65.49.20.108 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): The Shadow Server Foundation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
proxy	VPN	2022-12-26 14:01:16

相同子网IP讨论:

IP	类型	评论内容	时间
65.49.20.78	botsattack	Compromised IP	2025-01-28 22:48:38
65.49.20.67	botsattackproxy	Redis bot	2024-04-23 21:05:33
65.49.20.118	attackproxy	VPN fraud	2023-06-12 13:45:52
65.49.20.110	proxy	VPN fraud	2023-06-06 12:43:08
65.49.20.101	proxy	VPN fraud	2023-06-01 16:00:58
65.49.20.107	proxy	VPN fraud	2023-05-29 12:59:34
65.49.20.100	proxy	VPN fraud	2023-05-22 12:53:45
65.49.20.114	proxy	VPN fraud	2023-04-07 13:32:29
65.49.20.124	proxy	VPN fraud	2023-04-03 13:08:01
65.49.20.105	proxy	VPN fraud	2023-03-16 13:52:13
65.49.20.123	proxy	VPN fraud	2023-03-09 14:09:02
65.49.20.90	proxy	VPN scan	2023-02-20 14:00:04
65.49.20.119	proxy	VPN fraud	2023-02-14 20:08:26
65.49.20.106	proxy	Brute force VPN	2023-02-08 14:01:13
65.49.20.77	proxy	VPN	2023-02-06 13:57:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 65.49.20.108
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15819
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;65.49.20.108.			IN	A

