104.26.13.116 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.26.13.141	attackbotsspam	From: "Amazon.com" Amazon account phishing/fraud - MALICIOUS REDIRECT UBE aimanbauk ([40.87.105.33]) Microsoft Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT: - sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304 - amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google	2020-07-30 02:47:10

Type

Details

Datetime

104.26.13.141

attackbotsspam

From: "Amazon.com" 
Amazon account phishing/fraud - MALICIOUS REDIRECT

UBE aimanbauk ([40.87.105.33]) Microsoft

Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT:
-	sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304
-	amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop

SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google

2020-07-30 02:47:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.26.13.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35834
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.26.13.116.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 04:03:47 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 116.13.26.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 116.13.26.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.253.90.40	attack	Unauthorized connection attempt from IP address 182.253.90.40 on Port 445(SMB)	2020-03-09 09:24:04
176.155.177.96	attackbots	Attempted to connect 2 times to port 80 TCP	2020-03-09 09:11:36
176.174.14.107	attack	54316/udp [2020-03-08]1pkt	2020-03-09 09:02:38
177.239.32.143	attackspam	Email rejected due to spam filtering	2020-03-09 09:14:10
185.47.7.151	attackspam	Email rejected due to spam filtering	2020-03-09 09:15:57
49.76.11.189	attackbots	suspicious action Sun, 08 Mar 2020 18:30:47 -0300	2020-03-09 08:56:07
45.235.130.242	attackspambots	Unauthorized connection attempt from IP address 45.235.130.242 on Port 445(SMB)	2020-03-09 09:10:28
222.186.3.249	attack	2020-03-09T01:56:06.438727scmdmz1 sshd[28904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.3.249 user=root 2020-03-09T01:56:08.805699scmdmz1 sshd[28904]: Failed password for root from 222.186.3.249 port 43084 ssh2 2020-03-09T01:56:10.483310scmdmz1 sshd[28904]: Failed password for root from 222.186.3.249 port 43084 ssh2 ...	2020-03-09 08:56:34
154.209.69.90	attackbots	ECShop Remote Code Execution Vulnerability	2020-03-09 09:22:00
117.240.4.19	attackbots	Unauthorized connection attempt from IP address 117.240.4.19 on Port 445(SMB)	2020-03-09 08:47:41
195.154.112.212	attack	SSH brute-force: detected 6 distinct usernames within a 24-hour window.	2020-03-09 09:25:10
178.176.184.195	attack	Unauthorized connection attempt from IP address 178.176.184.195 on Port 445(SMB)	2020-03-09 09:25:44
222.92.61.242	attackbots	(imapd) Failed IMAP login from 222.92.61.242 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Mar 9 01:00:46 ir1 dovecot[4133960]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=222.92.61.242, lip=5.63.12.44, TLS, session=	2020-03-09 08:52:23
185.156.73.42	attackspambots	03/08/2020-19:41:10.739549 185.156.73.42 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-03-09 09:09:39
91.247.57.155	attackbotsspam	Email rejected due to spam filtering	2020-03-09 09:16:23

Recently Reported IPs

104.26.13.112	104.26.13.113	104.26.13.121	104.26.13.12
104.26.13.120	104.26.13.119	104.26.13.117	104.26.13.115
104.26.13.123	104.26.13.122	104.26.13.127	104.26.13.124
104.26.13.126	104.26.13.125	104.26.13.129	104.26.13.131
104.26.13.13	104.26.13.128	104.26.13.130	104.26.13.132