104.18.11.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.18.116.17	attack	14red.com casino spam - casino with very bad reputation Received: from HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (2603:10a6:802:1::35) by VI1PR0501MB2301.eurprd05.prod.outlook.com with HTTPS via VI1PR0902CA0046.EURPRD09.PROD.OUTLOOK.COM; Wed, 31 Jul 2019 16:52:30 +0000 Received: from HE1EUR01FT007.eop-EUR01.prod.protection.outlook.com (10.152.0.51) by HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (10.152.1.164) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2136.14; Wed, 31 Jul 2019 16:52:30 +0000 Authentication-Results: spf=none (sender IP is 169.159.171.139) smtp.mailfrom=luxido.cz; hotmail.co.uk; dkim=none (message not signed) header.d=none;hotmail.co.uk; dmarc=none action=none header.from=luxido.cz; Received-SPF: None (protection.outlook.com: luxido.cz does not designate permitted sender hosts) Received: from static-public-169.159.171.igen.co.za (169.159.171.139)	2019-08-01 05:33:34

Type

Details

Datetime

104.18.116.17

attack

14red.com casino spam - casino with very bad reputation
Received: from HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (2603:10a6:802:1::35) by VI1PR0501MB2301.eurprd05.prod.outlook.com with HTTPS via VI1PR0902CA0046.EURPRD09.PROD.OUTLOOK.COM; Wed, 31 Jul 2019 16:52:30 +0000 Received: from HE1EUR01FT007.eop-EUR01.prod.protection.outlook.com (10.152.0.51) by HE1EUR01HT170.eop-EUR01.prod.protection.outlook.com (10.152.1.164) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2136.14; Wed, 31 Jul 2019 16:52:30 +0000 Authentication-Results: spf=none (sender IP is 169.159.171.139) smtp.mailfrom=luxido.cz; hotmail.co.uk; dkim=none (message not signed) header.d=none;hotmail.co.uk; dmarc=none action=none header.from=luxido.cz; Received-SPF: None (protection.outlook.com: luxido.cz does not designate permitted sender hosts) Received: from static-public-169.159.171.igen.co.za (169.159.171.139)

2019-08-01 05:33:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.18.11.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4849
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.18.11.74.			IN	A

