65.49.20.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): The Shadow Server Foundation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	443/udp 22/tcp 443/udp [2019-12-14/2020-02-11]3pkt	2020-02-12 05:36:09

相同子网IP讨论:

IP	类型	评论内容	时间
65.49.20.78	botsattack	Compromised IP	2025-01-28 22:48:38
65.49.20.67	botsattackproxy	Redis bot	2024-04-23 21:05:33
65.49.20.118	attackproxy	VPN fraud	2023-06-12 13:45:52
65.49.20.110	proxy	VPN fraud	2023-06-06 12:43:08
65.49.20.101	proxy	VPN fraud	2023-06-01 16:00:58
65.49.20.107	proxy	VPN fraud	2023-05-29 12:59:34
65.49.20.100	proxy	VPN fraud	2023-05-22 12:53:45
65.49.20.114	proxy	VPN fraud	2023-04-07 13:32:29
65.49.20.124	proxy	VPN fraud	2023-04-03 13:08:01
65.49.20.105	proxy	VPN fraud	2023-03-16 13:52:13
65.49.20.123	proxy	VPN fraud	2023-03-09 14:09:02
65.49.20.90	proxy	VPN scan	2023-02-20 14:00:04
65.49.20.119	proxy	VPN fraud	2023-02-14 20:08:26
65.49.20.106	proxy	Brute force VPN	2023-02-08 14:01:13
65.49.20.77	proxy	VPN	2023-02-06 13:57:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 65.49.20.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14569
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;65.49.20.93.			IN	A

;; AUTHORITY SECTION:
.			271	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021102 1800 900 604800 86400

;; Query time: 267 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 05:36:06 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 93.20.49.65.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 93.20.49.65.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.89.130.231	attack	May 5 05:29:49 webhost01 sshd[3447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.130.231 May 5 05:29:50 webhost01 sshd[3447]: Failed password for invalid user ec2-user from 159.89.130.231 port 32774 ssh2 ...	2020-05-05 06:54:07
85.28.72.99	attackbotsspam	Port probing on unauthorized port 23	2020-05-05 06:27:40
156.251.164.54	attack	prod3 ...	2020-05-05 06:25:09
61.252.141.83	attack	May 4 22:20:43 Ubuntu-1404-trusty-64-minimal sshd\[25978\]: Invalid user brix from 61.252.141.83 May 4 22:20:43 Ubuntu-1404-trusty-64-minimal sshd\[25978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.252.141.83 May 4 22:20:45 Ubuntu-1404-trusty-64-minimal sshd\[25978\]: Failed password for invalid user brix from 61.252.141.83 port 28607 ssh2 May 4 22:30:01 Ubuntu-1404-trusty-64-minimal sshd\[30889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.252.141.83 user=root May 4 22:30:03 Ubuntu-1404-trusty-64-minimal sshd\[30889\]: Failed password for root from 61.252.141.83 port 57049 ssh2	2020-05-05 06:44:48
201.122.102.140	attackbots	Unauthorized connection attempt detected from IP address 201.122.102.140 to port 23	2020-05-05 06:22:40
35.246.197.233	attack	May 5 00:46:19 piServer sshd[13659]: Failed password for root from 35.246.197.233 port 53682 ssh2 May 5 00:52:06 piServer sshd[14162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.246.197.233 May 5 00:52:08 piServer sshd[14162]: Failed password for invalid user mingus from 35.246.197.233 port 46770 ssh2 ...	2020-05-05 06:57:11
139.199.0.28	attackbotsspam	May 5 00:42:44 hosting sshd[13108]: Invalid user ftpuser from 139.199.0.28 port 54696 ...	2020-05-05 06:59:38
111.229.249.147	attackspam	May 5 00:07:34 vpn01 sshd[10593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.249.147 May 5 00:07:37 vpn01 sshd[10593]: Failed password for invalid user oracle from 111.229.249.147 port 52318 ssh2 ...	2020-05-05 06:47:16
14.18.109.9	attackbots	May 4 22:18:59 rotator sshd\[5052\]: Invalid user andrei from 14.18.109.9May 4 22:19:01 rotator sshd\[5052\]: Failed password for invalid user andrei from 14.18.109.9 port 53938 ssh2May 4 22:23:32 rotator sshd\[5848\]: Invalid user sr from 14.18.109.9May 4 22:23:33 rotator sshd\[5848\]: Failed password for invalid user sr from 14.18.109.9 port 37390 ssh2May 4 22:25:28 rotator sshd\[6627\]: Invalid user uwsgi from 14.18.109.9May 4 22:25:30 rotator sshd\[6627\]: Failed password for invalid user uwsgi from 14.18.109.9 port 55758 ssh2 ...	2020-05-05 06:20:42
196.234.236.238	attackspambots	xmlrpc attack	2020-05-05 06:56:26
151.76.167.225	attack	Automatic report - Port Scan Attack	2020-05-05 06:49:58
190.237.52.233	attackspam	May 4 22:25:01 fed sshd[9071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.237.52.233 May 4 22:25:03 fed sshd[9071]: Failed password for invalid user user1 from 190.237.52.233 port 54932 ssh2	2020-05-05 06:45:02
123.206.255.181	attack	Repeated brute force against a port	2020-05-05 06:21:43
50.225.208.178	attackbotsspam	1588623927 - 05/04/2020 22:25:27 Host: 50.225.208.178/50.225.208.178 Port: 445 TCP Blocked	2020-05-05 06:25:40
138.118.4.168	attackspambots	May 4 21:25:12 l02a sshd[18536]: Invalid user deluge from 138.118.4.168 May 4 21:25:12 l02a sshd[18536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.118.4.168 May 4 21:25:12 l02a sshd[18536]: Invalid user deluge from 138.118.4.168 May 4 21:25:13 l02a sshd[18536]: Failed password for invalid user deluge from 138.118.4.168 port 38514 ssh2	2020-05-05 06:34:06

最近上报的IP列表

109.83.44.32	126.25.237.10	219.38.211.19	197.210.227.202
130.150.146.116	35.197.100.140	197.210.227.224	40.94.229.21
65.52.54.28	39.212.94.182	141.196.51.129	109.113.224.23
99.35.160.175	206.181.161.191	185.55.64.152	175.35.77.131
207.71.51.44	108.54.162.197	78.252.207.107	72.149.86.74