;; AUTHORITY SECTION:
.			477	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051100 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 11 16:14:17 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 108.20.49.65.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 108.20.49.65.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
58.221.101.182	attack	May 11 06:09:44 buvik sshd[26887]: Invalid user deploy from 58.221.101.182 May 11 06:09:44 buvik sshd[26887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.221.101.182 May 11 06:09:46 buvik sshd[26887]: Failed password for invalid user deploy from 58.221.101.182 port 41884 ssh2 ...	2020-05-11 19:47:01
60.246.2.204	attackbots	(imapd) Failed IMAP login from 60.246.2.204 (MO/Macao/nz2l204.bb60246.ctm.net): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: May 11 08:18:11 ir1 dovecot[264309]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=60.246.2.204, lip=5.63.12.44, session=	2020-05-11 19:26:38
51.178.28.196	attackbotsspam	prod3 ...	2020-05-11 19:43:19
95.91.74.120	attackspambots	20 attempts against mh-misbehave-ban on twig	2020-05-11 19:31:56
195.54.167.15	attack	May 11 13:14:29 debian-2gb-nbg1-2 kernel: \[11454536.926377\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.15 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=49327 PROTO=TCP SPT=48020 DPT=20086 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-11 19:25:43
113.177.95.204	attackspambots	SSH Brute-Force Attack	2020-05-11 19:27:51
167.71.67.238	attackbotsspam	2020-05-11T01:39:13.6219201495-001 sshd[7948]: Failed password for invalid user sinusbot from 167.71.67.238 port 41598 ssh2 2020-05-11T01:42:25.1468301495-001 sshd[8060]: Invalid user abel from 167.71.67.238 port 47172 2020-05-11T01:42:25.1537201495-001 sshd[8060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.67.238 2020-05-11T01:42:25.1468301495-001 sshd[8060]: Invalid user abel from 167.71.67.238 port 47172 2020-05-11T01:42:27.4584481495-001 sshd[8060]: Failed password for invalid user abel from 167.71.67.238 port 47172 ssh2 2020-05-11T01:45:39.4567571495-001 sshd[8192]: Invalid user marry from 167.71.67.238 port 52612 ...	2020-05-11 19:31:07
211.155.95.246	attackbotsspam	May 11 09:45:43 ip-172-31-61-156 sshd[24984]: Failed password for invalid user posta from 211.155.95.246 port 38214 ssh2 May 11 09:45:41 ip-172-31-61-156 sshd[24984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.155.95.246 May 11 09:45:41 ip-172-31-61-156 sshd[24984]: Invalid user posta from 211.155.95.246 May 11 09:45:43 ip-172-31-61-156 sshd[24984]: Failed password for invalid user posta from 211.155.95.246 port 38214 ssh2 May 11 09:46:44 ip-172-31-61-156 sshd[25005]: Invalid user nai from 211.155.95.246 ...	2020-05-11 19:08:32
218.92.0.168	attackbotsspam	2020-05-11T13:25:01.733432sd-86998 sshd[27889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root 2020-05-11T13:25:04.020108sd-86998 sshd[27889]: Failed password for root from 218.92.0.168 port 16849 ssh2 2020-05-11T13:25:08.699288sd-86998 sshd[27889]: Failed password for root from 218.92.0.168 port 16849 ssh2 2020-05-11T13:25:01.733432sd-86998 sshd[27889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root 2020-05-11T13:25:04.020108sd-86998 sshd[27889]: Failed password for root from 218.92.0.168 port 16849 ssh2 2020-05-11T13:25:08.699288sd-86998 sshd[27889]: Failed password for root from 218.92.0.168 port 16849 ssh2 2020-05-11T13:25:01.733432sd-86998 sshd[27889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root 2020-05-11T13:25:04.020108sd-86998 sshd[27889]: Failed password for root from 218.92.0.168 p ...	2020-05-11 19:30:54
162.243.42.225	attackspambots	May 11 10:37:33 web8 sshd\[11435\]: Invalid user test from 162.243.42.225 May 11 10:37:33 web8 sshd\[11435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.42.225 May 11 10:37:35 web8 sshd\[11435\]: Failed password for invalid user test from 162.243.42.225 port 44284 ssh2 May 11 10:40:04 web8 sshd\[12933\]: Invalid user hadoop from 162.243.42.225 May 11 10:40:04 web8 sshd\[12933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.42.225	2020-05-11 19:29:33
106.54.200.209	attackbotsspam	May 11 10:08:45 melroy-server sshd[15762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 May 11 10:08:47 melroy-server sshd[15762]: Failed password for invalid user qhsupport from 106.54.200.209 port 36514 ssh2 ...	2020-05-11 19:14:53
139.170.150.254	attack	May 11 13:05:52 Ubuntu-1404-trusty-64-minimal sshd\[23735\]: Invalid user darwin from 139.170.150.254 May 11 13:05:52 Ubuntu-1404-trusty-64-minimal sshd\[23735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.170.150.254 May 11 13:05:54 Ubuntu-1404-trusty-64-minimal sshd\[23735\]: Failed password for invalid user darwin from 139.170.150.254 port 25595 ssh2 May 11 13:47:57 Ubuntu-1404-trusty-64-minimal sshd\[21807\]: Invalid user guang from 139.170.150.254 May 11 13:47:57 Ubuntu-1404-trusty-64-minimal sshd\[21807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.170.150.254	2020-05-11 19:48:23
51.77.150.118	attackbotsspam	2020-05-11T12:42:56.410400sd-86998 sshd[22770]: Invalid user odscommon from 51.77.150.118 port 44868 2020-05-11T12:42:56.412662sd-86998 sshd[22770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.ip-51-77-150.eu 2020-05-11T12:42:56.410400sd-86998 sshd[22770]: Invalid user odscommon from 51.77.150.118 port 44868 2020-05-11T12:42:58.393917sd-86998 sshd[22770]: Failed password for invalid user odscommon from 51.77.150.118 port 44868 ssh2 2020-05-11T12:45:11.536771sd-86998 sshd[23024]: Invalid user deploy from 51.77.150.118 port 49164 ...	2020-05-11 19:24:55
37.49.226.249	attackspam	May 11 13:16:04 sd-69548 sshd[955194]: Unable to negotiate with 37.49.226.249 port 41746: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] May 11 13:16:13 sd-69548 sshd[955206]: Unable to negotiate with 37.49.226.249 port 33918: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-05-11 19:33:19
142.93.140.242	attack	May 11 09:21:42 onepixel sshd[2975521]: Invalid user student02 from 142.93.140.242 port 33052 May 11 09:21:42 onepixel sshd[2975521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.242 May 11 09:21:42 onepixel sshd[2975521]: Invalid user student02 from 142.93.140.242 port 33052 May 11 09:21:44 onepixel sshd[2975521]: Failed password for invalid user student02 from 142.93.140.242 port 33052 ssh2 May 11 09:25:21 onepixel sshd[2975940]: Invalid user jeremy from 142.93.140.242 port 41636	2020-05-11 19:12:59

最近上报的IP列表

119.183.119.200	113.189.99.134	124.192.225.183	114.88.11.180
103.238.71.39	68.68.169.60	165.22.107.105	112.3.29.179
101.255.93.22	42.113.203.160	177.189.186.184	129.158.107.176
58.239.71.198	104.130.124.33	72.167.224.97	62.4.18.67
134.122.98.166	85.61.66.252	118.70.187.228	80.121.30.31