019-08-18 10:32:06
103.242.175.78	attackspambots	Aug 17 11:42:30 web9 sshd\[24384\]: Invalid user yw from 103.242.175.78 Aug 17 11:42:30 web9 sshd\[24384\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.175.78 Aug 17 11:42:32 web9 sshd\[24384\]: Failed password for invalid user yw from 103.242.175.78 port 45262 ssh2 Aug 17 11:46:55 web9 sshd\[25163\]: Invalid user vyatta from 103.242.175.78 Aug 17 11:46:55 web9 sshd\[25163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.175.78	2019-08-18 10:44:03
140.143.135.247	attack	xmlrpc attack	2019-08-18 10:29:55

Recently Reported IPs

131.161.11.89	138.118.235.148	131.161.10.249	131.161.11.15
131.161.11.56	131.161.10.225	137.226.108.32	137.226.249.58
137.226.243.254	137.226.32.188	169.229.35.18	137.226.248.107
137.226.247.214	131.161.10.246	169.229.39.39	131.161.11.13
169.229.48.123	169.229.35.236	169.229.38.81	137.226.245.226