104.16.2.105 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.16.209.86	spam	AGAIN and AGAIN and ALWAYS the same REGISTRAR as 1api.net TO STOP IMMEDIATELY for keeping SPAMMERS, LIERS, ROBERS and else since too many years ! The cheapest service, as usual... Dossier transmis aux autorités Européennes et Françaises pour CONDAMNATION à 750 € par POURRIEL émis les SOUS MERDES, OK ? From: Joka Date: Wed, 18 Mar 2020 16:46:18 +0000 Subject: LE CASINO JOKA. =?utf-8?b?T8OZ?= LES FORTUNES SE PROFILENT Message-Id: <4WMA.BA1D.F33KVOH670.20200318164618859@bestoffer-today.com> live@bestoffer-today.com which send to « https://bestoffer-today.com/4WMA-BA1D-F33KVOH670/uauto.aspx » to BURN / CLOSE / DELETTE / STOP IMMEDIATELY for SPAM, PHISHING and SCAM on STOLLEN List ! ! ! bestoffer-today.com => 1api.net bestoffer-today.com => 104.16.209.86 104.16.209.86 => cloudflare.com AS USUAL... 1api.net => 84.200.110.124 84.200.110.124 => accelerated.de live@bestoffer-today.com => 94.143.106.199 94.143.106.199 => dotmailer.com dotmailer.com => 104.18.70.28 104.18.70.28 => cloudflare.com AS USUAL... dotmailer.com send to dotdigital.com dotdigital.com => 104.19.144.113 104.19.144.113 => cloudflare.com https://www.mywot.com/scorecard/dotmailer.com https://www.mywot.com/scorecard/dotdigital.com https://www.mywot.com/scorecard/bestoffer-today.com https://www.mywot.com/scorecard/1api.net AS USUAL... https://en.asytech.cn/check-ip/104.16.209.86 https://en.asytech.cn/check-ip/84.200.110.124 https://en.asytech.cn/check-ip/94.143.106.199 https://en.asytech.cn/check-ip/104.18.70.28 https://en.asytech.cn/check-ip/104.19.144.113	2020-03-19 05:04:59

类型

评论内容

时间

104.16.209.86

spam

AGAIN and AGAIN and ALWAYS the same REGISTRAR as 1api.net TO STOP IMMEDIATELY for keeping SPAMMERS, LIERS, ROBERS and else since too many years ! The cheapest service, as usual...
Dossier transmis aux autorités Européennes et Françaises pour CONDAMNATION à 750 € par POURRIEL émis les SOUS MERDES, OK ?

From: Joka 
Date: Wed, 18 Mar 2020 16:46:18 +0000
Subject: LE CASINO JOKA. =?utf-8?b?T8OZ?= LES FORTUNES SE PROFILENT
Message-Id: <4WMA.BA1D.F33KVOH670.20200318164618859@bestoffer-today.com>

live@bestoffer-today.com which send to « https://bestoffer-today.com/4WMA-BA1D-F33KVOH670/uauto.aspx » to BURN / CLOSE / DELETTE / STOP IMMEDIATELY for SPAM, PHISHING and SCAM on STOLLEN List ! ! !

bestoffer-today.com => 1api.net

bestoffer-today.com => 104.16.209.86

104.16.209.86 => cloudflare.com AS USUAL...

1api.net => 84.200.110.124

84.200.110.124 => accelerated.de

live@bestoffer-today.com => 94.143.106.199

94.143.106.199 => dotmailer.com

dotmailer.com => 104.18.70.28

104.18.70.28 => cloudflare.com AS USUAL...

dotmailer.com send to dotdigital.com

dotdigital.com => 104.19.144.113

104.19.144.113 => cloudflare.com

https://www.mywot.com/scorecard/dotmailer.com

https://www.mywot.com/scorecard/dotdigital.com

https://www.mywot.com/scorecard/bestoffer-today.com

https://www.mywot.com/scorecard/1api.net AS USUAL...

https://en.asytech.cn/check-ip/104.16.209.86

https://en.asytech.cn/check-ip/84.200.110.124

https://en.asytech.cn/check-ip/94.143.106.199

https://en.asytech.cn/check-ip/104.18.70.28

https://en.asytech.cn/check-ip/104.19.144.113

2020-03-19 05:04:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.16.2.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36521
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.16.2.105.			IN	A

