65.49.20.125 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): The Shadow Server Foundation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	TCP (SYN) 65.49.20.125:42351 -> port 22, len 44	2020-08-17 14:48:27
attack	ET CINS Active Threat Intelligence Poor Reputation IP group 61 - port: 22 proto: TCP cat: Misc Attack	2020-06-23 17:31:55
attack	11/24/2019-15:45:29.164663 65.49.20.125 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 68	2019-11-25 05:35:36
attackbots	UTC: 2019-10-21 port: 443/udp	2019-10-22 16:43:29

相同子网IP讨论:

IP	类型	评论内容	时间
65.49.20.78	botsattack	Compromised IP	2025-01-28 22:48:38
65.49.20.67	botsattackproxy	Redis bot	2024-04-23 21:05:33
65.49.20.118	attackproxy	VPN fraud	2023-06-12 13:45:52
65.49.20.110	proxy	VPN fraud	2023-06-06 12:43:08
65.49.20.101	proxy	VPN fraud	2023-06-01 16:00:58
65.49.20.107	proxy	VPN fraud	2023-05-29 12:59:34
65.49.20.100	proxy	VPN fraud	2023-05-22 12:53:45
65.49.20.114	proxy	VPN fraud	2023-04-07 13:32:29
65.49.20.124	proxy	VPN fraud	2023-04-03 13:08:01
65.49.20.105	proxy	VPN fraud	2023-03-16 13:52:13
65.49.20.123	proxy	VPN fraud	2023-03-09 14:09:02
65.49.20.90	proxy	VPN scan	2023-02-20 14:00:04
65.49.20.119	proxy	VPN fraud	2023-02-14 20:08:26
65.49.20.106	proxy	Brute force VPN	2023-02-08 14:01:13
65.49.20.77	proxy	VPN	2023-02-06 13:57:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 65.49.20.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22278
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;65.49.20.125.			IN	A

;; AUTHORITY SECTION:
.			353	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102200 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 22 16:43:26 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 125.20.49.65.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 125.20.49.65.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
167.99.166.195	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-16 16:39:07
27.5.31.71	attackspam	1600189116 - 09/15/2020 18:58:36 Host: 27.5.31.71/27.5.31.71 Port: 23 TCP Blocked	2020-09-16 16:22:38
222.173.12.35	attack	vps:sshd-InvalidUser	2020-09-16 16:58:48
75.130.124.90	attackspambots	(sshd) Failed SSH login from 75.130.124.90 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 16 04:10:38 jbs1 sshd[30449]: Invalid user user from 75.130.124.90 Sep 16 04:10:40 jbs1 sshd[30449]: Failed password for invalid user user from 75.130.124.90 port 5426 ssh2 Sep 16 04:20:11 jbs1 sshd[1301]: Invalid user user from 75.130.124.90 Sep 16 04:20:13 jbs1 sshd[1301]: Failed password for invalid user user from 75.130.124.90 port 38890 ssh2 Sep 16 04:25:05 jbs1 sshd[3679]: Failed password for root from 75.130.124.90 port 14922 ssh2	2020-09-16 16:27:25
206.189.177.112	attackspam	Wordpress malicious attack:[octausername]	2020-09-16 16:51:42
219.243.212.100	attackbotsspam	TCP (SYN) 219.243.212.100:40118 -> port 80, len 44	2020-09-16 16:36:36
61.12.67.133	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-16 16:52:31
112.85.42.238	attackspam	Brute-force attempt banned	2020-09-16 16:41:48
91.82.85.85	attack	Sep 16 10:03:49 sip sshd[1618369]: Failed password for root from 91.82.85.85 port 51992 ssh2 Sep 16 10:07:36 sip sshd[1618418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.82.85.85 user=root Sep 16 10:07:38 sip sshd[1618418]: Failed password for root from 91.82.85.85 port 34314 ssh2 ...	2020-09-16 17:00:02
61.191.55.33	attackbots	2020-09-16T04:58:15.113383vps1033 sshd[29154]: Failed password for root from 61.191.55.33 port 37580 ssh2 2020-09-16T05:03:05.147981vps1033 sshd[7156]: Invalid user gotubego from 61.191.55.33 port 38211 2020-09-16T05:03:05.159662vps1033 sshd[7156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.191.55.33 2020-09-16T05:03:05.147981vps1033 sshd[7156]: Invalid user gotubego from 61.191.55.33 port 38211 2020-09-16T05:03:07.688855vps1033 sshd[7156]: Failed password for invalid user gotubego from 61.191.55.33 port 38211 ssh2 ...	2020-09-16 16:44:37
192.236.236.158	attackspambots	Received: from mailsadmins.biz (slot0.mailsadmins.biz [192.236.236.158]) Subject: **SPAM** michael mehr Sex statt Corona Date: Tue, 15 Sep 2020 15:58:54 +0000 From: "ACHTUNG" Reply-To: fbl@mailsadmins.biz	2020-09-16 16:32:00
159.89.114.40	attack	Sep 16 07:37:39 vserver sshd\[5204\]: Failed password for root from 159.89.114.40 port 46398 ssh2Sep 16 07:41:45 vserver sshd\[5270\]: Invalid user ix from 159.89.114.40Sep 16 07:41:46 vserver sshd\[5270\]: Failed password for invalid user ix from 159.89.114.40 port 58908 ssh2Sep 16 07:45:47 vserver sshd\[5312\]: Invalid user git from 159.89.114.40 ...	2020-09-16 16:37:07
45.142.124.17	attack	SSH/22 MH Probe, BF, Hack -	2020-09-16 16:35:40
159.65.84.164	attackbotsspam	Sep 16 01:18:24 ns3164893 sshd[6740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.84.164 user=root Sep 16 01:18:26 ns3164893 sshd[6740]: Failed password for root from 159.65.84.164 port 57810 ssh2 ...	2020-09-16 16:40:12
95.173.161.167	attackspam	95.173.161.167 - - [16/Sep/2020:10:15:20 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 95.173.161.167 - - [16/Sep/2020:10:15:23 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 95.173.161.167 - - [16/Sep/2020:10:15:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-16 16:49:11

最近上报的IP列表

171.249.132.110	123.13.153.224	180.69.116.193	81.131.94.50
80.182.234.190	94.51.194.150	80.211.87.63	23.89.101.130
42.55.17.215	202.252.184.64	1.131.49.92	104.155.36.113
78.222.57.83	86.106.82.49	114.39.54.137	118.169.42.208
193.178.51.119	149.200.195.210	178.128.212.51	185.81.153.124