104.18.1.245 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.18.12.94	spambotsattackproxynormal	Ip	2022-05-11 11:40:42
104.18.116.17	attack	14red.com casino spam - casino with very bad reputation Received: from HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (2603:10a6:802:1::35) by VI1PR0501MB2301.eurprd05.prod.outlook.com with HTTPS via VI1PR0902CA0046.EURPRD09.PROD.OUTLOOK.COM; Wed, 31 Jul 2019 16:52:30 +0000 Received: from HE1EUR01FT007.eop-EUR01.prod.protection.outlook.com (10.152.0.51) by HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (10.152.1.164) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2136.14; Wed, 31 Jul 2019 16:52:30 +0000 Authentication-Results: spf=none (sender IP is 169.159.171.139) smtp.mailfrom=luxido.cz; hotmail.co.uk; dkim=none (message not signed) header.d=none;hotmail.co.uk; dmarc=none action=none header.from=luxido.cz; Received-SPF: None (protection.outlook.com: luxido.cz does not designate permitted sender hosts) Received: from static-public-169.159.171.igen.co.za (169.159.171.139)	2019-08-01 05:33:34

Type

Details

Datetime

104.18.12.94

spambotsattackproxynormal

Ip

2022-05-11 11:40:42

104.18.116.17

attack

14red.com casino spam - casino with very bad reputation
Received: from HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (2603:10a6:802:1::35) by VI1PR0501MB2301.eurprd05.prod.outlook.com with HTTPS via VI1PR0902CA0046.EURPRD09.PROD.OUTLOOK.COM; Wed, 31 Jul 2019 16:52:30 +0000 Received: from HE1EUR01FT007.eop-EUR01.prod.protection.outlook.com (10.152.0.51) by HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (10.152.1.164) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2136.14; Wed, 31 Jul 2019 16:52:30 +0000 Authentication-Results: spf=none (sender IP is 169.159.171.139) smtp.mailfrom=luxido.cz; hotmail.co.uk; dkim=none (message not signed) header.d=none;hotmail.co.uk; dmarc=none action=none header.from=luxido.cz; Received-SPF: None (protection.outlook.com: luxido.cz does not designate permitted sender hosts) Received: from static-public-169.159.171.igen.co.za (169.159.171.139)

2019-08-01 05:33:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.18.1.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35366
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.18.1.245.			IN	A

;; AUTHORITY SECTION:
.			594	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 01:42:59 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 245.1.18.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.1.18.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.39.18.237	attackbotsspam	Jul 15 19:58:55 SilenceServices sshd[20469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.18.237 Jul 15 19:58:57 SilenceServices sshd[20469]: Failed password for invalid user postgres from 54.39.18.237 port 55866 ssh2 Jul 15 20:03:09 SilenceServices sshd[22657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.18.237	2019-07-16 03:55:20
190.228.16.101	attack	Jul 15 21:45:15 meumeu sshd[19564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.228.16.101 Jul 15 21:45:17 meumeu sshd[19564]: Failed password for invalid user megan from 190.228.16.101 port 58522 ssh2 Jul 15 21:51:24 meumeu sshd[20687]: Failed password for jenkins from 190.228.16.101 port 56742 ssh2 ...	2019-07-16 03:54:10
104.236.246.16	attack	Jul 15 12:09:44 cac1d2 sshd\[27163\]: Invalid user cod from 104.236.246.16 port 51768 Jul 15 12:09:44 cac1d2 sshd\[27163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.246.16 Jul 15 12:09:46 cac1d2 sshd\[27163\]: Failed password for invalid user cod from 104.236.246.16 port 51768 ssh2 ...	2019-07-16 03:46:47
59.8.177.80	attackbots	Triggered by Fail2Ban	2019-07-16 04:09:38
104.40.150.218	attackbotsspam	Jul 15 21:02:35 ubuntu-2gb-nbg1-dc3-1 sshd[18025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.150.218 Jul 15 21:02:37 ubuntu-2gb-nbg1-dc3-1 sshd[18025]: Failed password for invalid user 123456 from 104.40.150.218 port 58496 ssh2 ...	2019-07-16 03:32:47
187.135.160.98	attackspambots	[Aegis] @ 2019-07-15 17:55:24 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-07-16 03:35:11
81.22.45.22	attackbotsspam	Jul 15 19:58:45 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.22 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=18239 PROTO=TCP SPT=49228 DPT=3382 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-07-16 04:09:04
159.65.164.133	attack	Jul 15 16:05:31 plusreed sshd[30981]: Invalid user angelica from 159.65.164.133 ...	2019-07-16 04:08:21
206.189.188.223	attack	Mar 19 16:10:03 vtv3 sshd\[21797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.188.223 user=root Mar 19 16:10:05 vtv3 sshd\[21797\]: Failed password for root from 206.189.188.223 port 36872 ssh2 Mar 19 16:13:52 vtv3 sshd\[23365\]: Invalid user test from 206.189.188.223 port 40402 Mar 19 16:13:52 vtv3 sshd\[23365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.188.223 Mar 19 16:13:54 vtv3 sshd\[23365\]: Failed password for invalid user test from 206.189.188.223 port 40402 ssh2 Apr 14 10:08:18 vtv3 sshd\[9978\]: Invalid user postgres from 206.189.188.223 port 49260 Apr 14 10:08:18 vtv3 sshd\[9978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.188.223 Apr 14 10:08:20 vtv3 sshd\[9978\]: Failed password for invalid user postgres from 206.189.188.223 port 49260 ssh2 Apr 14 10:13:11 vtv3 sshd\[12385\]: Invalid user qh from 206.189.188.223 port 55438 Apr	2019-07-16 03:35:33
165.227.159.16	attack	2019-07-15T19:33:14.513496abusebot.cloudsearch.cf sshd\[24265\]: Invalid user eden from 165.227.159.16 port 35612	2019-07-16 03:38:01
202.53.137.69	attackspam	10 attempts against mh_ha-misc-ban on snow.magehost.pro	2019-07-16 04:03:46
181.63.245.127	attack	Jul 15 21:51:55 meumeu sshd[20831]: Failed password for git from 181.63.245.127 port 27106 ssh2 Jul 15 21:57:05 meumeu sshd[21799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.63.245.127 Jul 15 21:57:07 meumeu sshd[21799]: Failed password for invalid user sam from 181.63.245.127 port 59969 ssh2 ...	2019-07-16 04:11:07
218.92.0.160	attackspam	SSH-bruteforce attempts	2019-07-16 03:57:34
104.131.93.33	attackbotsspam	Jul 15 20:31:42 srv03 sshd\[8445\]: Invalid user mud from 104.131.93.33 port 40446 Jul 15 20:31:42 srv03 sshd\[8445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.93.33 Jul 15 20:31:44 srv03 sshd\[8445\]: Failed password for invalid user mud from 104.131.93.33 port 40446 ssh2	2019-07-16 03:45:55
84.101.59.81	attackbotsspam	...	2019-07-16 03:58:38

Recently Reported IPs

104.18.1.223	104.18.1.34	104.18.1.239	104.18.1.220
104.18.1.39	104.21.64.232	104.18.1.243	104.18.1.71
104.21.64.236	104.18.1.8	104.18.1.83	104.18.1.79
104.18.1.96	104.18.1.4	104.18.10.104	104.18.10.100
104.18.10.103	104.18.10.107	104.18.1.84	104.18.1.58