JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.132.56.31

161.132.56.31 was found in our database!

This IP was reported 323 times. Confidence of Abuse is 100%: ?

100%

ISP	Red Cientifica Peruana
Usage Type	Data Center/Web Hosting/Transit
ASN	AS3132
Domain Name	rcp.pe
Country	🇵🇪 Peru
City	Lima, Lima Province

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.132.56.31

Whois 161.132.56.31

IP Abuse Reports for 161.132.56.31:

This IP address has been reported a total of 323 times from 108 distinct sources. 161.132.56.31 was first reported on February 3rd 2026, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-06-23 19:32:49 (9 hours ago)	ICS Labs identified 161.132.56.31 as a malicious indicator from threat intelligence.	DDoS Attack Port Scan Hacking Brute-Force Exploited Host
🇺🇸 sargetun	2026-06-10 23:25:27 (1 week ago)	Honeypot: Auto-ban: 24 hour idle after honeypot interaction. Auto-reported from VPS honeypot.	Brute-Force SSH Hacking
🇦🇹 urnilxfgbez	2026-06-10 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 iNetWorker	2026-06-10 22:11:08 (1 week ago)	firewall-block, port(s): 1433/tcp	Port Scan
🇬🇧 PeravixGroup	2026-06-10 12:26:24 (1 week ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 sargetun	2026-06-09 23:20:38 (2 weeks ago)	Honeypot: MSSQL probe on port 1433 at 2026-06-09 23:17:55.154314. Automated report from VPS honeypot ... show more Honeypot: MSSQL probe on port 1433 at 2026-06-09 23:17:55.154314. Automated report from VPS honeypot. show less	Port Scan
🇳🇴 tmiland	2026-06-09 20:30:07 (2 weeks ago)	Suricata Detected 2 attacks from 161.132.56.31.; ET SCAN Suspicious inbound to MSSQL port 1433; IP: ... show more Suricata Detected 2 attacks from 161.132.56.31.; ET SCAN Suspicious inbound to MSSQL port 1433; IP: 161.132.56.31; Ports: 53613; Direction: to_server; Trigger: SCAN; Category: Potentially Bad Traffic; Severity: 2 show less	Port Scan
🇭🇰 mutebot.net	2026-06-09 17:52:18 (2 weeks ago)	SRC=161.132.56.31, PROTO=TCP, SPT=53613, DPT=445	Port Scan
🇺🇸 3rdKey	2026-06-08 09:56:02 (2 weeks ago)	OpenCanary honeypot hit on port 1433 (no legitimate service runs there); logtype 9001. Automated rep ... show more OpenCanary honeypot hit on port 1433 (no legitimate service runs there); logtype 9001. Automated report. show less	Port Scan Hacking
🇷🇸 Smel	2026-06-08 08:23:06 (2 weeks ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection
🇬🇧 PeravixGroup	2026-06-07 07:24:43 (2 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 sbajic	2026-06-07 04:35:48 (2 weeks ago)	...	Brute-Force
🇩🇪 AS213449.net	2026-06-06 04:47:57 (2 weeks ago)	06/06/2026-06:47:56.937011 src=161.132.56.31 dst=89.144.63.68:1433 proto=6 msg=ET SCAN Suspicious in ... show more 06/06/2026-06:47:56.937011 src=161.132.56.31 dst=89.144.63.68:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433 show less	SQL Injection
🇺🇸 RAP	2026-06-06 03:53:53 (2 weeks ago)	2026-06-06 03:53:53 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇬🇧 PeravixGroup	2026-06-06 03:50:50 (2 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 323 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.202.9.120

🇮🇳 128.185.207.178

🇫🇷 91.196.152.39

🇫🇷 91.196.152.35

🇵🇱 83.168.95.29

🇺🇸 74.125.181.155

🇹🇭 49.0.87.195

🇺🇸 47.90.198.2

🇩🇪 44.130.117.75

🇺🇸 2001:470:1:c84::276

🇨🇳 218.203.203.232

🇳🇮 190.143.253.25

🇧🇷 179.152.167.57

🇺🇸 152.32.208.7

🇺🇸 147.185.132.224

🇺🇸 137.184.85.24

🇭🇰 116.48.143.166

🇧🇷 45.205.1.244

🇺🇸 44.125.110.147

🇧🇪 34.62.83.106