104.18.1.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.18.12.94	spambotsattackproxynormal	Ip	2022-05-11 11:40:42
104.18.116.17	attack	14red.com casino spam - casino with very bad reputation Received: from HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (2603:10a6:802:1::35) by VI1PR0501MB2301.eurprd05.prod.outlook.com with HTTPS via VI1PR0902CA0046.EURPRD09.PROD.OUTLOOK.COM; Wed, 31 Jul 2019 16:52:30 +0000 Received: from HE1EUR01FT007.eop-EUR01.prod.protection.outlook.com (10.152.0.51) by HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (10.152.1.164) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2136.14; Wed, 31 Jul 2019 16:52:30 +0000 Authentication-Results: spf=none (sender IP is 169.159.171.139) smtp.mailfrom=luxido.cz; hotmail.co.uk; dkim=none (message not signed) header.d=none;hotmail.co.uk; dmarc=none action=none header.from=luxido.cz; Received-SPF: None (protection.outlook.com: luxido.cz does not designate permitted sender hosts) Received: from static-public-169.159.171.igen.co.za (169.159.171.139)	2019-08-01 05:33:34

Type

Details

Datetime

104.18.12.94

spambotsattackproxynormal

Ip

2022-05-11 11:40:42

104.18.116.17

attack

14red.com casino spam - casino with very bad reputation
Received: from HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (2603:10a6:802:1::35) by VI1PR0501MB2301.eurprd05.prod.outlook.com with HTTPS via VI1PR0902CA0046.EURPRD09.PROD.OUTLOOK.COM; Wed, 31 Jul 2019 16:52:30 +0000 Received: from HE1EUR01FT007.eop-EUR01.prod.protection.outlook.com (10.152.0.51) by HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (10.152.1.164) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2136.14; Wed, 31 Jul 2019 16:52:30 +0000 Authentication-Results: spf=none (sender IP is 169.159.171.139) smtp.mailfrom=luxido.cz; hotmail.co.uk; dkim=none (message not signed) header.d=none;hotmail.co.uk; dmarc=none action=none header.from=luxido.cz; Received-SPF: None (protection.outlook.com: luxido.cz does not designate permitted sender hosts) Received: from static-public-169.159.171.igen.co.za (169.159.171.139)

2019-08-01 05:33:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.18.1.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21723
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.18.1.85.			IN	A

;; AUTHORITY SECTION:
.			197	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 17:29:03 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 85.1.18.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.1.18.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.83.57.157	attackspam	Invalid user es from 51.83.57.157 port 56946	2020-04-20 06:10:31
138.68.226.175	attackbotsspam	(sshd) Failed SSH login from 138.68.226.175 (US/United States/-): 5 in the last 3600 secs	2020-04-20 05:50:19
34.96.138.246	attackbots	Apr 20 03:03:42 gw1 sshd[1114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.96.138.246 Apr 20 03:03:45 gw1 sshd[1114]: Failed password for invalid user admin from 34.96.138.246 port 46944 ssh2 ...	2020-04-20 06:05:21
121.134.202.22	attack	Invalid user nz from 121.134.202.22 port 56292	2020-04-20 06:16:49
119.28.214.72	attack	(sshd) Failed SSH login from 119.28.214.72 (HK/Hong Kong/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 19 21:53:07 amsweb01 sshd[8402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.214.72 user=root Apr 19 21:53:08 amsweb01 sshd[8402]: Failed password for root from 119.28.214.72 port 53148 ssh2 Apr 19 22:03:33 amsweb01 sshd[9978]: Invalid user vmware from 119.28.214.72 port 49766 Apr 19 22:03:35 amsweb01 sshd[9978]: Failed password for invalid user vmware from 119.28.214.72 port 49766 ssh2 Apr 19 22:14:49 amsweb01 sshd[11675]: Invalid user cu from 119.28.214.72 port 34796	2020-04-20 06:03:25
47.93.245.244	attackbotsspam	HTTP/80/443/8080 Probe, BF, WP, Hack -	2020-04-20 05:59:18
168.0.81.113	attackspam	Automatic report - Port Scan Attack	2020-04-20 05:49:56
59.46.173.153	attackspambots	(sshd) Failed SSH login from 59.46.173.153 (CN/China/-): 5 in the last 3600 secs	2020-04-20 05:58:31
82.148.28.143	attackbots	Apr 19 22:07:35 h2034429 sshd[25477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.148.28.143 user=r.r Apr 19 22:07:37 h2034429 sshd[25477]: Failed password for r.r from 82.148.28.143 port 56872 ssh2 Apr 19 22:07:37 h2034429 sshd[25477]: Received disconnect from 82.148.28.143 port 56872:11: Bye Bye [preauth] Apr 19 22:07:37 h2034429 sshd[25477]: Disconnected from 82.148.28.143 port 56872 [preauth] Apr 19 22:25:56 h2034429 sshd[26018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.148.28.143 user=r.r Apr 19 22:25:58 h2034429 sshd[26018]: Failed password for r.r from 82.148.28.143 port 35602 ssh2 Apr 19 22:25:58 h2034429 sshd[26018]: Received disconnect from 82.148.28.143 port 35602:11: Bye Bye [preauth] Apr 19 22:25:58 h2034429 sshd[26018]: Disconnected from 82.148.28.143 port 35602 [preauth] Apr 19 22:38:20 h2034429 sshd[26241]: Invalid user kr from 82.148.28.143 Apr 19 22:38:20........ -------------------------------	2020-04-20 05:53:46
145.239.239.83	attackspam	Apr 19 17:10:21 firewall sshd[31340]: Failed password for invalid user test from 145.239.239.83 port 57726 ssh2 Apr 19 17:14:38 firewall sshd[31482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.239.83 user=root Apr 19 17:14:40 firewall sshd[31482]: Failed password for root from 145.239.239.83 port 47482 ssh2 ...	2020-04-20 06:14:23
118.25.146.128	attackbotsspam	WordPress brute force	2020-04-20 05:47:16
109.235.199.14	attack	Unauthorized connection attempt from IP address 109.235.199.14 on Port 445(SMB)	2020-04-20 05:42:29
58.65.136.170	attackspambots	prod3 ...	2020-04-20 05:55:47
222.186.30.57	attackspam	Apr 19 21:39:57 localhost sshd[98173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root Apr 19 21:39:59 localhost sshd[98173]: Failed password for root from 222.186.30.57 port 55443 ssh2 Apr 19 21:40:01 localhost sshd[98173]: Failed password for root from 222.186.30.57 port 55443 ssh2 Apr 19 21:39:57 localhost sshd[98173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root Apr 19 21:39:59 localhost sshd[98173]: Failed password for root from 222.186.30.57 port 55443 ssh2 Apr 19 21:40:01 localhost sshd[98173]: Failed password for root from 222.186.30.57 port 55443 ssh2 Apr 19 21:39:57 localhost sshd[98173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root Apr 19 21:39:59 localhost sshd[98173]: Failed password for root from 222.186.30.57 port 55443 ssh2 Apr 19 21:40:01 localhost sshd[98173]: Failed pas ...	2020-04-20 05:43:47
14.187.98.124	attack	Brute force attempt	2020-04-20 05:59:33

Recently Reported IPs

104.18.1.77	104.18.1.91	104.18.10.123	104.18.10.129
237.46.45.58	104.18.10.142	104.18.10.165	104.18.10.172
104.18.10.173	104.18.10.174	104.18.10.180	104.18.10.19
104.18.10.193	104.18.10.195	104.18.10.201	104.18.10.205
104.18.10.206	104.18.10.209	104.18.10.21	104.18.10.217