104.26.12.16 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.26.12.141	attack	From: "Amazon.com" Amazon account phishing/fraud - MALICIOUS REDIRECT UBE aimanbauk ([40.87.105.33]) Microsoft Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT: - sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304 - amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google	2020-07-30 03:35:15

类型

评论内容

时间

104.26.12.141

attack

From: "Amazon.com" 
Amazon account phishing/fraud - MALICIOUS REDIRECT

UBE aimanbauk ([40.87.105.33]) Microsoft

Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT:
-	sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304
-	amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop

SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google

2020-07-30 03:35:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.26.12.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11817
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.26.12.16.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 04:02:29 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 16.12.26.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 16.12.26.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
219.143.190.1	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 28-03-2020 12:40:10.	2020-03-29 02:23:26
132.148.165.102	attack	xmlrpc attack	2020-03-29 02:01:05
106.13.75.97	attackbots	Repeated brute force against a port	2020-03-29 01:41:45
211.238.72.127	attack	firewall-block, port(s): 26/tcp	2020-03-29 02:26:10
91.40.56.73	attack	SSH Brute-Force reported by Fail2Ban	2020-03-29 02:06:05
51.75.67.69	attackspam	Mar 28 17:57:33 vps sshd[466181]: Failed password for invalid user emil from 51.75.67.69 port 60270 ssh2 Mar 28 18:02:03 vps sshd[494880]: Invalid user cur from 51.75.67.69 port 44654 Mar 28 18:02:03 vps sshd[494880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.ip-51-75-67.eu Mar 28 18:02:05 vps sshd[494880]: Failed password for invalid user cur from 51.75.67.69 port 44654 ssh2 Mar 28 18:06:20 vps sshd[520894]: Invalid user grey from 51.75.67.69 port 57270 ...	2020-03-29 01:38:24
185.175.93.100	attackbots	03/28/2020-13:32:26.121691 185.175.93.100 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-03-29 01:49:42
145.239.78.59	attack	Mar 28 18:37:39 vps sshd[693040]: Failed password for invalid user sn from 145.239.78.59 port 55256 ssh2 Mar 28 18:41:24 vps sshd[715609]: Invalid user nbs from 145.239.78.59 port 40100 Mar 28 18:41:24 vps sshd[715609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.ip-145-239-78.eu Mar 28 18:41:25 vps sshd[715609]: Failed password for invalid user nbs from 145.239.78.59 port 40100 ssh2 Mar 28 18:45:15 vps sshd[737571]: Invalid user wlk from 145.239.78.59 port 53164 ...	2020-03-29 02:18:27
124.152.39.251	attack	Unauthorised access (Mar 28) SRC=124.152.39.251 LEN=40 TTL=48 ID=36135 TCP DPT=8080 WINDOW=44289 SYN Unauthorised access (Mar 28) SRC=124.152.39.251 LEN=40 TTL=48 ID=46995 TCP DPT=8080 WINDOW=44289 SYN Unauthorised access (Mar 27) SRC=124.152.39.251 LEN=40 TTL=48 ID=40990 TCP DPT=8080 WINDOW=43164 SYN Unauthorised access (Mar 27) SRC=124.152.39.251 LEN=40 TTL=48 ID=52043 TCP DPT=8080 WINDOW=43252 SYN Unauthorised access (Mar 23) SRC=124.152.39.251 LEN=40 TTL=48 ID=61268 TCP DPT=8080 WINDOW=44289 SYN Unauthorised access (Mar 22) SRC=124.152.39.251 LEN=40 TTL=48 ID=51079 TCP DPT=8080 WINDOW=34168 SYN	2020-03-29 01:52:41
37.211.77.84	attack	Invalid user gyt from 37.211.77.84 port 33854	2020-03-29 02:13:57
159.65.111.89	attackbots	Mar 28 18:32:17 meumeu sshd[14646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.111.89 Mar 28 18:32:20 meumeu sshd[14646]: Failed password for invalid user austin from 159.65.111.89 port 54224 ssh2 Mar 28 18:35:36 meumeu sshd[15083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.111.89 ...	2020-03-29 01:48:45
94.191.120.108	attack	$f2bV_matches	2020-03-29 01:48:06
94.33.52.178	attack	Mar 28 18:23:02 v22019038103785759 sshd\[27704\]: Invalid user ylw from 94.33.52.178 port 36102 Mar 28 18:23:02 v22019038103785759 sshd\[27704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.33.52.178 Mar 28 18:23:04 v22019038103785759 sshd\[27704\]: Failed password for invalid user ylw from 94.33.52.178 port 36102 ssh2 Mar 28 18:31:04 v22019038103785759 sshd\[28162\]: Invalid user vir from 94.33.52.178 port 49404 Mar 28 18:31:04 v22019038103785759 sshd\[28162\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.33.52.178 ...	2020-03-29 02:21:35
49.235.46.18	attack	Mar 28 14:58:02 firewall sshd[9580]: Invalid user ddw from 49.235.46.18 Mar 28 14:58:05 firewall sshd[9580]: Failed password for invalid user ddw from 49.235.46.18 port 33018 ssh2 Mar 28 15:01:13 firewall sshd[9697]: Invalid user lnf from 49.235.46.18 ...	2020-03-29 02:24:41
180.252.10.15	attackbotsspam	20/3/28@08:40:16: FAIL: Alarm-Network address from=180.252.10.15 ...	2020-03-29 02:17:34

最近上报的IP列表

104.26.12.158	104.26.12.161	104.26.12.159	104.26.12.160
104.26.12.162	104.26.12.165	104.26.12.167	104.26.12.166
104.26.12.169	104.26.12.17	104.26.12.174	104.26.12.170
104.26.12.175	104.26.12.173	104.26.12.176	104.26.12.177
104.26.12.171	104.26.12.172	104.26.12.178	104.26.12.179