104.26.13.54 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.26.13.141	attackbotsspam	From: "Amazon.com" Amazon account phishing/fraud - MALICIOUS REDIRECT UBE aimanbauk ([40.87.105.33]) Microsoft Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT: - sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304 - amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google	2020-07-30 02:47:10

类型

评论内容

时间

104.26.13.141

attackbotsspam

From: "Amazon.com" 
Amazon account phishing/fraud - MALICIOUS REDIRECT

UBE aimanbauk ([40.87.105.33]) Microsoft

Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT:
-	sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304
-	amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop

SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google

2020-07-30 02:47:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.26.13.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2873
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.26.13.54.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 04:04:58 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 54.13.26.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.13.26.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
186.215.202.11	attackbotsspam	F2B jail: sshd. Time: 2019-09-08 03:30:38, Reported by: VKReport	2019-09-08 09:38:09
91.121.157.83	attack	Sep 7 19:40:14 xtremcommunity sshd\[57949\]: Invalid user radio from 91.121.157.83 port 35206 Sep 7 19:40:14 xtremcommunity sshd\[57949\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.157.83 Sep 7 19:40:16 xtremcommunity sshd\[57949\]: Failed password for invalid user radio from 91.121.157.83 port 35206 ssh2 Sep 7 19:43:54 xtremcommunity sshd\[58061\]: Invalid user zxcloudsetup from 91.121.157.83 port 49110 Sep 7 19:43:54 xtremcommunity sshd\[58061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.157.83 ...	2019-09-08 09:24:05
50.209.176.166	attack	Sep 7 21:19:39 vps200512 sshd\[5624\]: Invalid user www from 50.209.176.166 Sep 7 21:19:39 vps200512 sshd\[5624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.209.176.166 Sep 7 21:19:41 vps200512 sshd\[5624\]: Failed password for invalid user www from 50.209.176.166 port 60114 ssh2 Sep 7 21:23:42 vps200512 sshd\[5728\]: Invalid user oneadmin from 50.209.176.166 Sep 7 21:23:42 vps200512 sshd\[5728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.209.176.166	2019-09-08 09:26:06
211.181.237.48	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-07 21:11:48,903 INFO [shellcode_manager] (211.181.237.48) no match, writing hexdump (06cb1cdc794ded1faa9f8ed0bf4f6df0 :10711) - SMB (Unknown)	2019-09-08 09:13:50
187.201.145.146	attack	2019-09-08T01:12:07.070066abusebot-2.cloudsearch.cf sshd\[1253\]: Invalid user mysftp from 187.201.145.146 port 20197	2019-09-08 09:21:38
175.101.12.202	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-07 20:29:02,074 INFO [amun_request_handler] PortScan Detected on Port: 445 (175.101.12.202)	2019-09-08 09:29:34
128.199.162.108	attack	Sep 8 02:00:40 dedicated sshd[14062]: Invalid user 123321 from 128.199.162.108 port 52476	2019-09-08 09:31:54
193.9.27.175	attack	Sep 8 03:36:58 intra sshd\[4349\]: Invalid user user5 from 193.9.27.175Sep 8 03:37:00 intra sshd\[4349\]: Failed password for invalid user user5 from 193.9.27.175 port 33526 ssh2Sep 8 03:40:55 intra sshd\[4454\]: Invalid user git from 193.9.27.175Sep 8 03:40:57 intra sshd\[4454\]: Failed password for invalid user git from 193.9.27.175 port 48504 ssh2Sep 8 03:44:47 intra sshd\[4528\]: Invalid user weblogic from 193.9.27.175Sep 8 03:44:48 intra sshd\[4528\]: Failed password for invalid user weblogic from 193.9.27.175 port 35250 ssh2 ...	2019-09-08 08:47:54
49.88.112.72	attack	Sep 8 02:31:59 mail sshd\[17860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.72 user=root Sep 8 02:32:01 mail sshd\[17860\]: Failed password for root from 49.88.112.72 port 32527 ssh2 Sep 8 02:32:02 mail sshd\[17860\]: Failed password for root from 49.88.112.72 port 32527 ssh2 Sep 8 02:32:05 mail sshd\[17860\]: Failed password for root from 49.88.112.72 port 32527 ssh2 Sep 8 02:33:35 mail sshd\[18008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.72 user=root	2019-09-08 08:46:12
206.81.4.235	attackspam	Sep 7 13:42:15 php1 sshd\[1297\]: Invalid user 123456 from 206.81.4.235 Sep 7 13:42:15 php1 sshd\[1297\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.4.235 Sep 7 13:42:17 php1 sshd\[1297\]: Failed password for invalid user 123456 from 206.81.4.235 port 41391 ssh2 Sep 7 13:46:31 php1 sshd\[1678\]: Invalid user sysadmin123 from 206.81.4.235 Sep 7 13:46:31 php1 sshd\[1678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.4.235	2019-09-08 09:14:13
141.98.9.42	attack	Sep 8 03:08:14 relay postfix/smtpd\[13074\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 03:08:57 relay postfix/smtpd\[8092\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 03:09:11 relay postfix/smtpd\[13074\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 03:09:53 relay postfix/smtpd\[8092\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 03:10:06 relay postfix/smtpd\[27462\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-08 09:20:52
188.153.252.104	attackspambots	Automatic report - Port Scan Attack	2019-09-08 09:10:25
193.169.255.137	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-07 21:56:03,346 INFO [amun_request_handler] PortScan Detected on Port: 25 (193.169.255.137)	2019-09-08 09:20:17
192.99.32.86	attackbots	Sep 8 02:40:23 SilenceServices sshd[6087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.32.86 Sep 8 02:40:26 SilenceServices sshd[6087]: Failed password for invalid user nagios from 192.99.32.86 port 39678 ssh2 Sep 8 02:44:16 SilenceServices sshd[7575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.32.86	2019-09-08 08:59:29
51.159.17.204	attack	Sep 7 11:45:44 php1 sshd\[22779\]: Invalid user sysadmin from 51.159.17.204 Sep 7 11:45:44 php1 sshd\[22779\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.159.17.204 Sep 7 11:45:45 php1 sshd\[22779\]: Failed password for invalid user sysadmin from 51.159.17.204 port 59618 ssh2 Sep 7 11:49:43 php1 sshd\[23185\]: Invalid user support from 51.159.17.204 Sep 7 11:49:43 php1 sshd\[23185\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.159.17.204	2019-09-08 09:05:13

最近上报的IP列表

104.26.13.53	104.26.13.58	104.26.13.55	104.26.13.5
104.26.13.60	104.26.13.61	104.26.13.62	104.26.13.65
104.26.13.67	104.26.13.63	104.26.13.68	104.26.13.64
104.26.13.69	104.26.13.70	104.26.13.7	104.26.13.71
104.26.13.73	104.26.13.66	104.26.13.72	104.26.13.75