131.161.68.207

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
131.161.68.45	attackbotsspam	Aug 25 08:16:33 shivevps sshd[487]: Bad protocol version identification '\024' from 131.161.68.45 port 58576 Aug 25 08:16:46 shivevps sshd[893]: Bad protocol version identification '\024' from 131.161.68.45 port 58818 Aug 25 08:17:01 shivevps sshd[1417]: Bad protocol version identification '\024' from 131.161.68.45 port 59047 Aug 25 08:18:11 shivevps sshd[3694]: Bad protocol version identification '\024' from 131.161.68.45 port 60299 Aug 25 08:18:23 shivevps sshd[4036]: Bad protocol version identification '\024' from 131.161.68.45 port 60486 ...	2020-08-25 19:34:08
131.161.68.45	attack	spam	2020-08-17 12:56:05
131.161.68.45	attack	Minecraft server DDoS attack/proxy	2019-12-17 20:34:51
131.161.68.45	attack	proto=tcp . spt=33815 . dpt=25 . (Found on Dark List de Nov 06) (593)	2019-11-07 05:25:12
131.161.68.45	attack	Mail sent to address harvested from public web site	2019-10-13 18:29:07
131.161.68.45	attack	Oct 12 02:45:32 mailman postfix/smtpd[29830]: NOQUEUE: reject: RCPT from unknown[131.161.68.45]: 554 5.7.1 Service unavailable; Client host [131.161.68.45] blocked using dnsbl.dronebl.org; Open HTTP proxy; from= to= proto=ESMTP helo= Oct 12 02:45:33 mailman postfix/smtpd[29830]: NOQUEUE: reject: RCPT from unknown[131.161.68.45]: 554 5.7.1 Service unavailable; Client host [131.161.68.45] blocked using dnsbl.dronebl.org; Open HTTP proxy; from= to= proto=ESMTP helo=	2019-10-12 18:46:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.161.68.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57387
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.161.68.207.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:30:30 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 207.68.161.131.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 207.68.161.131.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
213.230.76.37	attackbotsspam	Email rejected due to spam filtering	2020-03-11 07:26:54
37.59.58.142	attackbotsspam	Invalid user ubuntu from 37.59.58.142 port 48532	2020-03-11 07:21:43
88.100.120.84	attackbots	suspicious action Tue, 10 Mar 2020 15:11:54 -0300	2020-03-11 07:33:54
118.39.21.39	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-11 07:17:11
121.229.62.92	attackbotsspam	Mar 10 11:12:27 mockhub sshd[1326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.229.62.92 Mar 10 11:12:28 mockhub sshd[1326]: Failed password for invalid user rstudio-server from 121.229.62.92 port 32806 ssh2 ...	2020-03-11 07:06:46
93.120.170.238	attackspambots	1583863913 - 03/10/2020 19:11:53 Host: 93.120.170.238/93.120.170.238 Port: 445 TCP Blocked	2020-03-11 07:33:41
46.162.12.37	attackbotsspam	[portscan] Port scan	2020-03-11 07:07:38
203.40.146.167	attackbotsspam	Mar 10 20:07:10 lnxded63 sshd[12751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.40.146.167	2020-03-11 07:39:46
139.215.217.180	attackspambots	Mar 10 22:44:19 *** sshd[3339]: User root from 139.215.217.180 not allowed because not listed in AllowUsers	2020-03-11 07:40:23
216.74.107.8	attackspam	Chat Spam	2020-03-11 07:22:02
216.194.166.7	attackbots	$f2bV_matches	2020-03-11 07:28:02
200.209.174.92	attackbots	SASL PLAIN auth failed: ruser=...	2020-03-11 07:37:13
106.124.136.103	attack	Mar 10 23:22:34 mout sshd[24442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.136.103 user=root Mar 10 23:22:36 mout sshd[24442]: Failed password for root from 106.124.136.103 port 58886 ssh2	2020-03-11 07:38:22
142.234.203.13	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/142.234.203.13/ US - 1H : (124) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN396362 IP : 142.234.203.13 CIDR : 142.234.200.0/22 PREFIX COUNT : 56 UNIQUE IP COUNT : 58368 ATTACKS DETECTED ASN396362 : 1H - 2 3H - 3 6H - 3 12H - 3 24H - 3 DateTime : 2020-03-10 19:11:51 INFO : Potentially Bad Traffic Scan Detected and Blocked by ADMIN - data recovery	2020-03-11 07:34:53
181.122.97.105	attackspambots	Unauthorised access (Mar 10) SRC=181.122.97.105 LEN=52 TTL=112 ID=20637 DF TCP DPT=445 WINDOW=8192 SYN	2020-03-11 07:09:56

Recently Reported IPs

131.161.68.17	131.161.65.4	131.161.68.2	131.161.67.70
131.161.68.213	131.161.68.227	131.161.68.210	131.161.68.217
131.161.68.243	131.161.68.245	118.172.234.9	131.161.68.250
131.161.68.247	131.161.68.91	131.161.68.49	131.161.69.142
131.161.69.118	131.161.69.187	131.161.69.20	131.161.69.35