;; AUTHORITY SECTION:
.			532	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 14:07:24 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 74.11.18.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.11.18.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.73.55.203	attackbots	$f2bV_matches	2019-10-16 14:39:06
194.37.92.48	attackspam	Oct 16 00:21:10 firewall sshd[32612]: Invalid user aringsta from 194.37.92.48 Oct 16 00:21:12 firewall sshd[32612]: Failed password for invalid user aringsta from 194.37.92.48 port 47437 ssh2 Oct 16 00:27:26 firewall sshd[32685]: Invalid user duckie from 194.37.92.48 ...	2019-10-16 15:04:05
117.80.5.198	attackbotsspam	Oct 15 23:21:20 esmtp postfix/smtpd[7791]: lost connection after AUTH from unknown[117.80.5.198] Oct 15 23:21:20 esmtp postfix/smtpd[7761]: lost connection after AUTH from unknown[117.80.5.198] Oct 15 23:21:21 esmtp postfix/smtpd[7793]: lost connection after AUTH from unknown[117.80.5.198] Oct 15 23:21:22 esmtp postfix/smtpd[7782]: lost connection after AUTH from unknown[117.80.5.198] Oct 15 23:21:23 esmtp postfix/smtpd[7761]: lost connection after AUTH from unknown[117.80.5.198] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.80.5.198	2019-10-16 15:06:23
154.118.178.75	attack	Portscan or hack attempt detected by psad/fwsnort	2019-10-16 15:06:53
60.191.111.69	attack	Oct 16 05:27:31 srv206 sshd[3706]: Invalid user prueba from 60.191.111.69 Oct 16 05:27:31 srv206 sshd[3706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.191.111.69 Oct 16 05:27:31 srv206 sshd[3706]: Invalid user prueba from 60.191.111.69 Oct 16 05:27:33 srv206 sshd[3706]: Failed password for invalid user prueba from 60.191.111.69 port 46218 ssh2 ...	2019-10-16 15:00:46
139.155.1.252	attackbots	2019-10-16T08:18:48.669850scmdmz1 sshd\[17175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.1.252 user=root 2019-10-16T08:18:50.903024scmdmz1 sshd\[17175\]: Failed password for root from 139.155.1.252 port 54680 ssh2 2019-10-16T08:23:29.589944scmdmz1 sshd\[17542\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.1.252 user=root ...	2019-10-16 14:49:49
185.137.233.121	attack	Portscan or hack attempt detected by psad/fwsnort	2019-10-16 15:03:23
124.158.164.146	attackbotsspam	Oct 15 09:23:22 h2065291 sshd[30502]: Invalid user user1 from 124.158.164.146 Oct 15 09:23:22 h2065291 sshd[30502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.164.146 Oct 15 09:23:24 h2065291 sshd[30502]: Failed password for invalid user user1 from 124.158.164.146 port 54248 ssh2 Oct 15 09:23:24 h2065291 sshd[30502]: Received disconnect from 124.158.164.146: 11: Bye Bye [preauth] Oct 15 09:39:06 h2065291 sshd[30620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.164.146 user=r.r Oct 15 09:39:09 h2065291 sshd[30620]: Failed password for r.r from 124.158.164.146 port 36818 ssh2 Oct 15 09:39:09 h2065291 sshd[30620]: Received disconnect from 124.158.164.146: 11: Bye Bye [preauth] Oct 15 09:43:36 h2065291 sshd[30652]: Invalid user test from 124.158.164.146 Oct 15 09:43:36 h2065291 sshd[30652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruse........ -------------------------------	2019-10-16 14:36:35
92.118.38.37	attackspam	Oct 16 08:52:02 webserver postfix/smtpd\[25340\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 16 08:52:30 webserver postfix/smtpd\[25340\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 16 08:53:05 webserver postfix/smtpd\[25340\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 16 08:53:40 webserver postfix/smtpd\[25340\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 16 08:54:15 webserver postfix/smtpd\[25340\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-16 14:55:29
134.209.106.201	attackspambots	Oct 15 12:58:08 newdogma sshd[20027]: Invalid user admin from 134.209.106.201 port 53702 Oct 15 12:58:08 newdogma sshd[20027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.106.201 Oct 15 12:58:10 newdogma sshd[20027]: Failed password for invalid user admin from 134.209.106.201 port 53702 ssh2 Oct 15 12:58:10 newdogma sshd[20027]: Received disconnect from 134.209.106.201 port 53702:11: Bye Bye [preauth] Oct 15 12:58:10 newdogma sshd[20027]: Disconnected from 134.209.106.201 port 53702 [preauth] Oct 15 13:19:35 newdogma sshd[20254]: Invalid user versuch from 134.209.106.201 port 42782 Oct 15 13:19:35 newdogma sshd[20254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.106.201 Oct 15 13:19:37 newdogma sshd[20254]: Failed password for invalid user versuch from 134.209.106.201 port 42782 ssh2 Oct 15 13:19:37 newdogma sshd[20254]: Received disconnect from 134.209.106.201 port 4........ -------------------------------	2019-10-16 14:47:39
146.0.77.135	attackspambots	RDP Bruteforce	2019-10-16 14:57:52
137.74.199.180	attackbots	Oct 16 07:54:31 sauna sshd[231072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.199.180 Oct 16 07:54:33 sauna sshd[231072]: Failed password for invalid user qv from 137.74.199.180 port 52346 ssh2 ...	2019-10-16 15:05:58
125.25.31.82	attackspam	Automatic report - Port Scan Attack	2019-10-16 14:52:34
5.3.6.82	attack	2019-10-16T05:53:06.719712scmdmz1 sshd\[4410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.3.6.82 user=root 2019-10-16T05:53:08.492313scmdmz1 sshd\[4410\]: Failed password for root from 5.3.6.82 port 45852 ssh2 2019-10-16T05:56:37.794283scmdmz1 sshd\[4653\]: Invalid user mirror04 from 5.3.6.82 port 35512 ...	2019-10-16 14:48:53
222.186.180.6	attackspambots	Oct 16 06:57:24 game-panel sshd[17223]: Failed password for root from 222.186.180.6 port 30274 ssh2 Oct 16 06:57:42 game-panel sshd[17223]: error: maximum authentication attempts exceeded for root from 222.186.180.6 port 30274 ssh2 [preauth] Oct 16 06:57:53 game-panel sshd[17225]: Failed password for root from 222.186.180.6 port 47434 ssh2	2019-10-16 15:05:18

Recently Reported IPs

104.18.11.184	104.17.66.49	104.18.11.164	104.18.110.88
104.18.12.68	104.18.12.19	104.18.13.19	104.17.7.31
104.18.13.68	104.17.72.91	104.18.210.54	104.18.203.26
104.18.213.236	104.18.209.231	104.18.21.233	104.18.21.127
104.18.218.51	104.17.79.53	104.18.210.231	104.18.22.194