131.161.68.213

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
131.161.68.45	attackbotsspam	Aug 25 08:16:33 shivevps sshd[487]: Bad protocol version identification '\024' from 131.161.68.45 port 58576 Aug 25 08:16:46 shivevps sshd[893]: Bad protocol version identification '\024' from 131.161.68.45 port 58818 Aug 25 08:17:01 shivevps sshd[1417]: Bad protocol version identification '\024' from 131.161.68.45 port 59047 Aug 25 08:18:11 shivevps sshd[3694]: Bad protocol version identification '\024' from 131.161.68.45 port 60299 Aug 25 08:18:23 shivevps sshd[4036]: Bad protocol version identification '\024' from 131.161.68.45 port 60486 ...	2020-08-25 19:34:08
131.161.68.45	attack	spam	2020-08-17 12:56:05
131.161.68.45	attack	Minecraft server DDoS attack/proxy	2019-12-17 20:34:51
131.161.68.45	attack	proto=tcp . spt=33815 . dpt=25 . (Found on Dark List de Nov 06) (593)	2019-11-07 05:25:12
131.161.68.45	attack	Mail sent to address harvested from public web site	2019-10-13 18:29:07
131.161.68.45	attack	Oct 12 02:45:32 mailman postfix/smtpd[29830]: NOQUEUE: reject: RCPT from unknown[131.161.68.45]: 554 5.7.1 Service unavailable; Client host [131.161.68.45] blocked using dnsbl.dronebl.org; Open HTTP proxy; from= to= proto=ESMTP helo= Oct 12 02:45:33 mailman postfix/smtpd[29830]: NOQUEUE: reject: RCPT from unknown[131.161.68.45]: 554 5.7.1 Service unavailable; Client host [131.161.68.45] blocked using dnsbl.dronebl.org; Open HTTP proxy; from= to= proto=ESMTP helo=	2019-10-12 18:46:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.161.68.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47965
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.161.68.213.			IN	A

;; AUTHORITY SECTION:
.			46	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:30:30 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 213.68.161.131.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 213.68.161.131.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.130.234.235	attack	Jul 8 20:43:08 s64-1 sshd[9534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.130.234.235 Jul 8 20:43:11 s64-1 sshd[9534]: Failed password for invalid user sysomc from 81.130.234.235 port 41962 ssh2 Jul 8 20:46:06 s64-1 sshd[9548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.130.234.235 ...	2019-07-09 04:45:51
23.225.121.231	attackspam	nginx-http-auth intrusion attempt	2019-07-09 04:38:41
45.126.22.162	attack	2,27-00/01 concatform PostRequest-Spammer scoring: berlin	2019-07-09 04:52:41
217.238.166.113	attackbotsspam	Jul 8 21:58:05 debian sshd\[30485\]: Invalid user jmartin from 217.238.166.113 port 43236 Jul 8 21:58:05 debian sshd\[30485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.238.166.113 ...	2019-07-09 05:05:09
128.199.182.235	attack	Triggered by Fail2Ban at Vostok web server	2019-07-09 04:26:27
177.128.162.158	attack	445/tcp [2019-07-08]1pkt	2019-07-09 04:39:35
181.23.192.92	attackspambots	37215/tcp [2019-07-08]1pkt	2019-07-09 04:52:07
1.175.82.228	attack	37215/tcp [2019-07-08]1pkt	2019-07-09 04:46:34
201.170.25.221	attackbots	23/tcp [2019-07-08]1pkt	2019-07-09 04:39:16
45.81.140.14	attackbots	[Mon Jul 8 18:51:31 2019 GMT] "eFаx" [RDNS_NONE], Subject: Fax Withаut a Fax Machine!	2019-07-09 05:07:38
5.53.193.71	attackspambots	37777/tcp [2019-07-08]1pkt	2019-07-09 04:49:04
121.188.88.70	attack	MYH,DEF GET /shell.php	2019-07-09 05:09:47
149.56.15.98	attack	2019-07-08T20:44:17.056805 sshd[9784]: Invalid user pi from 149.56.15.98 port 44411 2019-07-08T20:44:17.071891 sshd[9784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.15.98 2019-07-08T20:44:17.056805 sshd[9784]: Invalid user pi from 149.56.15.98 port 44411 2019-07-08T20:44:18.628089 sshd[9784]: Failed password for invalid user pi from 149.56.15.98 port 44411 ssh2 2019-07-08T20:46:14.546152 sshd[9824]: Invalid user ubuntu from 149.56.15.98 port 55678 ...	2019-07-09 04:40:17
86.104.220.181	attack	Automatic report - Web App Attack	2019-07-09 04:25:14
107.175.74.145	attackbots	(From edwardfrankish32@gmail.com) Did you know there is a proven effective and simple way for your site to get more exposure online? It's search engine optimization! I'm a local freelancer who's writing to let you know that I work for small/start-up companies and deliver top-notch results at a price that won't hurt your wallet. Are you satisfied with the amount of profit you are able to generate online? I'm quite sure you've heard of search engine optimization or SEO before. As I was running a few tests on your website, results showed that there are many keywords that you should be ranking for on Google so your website can show up on the first page of search results when people input certain words on Google search. This is the best strategy to generate more sales. All the information I'll send and the expert advice I'll share about your website during the free consultation over the phone will benefit your business whether or not you choose to take advantage of my services, so please reply to let me know	2019-07-09 04:28:33

Recently Reported IPs

131.161.67.70	131.161.68.227	131.161.68.210	131.161.68.217
131.161.68.243	131.161.68.245	118.172.234.9	131.161.68.250
131.161.68.247	131.161.68.91	131.161.68.49	131.161.69.142
131.161.69.118	131.161.69.187	131.161.69.20	131.161.69.35
131.161.69.235	131.161.69.199	131.161.69.74	118.172.235.108