AbuseIPDB » 65.49.20.70

65.49.20.70 was found in our database!

This IP was reported 10,982 times. Confidence of Abuse is 100%: ?

100%

ISP	The Shadow Server Foundation
Usage Type	Data Center/Web Hosting/Transit
Hostname(s)	70.64-26.20.49.65.in-addr.arpa scan-17a.shadowserver.org
Domain Name	shadowserver.org
Country	United States of America
City	Pleasanton, California

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 65.49.20.70

Whois 65.49.20.70

IP Abuse Reports for 65.49.20.70:

This IP address has been reported a total of 10,982 times from 290 distinct sources. 65.49.20.70 was first reported on November 21st 2020, and the most recent report was 15 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp	Comment	Categories
bakunin1848	2023-12-05 01:16:05 (15 minutes ago)	Firewall IPS Detection on 05-12-2023 at 02:16:04	Port Scan Exploited Host
security.rdmc.fr	2023-12-05 01:00:05 (31 minutes ago)	IP in Malicious Database	Web App Attack
diegonix	2023-12-05 00:37:05 (54 minutes ago)	12/04/2023-21:37:05.097059 65.49.20.70 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputati ... show more12/04/2023-21:37:05.097059 65.49.20.70 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 72 show less	Hacking
Cynar & Cinny	2023-12-04 23:08:59 (2 hours ago)	ufw_block_log_banned	Port Scan
zwh	2023-12-04 21:04:42 (4 hours ago)	Port Scan	Port Scan
MPL	2023-12-04 17:45:27 (7 hours ago)	tcp ports: 6379,3306 (3 or more attempts)	Port Scan
MPL	2023-12-04 16:58:08 (8 hours ago)	tcp ports: 445,6379 (2 or more attempts)	Port Scan
RAP	2023-12-04 16:57:48 (8 hours ago)	2023-12-04 16:57:48 UTC Unauthorized activity to TCP port 445. SMB	Port Scan
MPL	2023-12-04 16:08:16 (9 hours ago)	tcp port scan (5 or more attempts)	Port Scan
☢MiG☢	2023-12-04 15:57:40 (9 hours ago)	TCP probe(s) @ 2455 US	Port Scan
MPL	2023-12-04 15:01:34 (10 hours ago)	tcp/1200 (2 or more attempts)	Port Scan
Warex	2023-12-04 12:12:34 (13 hours ago)	Dec 4 13:12:33 syscgn kernel: [265642.381032] [UFW BLOCK] IN=eth0 OUT= MAC=0a:d1:7f:3c:98:09:10:0e: ... show moreDec 4 13:12:33 syscgn kernel: [265642.381032] [UFW BLOCK] IN=eth0 OUT= MAC=0a:d1:7f:3c:98:09:10:0e:7e:26:f1:c0:08:00 SRC=65.49.20.70 DST=185.194.141.106 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=57713 DPT=9001 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Hacking
MPL	2023-12-04 10:26:58 (15 hours ago)	tcp/5001 (2 or more attempts)	Port Scan
MPL	2023-12-04 09:20:02 (16 hours ago)	tcp/85 (2 or more attempts)	Port Scan
MPL	2023-12-04 07:36:16 (17 hours ago)	tcp/447 (2 or more attempts)	Port Scan

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