65.49.20.68 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): The Shadow Server Foundation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Port 22 Scan, PTR: None	2020-08-27 14:42:12
attackbotsspam	2020-08-24 UTC: (2x) - (2x)	2020-08-25 18:12:36
attack	Icarus honeypot on github	2020-08-13 16:22:04
attackspam	Aug 11 23:55:43 mail sshd\[4287\]: Invalid user from 65.49.20.68 ...	2020-08-12 15:12:03
attack	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-07-29 15:29:52
attackspambots	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-07-26 14:04:14
attackbots	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-07-17 18:51:53
attackspam	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-07-12 15:12:28
attackspam	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22 [T]	2020-07-10 15:59:59
attackspambots	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-07-08 18:08:45
attack	SSH login attempts.	2020-07-05 19:46:18
attackbotsspam	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-06-30 14:07:36
attackspambots	TCP (SYN) 65.49.20.68:47098 -> port 22, len 44	2020-06-29 14:37:06
attack	SSHD brute force attack detected by fail2ban	2020-06-28 12:06:09
attackspam	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-06-22 14:47:36
attack	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-06-20 15:55:59
attackbotsspam	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-06-14 12:34:04
attackbots		2020-06-07 15:39:33
attackspambots	UDP 65.49.20.68:39830 -> port 443, len 1258	2020-05-31 17:45:51
attack	[portscan] tcp/22 [SSH] *(RWIN=65535)(05271018)	2020-05-27 16:11:21
attackbots	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 2260	2020-05-15 16:57:29
attackbots	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-05-07 14:07:20
attackbots	Unauthorized connection attempt detected from IP address 65.49.20.68 to port 22	2020-05-06 17:54:51
attackspam	SSH brute-force attempt	2020-04-16 13:08:10
attack	2020-03-08T00:57:43.614Z CLOSE host=65.49.20.68 port=65106 fd=4 time=20.016 bytes=21 ...	2020-03-13 02:14:52

相同子网IP讨论:

IP	类型	评论内容	时间
65.49.20.78	botsattack	Compromised IP	2025-01-28 22:48:38
65.49.20.67	botsattackproxy	Redis bot	2024-04-23 21:05:33
65.49.20.118	attackproxy	VPN fraud	2023-06-12 13:45:52
65.49.20.110	proxy	VPN fraud	2023-06-06 12:43:08
65.49.20.101	proxy	VPN fraud	2023-06-01 16:00:58
65.49.20.107	proxy	VPN fraud	2023-05-29 12:59:34
65.49.20.100	proxy	VPN fraud	2023-05-22 12:53:45
65.49.20.114	proxy	VPN fraud	2023-04-07 13:32:29
65.49.20.124	proxy	VPN fraud	2023-04-03 13:08:01
65.49.20.105	proxy	VPN fraud	2023-03-16 13:52:13
65.49.20.123	proxy	VPN fraud	2023-03-09 14:09:02
65.49.20.90	proxy	VPN scan	2023-02-20 14:00:04
65.49.20.119	proxy	VPN fraud	2023-02-14 20:08:26
65.49.20.106	proxy	Brute force VPN	2023-02-08 14:01:13
65.49.20.77	proxy	VPN	2023-02-06 13:57:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 65.49.20.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13737
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;65.49.20.68.			IN	A

;; AUTHORITY SECTION:
.			544	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021202 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 13 09:23:31 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 68.20.49.65.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.20.49.65.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
220.181.108.93	attackspambots	Bad bot/spoofed identity	2019-08-03 01:56:41
77.60.37.105	attackspambots	Aug 2 16:34:21 www5 sshd\[26169\]: Invalid user insanos from 77.60.37.105 Aug 2 16:34:21 www5 sshd\[26169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.60.37.105 Aug 2 16:34:23 www5 sshd\[26169\]: Failed password for invalid user insanos from 77.60.37.105 port 36484 ssh2 ...	2019-08-03 00:49:01
83.144.92.94	attackbots	2019-08-02T09:41:06.487231abusebot-5.cloudsearch.cf sshd\[19176\]: Invalid user 123456 from 83.144.92.94 port 39166	2019-08-03 01:52:10
167.71.169.109	attackbots	(sshd) Failed SSH login from 167.71.169.109 (-): 5 in the last 3600 secs	2019-08-03 01:12:27
118.166.123.32	attack	" "	2019-08-03 01:19:46
185.175.93.18	attack	Port scan on 4 port(s): 73 5473 5973 6393	2019-08-03 00:49:51
69.17.158.101	attack	Aug 2 16:09:01 meumeu sshd[21143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.17.158.101 Aug 2 16:09:03 meumeu sshd[21143]: Failed password for invalid user walt from 69.17.158.101 port 47598 ssh2 Aug 2 16:13:57 meumeu sshd[21759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.17.158.101 ...	2019-08-03 01:55:27
119.28.222.11	attackbotsspam	2019-08-02T09:08:38.248697abusebot-7.cloudsearch.cf sshd\[10141\]: Invalid user ada from 119.28.222.11 port 41840	2019-08-03 02:06:02
196.44.191.52	attack	Honeypot attack, port: 23, PTR: broadband52.yoafrica.com.	2019-08-03 01:47:22
186.232.3.250	attackspambots	2019-08-02T16:40:53.891002abusebot-2.cloudsearch.cf sshd\[23693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=webmail.rapidexbr.com.br user=root	2019-08-03 01:06:05
120.209.71.14	attackspam	Aug 2 10:37:26 xeon cyrus/imaps[34885]: badlogin: [120.209.71.14] plain [SASL(-13): authentication failure: Password verification failed]	2019-08-03 01:10:07
210.115.225.166	attackbotsspam	Invalid user postpone from 210.115.225.166 port 52484 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.115.225.166 Failed password for invalid user postpone from 210.115.225.166 port 52484 ssh2 Invalid user bavmk from 210.115.225.166 port 46932 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.115.225.166	2019-08-03 01:37:27
27.73.134.14	attackbotsspam	firewall-block, port(s): 8728/tcp	2019-08-03 01:09:28
203.198.97.162	attackspambots	Automatic report - Port Scan Attack	2019-08-03 01:55:45
61.216.35.96	attackbots	Port Scan: TCP/445	2019-08-03 01:08:03

最近上报的IP列表

24.92.154.190	59.115.124.149	36.67.95.243	81.201.61.136
143.132.193.129	154.193.168.141	151.101.94.94	201.208.253.223
236.231.24.87	129.219.10.42	21.58.244.12	103.70.135.6
141.100.167.167	118.99.65.6	212.10.241.181	207.236.5.53
123.143.157.158	129.146.174.219	35.237.4.74	52.35.92.243