65.49.20.90 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
proxy	VPN scan	2023-02-20 14:00:04

Comments on same subnet:

IP	Type	Details	Datetime
65.49.20.78	botsattack	Compromised IP	2025-01-28 22:48:38
65.49.20.67	botsattackproxy	Redis bot	2024-04-23 21:05:33
65.49.20.118	attackproxy	VPN fraud	2023-06-12 13:45:52
65.49.20.110	proxy	VPN fraud	2023-06-06 12:43:08
65.49.20.101	proxy	VPN fraud	2023-06-01 16:00:58
65.49.20.107	proxy	VPN fraud	2023-05-29 12:59:34
65.49.20.100	proxy	VPN fraud	2023-05-22 12:53:45
65.49.20.114	proxy	VPN fraud	2023-04-07 13:32:29
65.49.20.124	proxy	VPN fraud	2023-04-03 13:08:01
65.49.20.105	proxy	VPN fraud	2023-03-16 13:52:13
65.49.20.123	proxy	VPN fraud	2023-03-09 14:09:02
65.49.20.119	proxy	VPN fraud	2023-02-14 20:08:26
65.49.20.106	proxy	Brute force VPN	2023-02-08 14:01:13
65.49.20.77	proxy	VPN	2023-02-06 13:57:51
65.49.20.81	proxy	VPN	2022-12-27 13:51:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 65.49.20.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41554
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;65.49.20.90.			IN	A

;; AUTHORITY SECTION:
.			433	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 08:58:31 CST 2022
;; MSG SIZE  rcvd: 104

Host info

90.20.49.65.in-addr.arpa is an alias for 90.64-26.20.49.65.in-addr.arpa.
90.64-26.20.49.65.in-addr.arpa domain name pointer scan-17f.shadowserver.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
90.20.49.65.in-addr.arpa	canonical name = 90.64-26.20.49.65.in-addr.arpa.
90.64-26.20.49.65.in-addr.arpa	name = scan-17f.shadowserver.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
164.132.81.106	attackbots	Invalid user aguirre from 164.132.81.106 port 33494	2019-10-27 06:04:17
178.150.216.229	attack	$f2bV_matches	2019-10-27 05:59:38
178.128.85.193	attackbots	Invalid user user from 178.128.85.193 port 38596	2019-10-27 06:00:32
124.156.50.145	attackspambots	Fail2Ban Ban Triggered	2019-10-27 05:58:33
148.72.65.10	attackspambots	Oct 26 21:36:31 localhost sshd\[98943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.65.10 user=root Oct 26 21:36:33 localhost sshd\[98943\]: Failed password for root from 148.72.65.10 port 43402 ssh2 Oct 26 21:40:14 localhost sshd\[99108\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.65.10 user=root Oct 26 21:40:17 localhost sshd\[99108\]: Failed password for root from 148.72.65.10 port 53972 ssh2 Oct 26 21:44:03 localhost sshd\[99205\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.65.10 user=root ...	2019-10-27 05:45:07
181.189.133.34	attackspam	10/26/2019-16:27:47.529960 181.189.133.34 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-27 05:39:08
221.232.97.224	attackspambots	firewall-block, port(s): 23/tcp	2019-10-27 06:13:38
71.6.147.254	attackbotsspam	3389BruteforceStormFW23	2019-10-27 05:53:23
175.140.23.240	attack	invalid user	2019-10-27 05:37:07
222.186.175.167	attackspambots	Oct 27 00:05:44 MK-Soft-Root1 sshd[12721]: Failed password for root from 222.186.175.167 port 20454 ssh2 Oct 27 00:05:49 MK-Soft-Root1 sshd[12721]: Failed password for root from 222.186.175.167 port 20454 ssh2 ...	2019-10-27 06:13:07
172.105.67.133	attackspambots	(sshd) Failed SSH login from 172.105.67.133 (DE/Germany/li2023-133.members.linode.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 26 22:24:35 server2 sshd[15271]: Invalid user 1234 from 172.105.67.133 port 46394 Oct 26 22:24:37 server2 sshd[15271]: Failed password for invalid user 1234 from 172.105.67.133 port 46394 ssh2 Oct 26 22:28:32 server2 sshd[15361]: Failed password for root from 172.105.67.133 port 60638 ssh2 Oct 26 22:31:56 server2 sshd[15490]: Invalid user qp from 172.105.67.133 port 44000 Oct 26 22:31:58 server2 sshd[15490]: Failed password for invalid user qp from 172.105.67.133 port 44000 ssh2	2019-10-27 05:42:14
202.139.192.76	attackbots	Chat Spam	2019-10-27 05:46:49
104.248.57.21	attackspambots	Oct 26 23:36:28 ArkNodeAT sshd\[21748\]: Invalid user marco from 104.248.57.21 Oct 26 23:36:28 ArkNodeAT sshd\[21748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.57.21 Oct 26 23:36:30 ArkNodeAT sshd\[21748\]: Failed password for invalid user marco from 104.248.57.21 port 39030 ssh2	2019-10-27 06:00:04
104.131.111.64	attackspambots	SSHScan	2019-10-27 06:05:58
112.85.42.237	attackspam	2019-10-26T21:29:04.847570abusebot-2.cloudsearch.cf sshd\[24237\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.237 user=root	2019-10-27 05:58:55

Recently Reported IPs

89.44.201.115	1.53.208.218	42.243.116.107	125.162.49.142
114.34.149.174	193.242.194.101	24.11.233.55	124.198.40.165
110.168.31.192	217.64.26.50	70.178.24.71	94.125.243.232
64.227.170.114	177.249.170.195	27.6.47.124	182.117.29.185
197.46.114.71	80.15.14.46	189.208.237.111	36.74.75.241