65.49.20.71 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: The Shadow Server Foundation

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	1579006888 - 01/14/2020 14:01:28 Host: 65.49.20.71/65.49.20.71 Port: 443 UDP Blocked	2020-01-15 00:47:03
attackspambots	[portscan] tcp/22 [SSH] *(RWIN=65535)(12251243)	2019-12-25 21:41:44

Comments on same subnet:

IP	Type	Details	Datetime
65.49.20.78	botsattack	Compromised IP	2025-01-28 22:48:38
65.49.20.67	botsattackproxy	Redis bot	2024-04-23 21:05:33
65.49.20.118	attackproxy	VPN fraud	2023-06-12 13:45:52
65.49.20.110	proxy	VPN fraud	2023-06-06 12:43:08
65.49.20.101	proxy	VPN fraud	2023-06-01 16:00:58
65.49.20.107	proxy	VPN fraud	2023-05-29 12:59:34
65.49.20.100	proxy	VPN fraud	2023-05-22 12:53:45
65.49.20.114	proxy	VPN fraud	2023-04-07 13:32:29
65.49.20.124	proxy	VPN fraud	2023-04-03 13:08:01
65.49.20.105	proxy	VPN fraud	2023-03-16 13:52:13
65.49.20.123	proxy	VPN fraud	2023-03-09 14:09:02
65.49.20.90	proxy	VPN scan	2023-02-20 14:00:04
65.49.20.119	proxy	VPN fraud	2023-02-14 20:08:26
65.49.20.106	proxy	Brute force VPN	2023-02-08 14:01:13
65.49.20.77	proxy	VPN	2023-02-06 13:57:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 65.49.20.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41544
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;65.49.20.71.			IN	A

;; AUTHORITY SECTION:
.			173	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122500 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 25 21:41:38 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 71.20.49.65.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 71.20.49.65.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.209.16.200	attackspambots	[portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=27897)(10161238)	2019-10-17 01:36:03
43.252.36.98	attackspam	Triggered by Fail2Ban at Vostok web server	2019-10-17 01:45:30
51.77.145.97	attackbots	Oct 16 13:08:44 mail1 sshd\[11941\]: Invalid user login from 51.77.145.97 port 47212 Oct 16 13:08:44 mail1 sshd\[11941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.145.97 Oct 16 13:08:46 mail1 sshd\[11941\]: Failed password for invalid user login from 51.77.145.97 port 47212 ssh2 Oct 16 13:17:03 mail1 sshd\[15792\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.145.97 user=root Oct 16 13:17:05 mail1 sshd\[15792\]: Failed password for root from 51.77.145.97 port 39870 ssh2 ...	2019-10-17 01:22:17
193.70.33.75	attackspam	Oct 16 18:20:49 vmd17057 sshd\[21574\]: Invalid user salim from 193.70.33.75 port 36720 Oct 16 18:20:49 vmd17057 sshd\[21574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.33.75 Oct 16 18:20:51 vmd17057 sshd\[21574\]: Failed password for invalid user salim from 193.70.33.75 port 36720 ssh2 ...	2019-10-17 01:39:10
112.85.42.237	attackspambots	SSH Brute Force, server-1 sshd[8934]: Failed password for root from 112.85.42.237 port 40831 ssh2	2019-10-17 01:42:41
197.51.160.51	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-17 01:50:25
154.8.197.176	attack	2019-10-16T17:10:33.770992abusebot-5.cloudsearch.cf sshd\[24857\]: Invalid user rowland from 154.8.197.176 port 51224 2019-10-16T17:10:33.775660abusebot-5.cloudsearch.cf sshd\[24857\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.197.176	2019-10-17 01:30:20
144.217.60.211	attackspambots	10 probes eg: /wp-x1rp.php	2019-10-17 01:18:12
213.171.220.145	attackbots	autoblock SPAM - block_rbl_lists (spam.spamrats.com)	2019-10-17 01:46:20
222.186.173.142	attackspambots	$f2bV_matches	2019-10-17 01:36:36
132.148.129.180	attackspam	Oct 16 19:46:44 tuxlinux sshd[65323]: Invalid user applmgr from 132.148.129.180 port 40024 Oct 16 19:46:44 tuxlinux sshd[65323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Oct 16 19:46:44 tuxlinux sshd[65323]: Invalid user applmgr from 132.148.129.180 port 40024 Oct 16 19:46:44 tuxlinux sshd[65323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 ...	2019-10-17 01:57:34
196.52.43.57	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-17 01:21:43
182.71.127.250	attack	Oct 16 18:55:30 MK-Soft-VM5 sshd[23037]: Failed password for root from 182.71.127.250 port 58526 ssh2 ...	2019-10-17 01:20:32
42.104.97.238	attackbots	SSH Brute Force, server-1 sshd[31516]: Failed password for invalid user net from 42.104.97.238 port 48231 ssh2	2019-10-17 01:45:59
196.52.43.63	attackspambots	scan r	2019-10-17 01:24:17

Recently Reported IPs

121.122.108.227	87.11.192.69	111.88.246.121	77.237.177.210
36.122.111.37	63.81.87.116	150.120.221.207	34.92.123.255
4.191.154.38	218.31.161.253	29.68.118.24	136.80.78.103
15.51.39.78	217.183.241.17	132.162.120.74	128.0.129.192
94.221.143.52	3.135.235.115	150.228.85.202	112.242.158.240