131.161.213.161

Basic Info

City: Carapicuiba

Region: Sao Paulo

Country: Brazil

Internet Service Provider: CSU Cardsystem S.A

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 131.161.213.161 on Port 445(SMB)	2020-06-07 05:00:02
attackspam	Unauthorized connection attempt from IP address 131.161.213.161 on Port 445(SMB)	2020-04-02 06:03:37

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.161.213.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45814
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.161.213.161.		IN	A

;; AUTHORITY SECTION:
.			201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040101 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 02 06:03:32 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 161.213.161.131.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 161.213.161.131.in-addr.arpa.: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.159.214.247	attackbotsspam	Fail2Ban - SSH Bruteforce Attempt	2020-02-09 16:55:13
222.186.15.166	attackbotsspam	2020-02-09T09:53:59.540749scmdmz1 sshd[10340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.166 user=root 2020-02-09T09:54:01.974795scmdmz1 sshd[10340]: Failed password for root from 222.186.15.166 port 60617 ssh2 2020-02-09T09:54:04.364234scmdmz1 sshd[10340]: Failed password for root from 222.186.15.166 port 60617 ssh2 2020-02-09T09:53:59.540749scmdmz1 sshd[10340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.166 user=root 2020-02-09T09:54:01.974795scmdmz1 sshd[10340]: Failed password for root from 222.186.15.166 port 60617 ssh2 2020-02-09T09:54:04.364234scmdmz1 sshd[10340]: Failed password for root from 222.186.15.166 port 60617 ssh2 2020-02-09T09:53:59.540749scmdmz1 sshd[10340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.166 user=root 2020-02-09T09:54:01.974795scmdmz1 sshd[10340]: Failed password for root from 222.186.15.166 port 60617 ssh2 2	2020-02-09 17:01:20
116.31.124.117	attackspambots	$f2bV_matches	2020-02-09 16:45:27
104.236.45.171	attack	Automatic report - XMLRPC Attack	2020-02-09 16:21:37
185.220.101.31	attackspambots	scan r	2020-02-09 16:17:06
118.89.61.51	attack	Feb 9 06:48:17 vmd17057 sshd\[1033\]: Invalid user pnc from 118.89.61.51 port 54072 Feb 9 06:48:17 vmd17057 sshd\[1033\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.61.51 Feb 9 06:48:19 vmd17057 sshd\[1033\]: Failed password for invalid user pnc from 118.89.61.51 port 54072 ssh2 ...	2020-02-09 16:34:02
118.27.18.64	attackspambots	Automatic report - SSH Brute-Force Attack	2020-02-09 16:45:53
106.12.105.193	attackbots	Feb 9 07:56:20 MK-Soft-VM8 sshd[28164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.193 Feb 9 07:56:22 MK-Soft-VM8 sshd[28164]: Failed password for invalid user gwm from 106.12.105.193 port 45868 ssh2 ...	2020-02-09 16:26:13
103.123.43.46	attack	20/2/8@23:53:35: FAIL: Alarm-Network address from=103.123.43.46 20/2/8@23:53:35: FAIL: Alarm-Network address from=103.123.43.46 ...	2020-02-09 16:57:27
193.70.42.33	attackbots	Feb 9 05:53:35 odroid64 sshd\[24346\]: Invalid user eez from 193.70.42.33 Feb 9 05:53:35 odroid64 sshd\[24346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.42.33 ...	2020-02-09 16:55:42
180.250.69.213	attackbots	Feb 9 09:42:20 v22018076622670303 sshd\[30399\]: Invalid user qxs from 180.250.69.213 port 51466 Feb 9 09:42:20 v22018076622670303 sshd\[30399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.69.213 Feb 9 09:42:22 v22018076622670303 sshd\[30399\]: Failed password for invalid user qxs from 180.250.69.213 port 51466 ssh2 ...	2020-02-09 16:49:25
102.66.164.10	attackspam	postfix	2020-02-09 16:21:09
217.217.90.149	attackspam	Feb 9 09:34:22 legacy sshd[14443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.217.90.149 Feb 9 09:34:24 legacy sshd[14443]: Failed password for invalid user mkd from 217.217.90.149 port 44419 ssh2 Feb 9 09:37:31 legacy sshd[14548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.217.90.149 ...	2020-02-09 16:49:12
54.36.54.24	attack	Feb 9 07:10:45 ns381471 sshd[15030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.54.24 Feb 9 07:10:46 ns381471 sshd[15030]: Failed password for invalid user ahw from 54.36.54.24 port 40736 ssh2	2020-02-09 16:28:03
145.239.82.11	attackbotsspam	Feb 9 05:54:26 mout sshd[17685]: Invalid user wqr from 145.239.82.11 port 34140	2020-02-09 16:20:31

Recently Reported IPs

39.190.32.117	32.252.184.155	82.116.251.200	71.153.88.251
76.175.152.108	90.91.132.83	123.108.57.195	109.23.255.29
186.74.125.75	39.230.246.247	88.190.24.198	173.133.53.133
85.138.111.249	141.210.43.42	81.0.100.136	83.10.162.164
195.227.145.73	102.72.147.231	218.1.86.105	163.52.234.68