65.49.20.92 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: The Shadow Server Foundation

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	443/udp 22/tcp 5683/udp... [2020-05-29/07-19]9pkt,1pt.(tcp),2pt.(udp)	2020-07-20 06:45:11

Comments on same subnet:

IP	Type	Details	Datetime
65.49.20.78	botsattack	Compromised IP	2025-01-28 22:48:38
65.49.20.67	botsattackproxy	Redis bot	2024-04-23 21:05:33
65.49.20.118	attackproxy	VPN fraud	2023-06-12 13:45:52
65.49.20.110	proxy	VPN fraud	2023-06-06 12:43:08
65.49.20.101	proxy	VPN fraud	2023-06-01 16:00:58
65.49.20.107	proxy	VPN fraud	2023-05-29 12:59:34
65.49.20.100	proxy	VPN fraud	2023-05-22 12:53:45
65.49.20.114	proxy	VPN fraud	2023-04-07 13:32:29
65.49.20.124	proxy	VPN fraud	2023-04-03 13:08:01
65.49.20.105	proxy	VPN fraud	2023-03-16 13:52:13
65.49.20.123	proxy	VPN fraud	2023-03-09 14:09:02
65.49.20.90	proxy	VPN scan	2023-02-20 14:00:04
65.49.20.119	proxy	VPN fraud	2023-02-14 20:08:26
65.49.20.106	proxy	Brute force VPN	2023-02-08 14:01:13
65.49.20.77	proxy	VPN	2023-02-06 13:57:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 65.49.20.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41174
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;65.49.20.92.			IN	A

;; AUTHORITY SECTION:
.			550	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071901 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 20 06:45:08 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 92.20.49.65.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 92.20.49.65.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.52.137.220	attackbots	Aug 21 13:19:14 lcdev sshd\[22399\]: Invalid user lire from 120.52.137.220 Aug 21 13:19:14 lcdev sshd\[22399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.137.220 Aug 21 13:19:15 lcdev sshd\[22399\]: Failed password for invalid user lire from 120.52.137.220 port 40260 ssh2 Aug 21 13:24:00 lcdev sshd\[22837\]: Invalid user google from 120.52.137.220 Aug 21 13:24:00 lcdev sshd\[22837\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.137.220	2019-08-22 08:13:35
41.210.128.37	attackbotsspam	Aug 21 19:30:34 ny01 sshd[7481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.210.128.37 Aug 21 19:30:36 ny01 sshd[7481]: Failed password for invalid user michi from 41.210.128.37 port 60885 ssh2 Aug 21 19:36:23 ny01 sshd[8026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.210.128.37	2019-08-22 07:58:48
180.250.248.39	attack	Aug 22 01:32:53 mout sshd[3476]: Invalid user jack from 180.250.248.39 port 38476	2019-08-22 07:38:05
54.37.71.235	attack	Aug 22 01:30:24 SilenceServices sshd[28801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.71.235 Aug 22 01:30:26 SilenceServices sshd[28801]: Failed password for invalid user test from 54.37.71.235 port 40912 ssh2 Aug 22 01:36:13 SilenceServices sshd[310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.71.235	2019-08-22 07:53:34
222.186.15.101	attack	Aug 22 01:50:42 eventyay sshd[11594]: Failed password for root from 222.186.15.101 port 50390 ssh2 Aug 22 01:50:45 eventyay sshd[11594]: Failed password for root from 222.186.15.101 port 50390 ssh2 Aug 22 01:50:59 eventyay sshd[11607]: Failed password for root from 222.186.15.101 port 54884 ssh2 ...	2019-08-22 07:51:20
185.18.69.201	attack	Aug 22 00:47:07 mail sshd\[24488\]: Failed password for invalid user test from 185.18.69.201 port 46696 ssh2 Aug 22 01:03:02 mail sshd\[24819\]: Invalid user vu from 185.18.69.201 port 52708 Aug 22 01:03:02 mail sshd\[24819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.18.69.201 ...	2019-08-22 08:09:15
167.99.230.57	attackbotsspam	Aug 21 18:28:04 debian sshd\[9965\]: Invalid user berlin from 167.99.230.57 port 44746 Aug 21 18:28:04 debian sshd\[9965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.230.57 Aug 21 18:28:06 debian sshd\[9965\]: Failed password for invalid user berlin from 167.99.230.57 port 44746 ssh2 ...	2019-08-22 08:00:19
185.234.216.231	attackspambots	Aug 22 00:32:56 mail postfix/smtpd\[1209\]: warning: unknown\[185.234.216.231\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 22 00:53:46 mail postfix/smtpd\[1795\]: warning: unknown\[185.234.216.231\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 22 01:16:17 mail postfix/smtpd\[1867\]: warning: unknown\[185.234.216.231\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 22 01:59:58 mail postfix/smtpd\[5149\]: warning: unknown\[185.234.216.231\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-08-22 08:12:29
104.248.211.180	attackspambots	Invalid user cacti from 104.248.211.180 port 51154	2019-08-22 08:10:00
66.249.75.82	attackspambots	Automatic report - Banned IP Access	2019-08-22 07:53:11
52.231.32.216	attackspam	Reported by AbuseIPDB proxy server.	2019-08-22 07:40:46
185.176.27.38	attack	08/21/2019-19:56:29.169597 185.176.27.38 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-22 08:15:00
152.136.87.219	attack	Aug 22 01:37:25 eventyay sshd[8324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.87.219 Aug 22 01:37:28 eventyay sshd[8324]: Failed password for invalid user germain from 152.136.87.219 port 57226 ssh2 Aug 22 01:42:06 eventyay sshd[9378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.87.219 ...	2019-08-22 07:42:27
85.67.10.94	attackspambots	(sshd) Failed SSH login from 85.67.10.94 (fibhost-67-10-94.fibernet.hu): 5 in the last 3600 secs	2019-08-22 08:00:57
46.101.27.6	attackbotsspam	Aug 21 13:36:50 php1 sshd\[29851\]: Invalid user postmaster from 46.101.27.6 Aug 21 13:36:50 php1 sshd\[29851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.27.6 Aug 21 13:36:53 php1 sshd\[29851\]: Failed password for invalid user postmaster from 46.101.27.6 port 38306 ssh2 Aug 21 13:41:13 php1 sshd\[30836\]: Invalid user tester from 46.101.27.6 Aug 21 13:41:13 php1 sshd\[30836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.27.6	2019-08-22 07:41:20

Recently Reported IPs

97.239.3.191	211.241.242.230	173.24.54.134	87.52.101.240
91.183.190.118	182.108.250.42	71.255.0.122	201.151.75.62
159.89.160.31	126.203.61.12	67.108.17.120	78.208.236.60
70.226.210.170	27.208.254.144	64.234.52.225	99.254.41.158
47.33.196.137	44.220.40.0	50.99.21.17	12.235.88.69