104.26.13.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.26.13.141	attackbotsspam	From: "Amazon.com" Amazon account phishing/fraud - MALICIOUS REDIRECT UBE aimanbauk ([40.87.105.33]) Microsoft Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT: - sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304 - amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google	2020-07-30 02:47:10

类型

评论内容

时间

104.26.13.141

attackbotsspam

From: "Amazon.com" 
Amazon account phishing/fraud - MALICIOUS REDIRECT

UBE aimanbauk ([40.87.105.33]) Microsoft

Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT:
-	sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304
-	amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop

SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google

2020-07-30 02:47:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.26.13.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59022
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.26.13.42.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 04:04:53 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 42.13.26.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.13.26.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
46.238.53.245	attackspam	May 10 10:12:01 host sshd[60892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.238.53.245 user=root May 10 10:12:02 host sshd[60892]: Failed password for root from 46.238.53.245 port 35194 ssh2 ...	2020-05-10 19:09:19
113.16.192.84	attack	2020-05-10T10:12:44.435301shield sshd\[27643\]: Invalid user jin from 113.16.192.84 port 50887 2020-05-10T10:12:44.438969shield sshd\[27643\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.16.192.84 2020-05-10T10:12:46.782152shield sshd\[27643\]: Failed password for invalid user jin from 113.16.192.84 port 50887 ssh2 2020-05-10T10:14:41.208310shield sshd\[28545\]: Invalid user dl from 113.16.192.84 port 33237 2020-05-10T10:14:41.211982shield sshd\[28545\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.16.192.84	2020-05-10 19:01:03
185.216.213.245	attackbotsspam	May 10 04:25:49 firewall sshd[19076]: Failed password for invalid user ts3bot3 from 185.216.213.245 port 45186 ssh2 May 10 04:29:47 firewall sshd[19262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.216.213.245 user=root May 10 04:29:49 firewall sshd[19262]: Failed password for root from 185.216.213.245 port 55914 ssh2 ...	2020-05-10 19:08:03
189.33.1.188	attackbots	$f2bV_matches	2020-05-10 19:27:52
36.75.141.216	attackspambots	1589082423 - 05/10/2020 05:47:03 Host: 36.75.141.216/36.75.141.216 Port: 445 TCP Blocked	2020-05-10 19:29:12
193.233.136.76	attackbotsspam	[portscan] Port scan	2020-05-10 18:48:52
197.234.201.238	attack	SMTP/25 AUTH CRAM-MD5	2020-05-10 19:08:24
140.143.228.227	attackspam	$f2bV_matches	2020-05-10 19:11:40
115.159.25.122	attack	20 attempts against mh-ssh on cloud	2020-05-10 18:58:15
183.136.214.249	attackspambots	May 10 12:28:10 nginx sshd[96719]: Invalid user es from 183.136.214.249 May 10 12:28:10 nginx sshd[96719]: Connection closed by 183.136.214.249 port 24329 [preauth]	2020-05-10 19:25:09
49.235.216.107	attackspambots	$f2bV_matches	2020-05-10 19:06:14
134.175.191.248	attack	May 10 07:51:56 PorscheCustomer sshd[1243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.191.248 May 10 07:51:58 PorscheCustomer sshd[1243]: Failed password for invalid user parker from 134.175.191.248 port 50644 ssh2 May 10 07:56:48 PorscheCustomer sshd[1426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.191.248 ...	2020-05-10 19:12:02
189.91.239.194	attackspambots	May 10 07:45:58 mout sshd[5306]: Invalid user ubuntu from 189.91.239.194 port 54648	2020-05-10 19:26:00
128.199.220.207	attackspam	2020-05-10T05:54:29.414737shield sshd\[4672\]: Invalid user beth from 128.199.220.207 port 48766 2020-05-10T05:54:29.418098shield sshd\[4672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.220.207 2020-05-10T05:54:31.231575shield sshd\[4672\]: Failed password for invalid user beth from 128.199.220.207 port 48766 ssh2 2020-05-10T05:58:58.542352shield sshd\[6999\]: Invalid user admin from 128.199.220.207 port 57018 2020-05-10T05:58:58.546155shield sshd\[6999\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.220.207	2020-05-10 18:52:33
210.66.115.238	attackspambots	Microsoft SQL Server User Authentication Brute Force Attempt, PTR: h238-210-66-115.seed.net.tw.	2020-05-10 18:56:15

最近上报的IP列表

104.26.13.41	104.26.13.35	104.26.13.39	104.26.13.40
104.26.13.43	104.26.13.45	104.26.13.46	104.26.13.44
104.26.13.47	104.26.13.48	104.26.13.51	104.26.13.57
104.26.13.50	104.26.13.6	104.26.13.59	104.26.13.52
104.26.13.53	104.26.13.54	104.26.13.58	104.26.13.55