;; AUTHORITY SECTION:
.			171	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022051902 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 20 11:07:35 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 105.2.16.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 105.2.16.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
206.189.181.12	attack	Feb 25 22:52:19 debian-2gb-nbg1-2 kernel: \[4926736.878361\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=206.189.181.12 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=14721 PROTO=TCP SPT=34377 DPT=2323 WINDOW=37977 RES=0x00 SYN URGP=0	2020-02-26 05:52:49
31.184.215.50	attackspambots	Triggered: repeated knocking on closed ports.	2020-02-26 05:41:59
188.68.45.180	attackspam	suspicious action Tue, 25 Feb 2020 13:34:27 -0300	2020-02-26 06:07:43
209.17.96.42	attackspambots	Unauthorised access (Feb 25) SRC=209.17.96.42 LEN=44 TOS=0x08 PREC=0x20 TTL=241 ID=54321 TCP DPT=8080 WINDOW=65535 SYN	2020-02-26 05:57:28
1.179.234.241	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-26 06:12:20
80.82.64.134	attackbots	Feb 25 16:33:45 plusreed sshd[6162]: Invalid user RPM from 80.82.64.134 Feb 25 16:33:46 plusreed sshd[6162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.82.64.134 Feb 25 16:33:45 plusreed sshd[6162]: Invalid user RPM from 80.82.64.134 Feb 25 16:33:47 plusreed sshd[6162]: Failed password for invalid user RPM from 80.82.64.134 port 9912 ssh2 Feb 25 16:33:48 plusreed sshd[6165]: Invalid user RPM from 80.82.64.134 ...	2020-02-26 05:42:47
77.247.110.38	attackspambots	[2020-02-25 16:38:48] NOTICE[1148] chan_sip.c: Registration from '' failed for '77.247.110.38:65034' - Wrong password [2020-02-25 16:38:48] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-25T16:38:48.558-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="839",SessionID="0x7fd82c81c298",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.38/65034",Challenge="37f00779",ReceivedChallenge="37f00779",ReceivedHash="8eaec366b28d5e8ff957a9f5c489281c" [2020-02-25 16:38:48] NOTICE[1148] chan_sip.c: Registration from '' failed for '77.247.110.38:65037' - Wrong password [2020-02-25 16:38:48] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-25T16:38:48.559-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="839",SessionID="0x7fd82c3a9c28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.38/65037",Challenge="2 ...	2020-02-26 05:46:05
217.182.147.248	attack	Registration form abuse	2020-02-26 06:02:29
37.211.67.145	attackbotsspam	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-26 05:37:39
128.0.129.192	attack	Feb 25 16:56:50 vps46666688 sshd[7722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.0.129.192 Feb 25 16:56:52 vps46666688 sshd[7722]: Failed password for invalid user steve from 128.0.129.192 port 49796 ssh2 ...	2020-02-26 06:02:00
170.106.37.189	attackbots	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-26 05:45:48
71.190.234.217	attackbotsspam	Feb 25 14:58:44 main sshd[21358]: Failed password for invalid user upload from 71.190.234.217 port 39831 ssh2	2020-02-26 06:00:41
88.247.89.157	attackbots	8080/tcp [2020-01-12/02-25]3pkt	2020-02-26 05:34:17
104.203.153.215	attackspam	Feb 25 20:39:35 xeon sshd[26947]: Failed password for root from 104.203.153.215 port 38062 ssh2	2020-02-26 05:45:36
109.115.45.179	attack	Scanning random ports - tries to find possible vulnerable services	2020-02-26 06:03:33

最近上报的IP列表

104.16.2.104	212.141.156.122	104.16.2.106	104.16.2.108
250.209.108.210	212.139.130.13	104.16.2.109	104.16.2.110
104.16.2.111	104.16.2.112	104.16.2.113	104.16.2.114
104.16.2.115	104.16.2.116	104.16.2.117	104.16.2.118
104.16.2.119	222.165.49.71	104.164.122.245	104.164.122.246