104.26.12.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.26.12.141	attack	From: "Amazon.com" Amazon account phishing/fraud - MALICIOUS REDIRECT UBE aimanbauk ([40.87.105.33]) Microsoft Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT: - sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304 - amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google	2020-07-30 03:35:15

类型

评论内容

时间

104.26.12.141

attack

From: "Amazon.com" 
Amazon account phishing/fraud - MALICIOUS REDIRECT

UBE aimanbauk ([40.87.105.33]) Microsoft

Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT:
-	sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304
-	amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop

SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google

2020-07-30 03:35:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.26.12.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11508
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.26.12.42.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 04:03:18 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 42.12.26.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.12.26.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
61.76.169.138	attackspambots	SSH Invalid Login	2020-09-25 06:22:54
152.171.116.131	attackspam	Found on Block CINS-badguys / proto=6 . srcport=23658 . dstport=23 . (3342)	2020-09-25 06:53:55
66.96.235.110	attackbotsspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-25 06:22:13
49.247.135.55	attackspambots	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-25 06:25:46
104.211.212.220	attackbotsspam	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "ittv" at 2020-09-24T22:42:27Z	2020-09-25 06:48:25
93.183.226.218	attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-25 06:19:31
36.99.41.29	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-25 06:31:22
49.233.3.177	attackspambots	Sep 24 22:35:12 plex-server sshd[1482837]: Failed password for invalid user prueba from 49.233.3.177 port 38902 ssh2 Sep 24 22:38:44 plex-server sshd[1484302]: Invalid user amssys from 49.233.3.177 port 44436 Sep 24 22:38:44 plex-server sshd[1484302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.3.177 Sep 24 22:38:44 plex-server sshd[1484302]: Invalid user amssys from 49.233.3.177 port 44436 Sep 24 22:38:46 plex-server sshd[1484302]: Failed password for invalid user amssys from 49.233.3.177 port 44436 ssh2 ...	2020-09-25 06:43:01
103.36.102.244	attack	Sep 24 23:04:02 [host] sshd[9943]: Invalid user an Sep 24 23:04:02 [host] sshd[9943]: pam_unix(sshd:a Sep 24 23:04:03 [host] sshd[9943]: Failed password	2020-09-25 06:17:32
103.130.109.9	attackspam	Invalid user john from 103.130.109.9 port 35951	2020-09-25 06:16:41
118.24.54.178	attackspambots	Sep 24 17:07:42 vps46666688 sshd[26847]: Failed password for root from 118.24.54.178 port 50897 ssh2 Sep 24 17:17:12 vps46666688 sshd[27165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.54.178 ...	2020-09-25 06:38:05
66.99.48.130	attackbotsspam	2020-09-24T21:44:14.696430abusebot.cloudsearch.cf sshd[18173]: Invalid user mysql from 66.99.48.130 port 41984 2020-09-24T21:44:14.701952abusebot.cloudsearch.cf sshd[18173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.99.48.130 2020-09-24T21:44:14.696430abusebot.cloudsearch.cf sshd[18173]: Invalid user mysql from 66.99.48.130 port 41984 2020-09-24T21:44:16.046267abusebot.cloudsearch.cf sshd[18173]: Failed password for invalid user mysql from 66.99.48.130 port 41984 ssh2 2020-09-24T21:50:28.659835abusebot.cloudsearch.cf sshd[18246]: Invalid user nikhil from 66.99.48.130 port 51878 2020-09-24T21:50:28.666430abusebot.cloudsearch.cf sshd[18246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.99.48.130 2020-09-24T21:50:28.659835abusebot.cloudsearch.cf sshd[18246]: Invalid user nikhil from 66.99.48.130 port 51878 2020-09-24T21:50:30.688180abusebot.cloudsearch.cf sshd[18246]: Failed password for invalid ...	2020-09-25 06:21:55
101.32.35.28	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-25 06:18:50
54.39.151.44	attack	Sep 24 09:50:16 sachi sshd\[18369\]: Invalid user edwin from 54.39.151.44 Sep 24 09:50:16 sachi sshd\[18369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.151.44 Sep 24 09:50:18 sachi sshd\[18369\]: Failed password for invalid user edwin from 54.39.151.44 port 46292 ssh2 Sep 24 09:54:38 sachi sshd\[18685\]: Invalid user admin from 54.39.151.44 Sep 24 09:54:38 sachi sshd\[18685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.151.44	2020-09-25 06:45:12
103.45.102.170	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-25 06:17:05

最近上报的IP列表

104.26.12.43	104.26.12.44	104.26.12.45	104.26.12.41
104.26.12.46	104.26.12.48	104.26.12.5	104.26.12.47
104.26.12.52	104.26.12.50	104.26.12.53	104.26.12.58
104.26.12.59	104.26.12.51	104.26.12.55	104.26.12.57
104.26.12.54	104.26.12.61	104.26.12.60	104.26.12.6