104.18.31.168 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.18.31.4	attackspam	"MarketingPromoSystems, 8 The Green Suite #5828 Dover DE" 185.230.46.95 - phishing redirect www.starvingbarber.com	2020-05-25 00:57:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.18.31.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31412
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.18.31.168.			IN	A

;; AUTHORITY SECTION:
.			364	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052200 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 22 22:40:57 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 168.31.18.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 168.31.18.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.213.255.129	attackbotsspam	$f2bV_matches	2019-09-25 22:43:22
185.17.149.147	attack	Disguised BOT	2019-09-25 22:09:55
186.208.2.3	attack	Unauthorised access (Sep 25) SRC=186.208.2.3 LEN=40 TTL=108 ID=256 TCP DPT=139 WINDOW=16384 SYN Unauthorised access (Sep 24) SRC=186.208.2.3 LEN=40 TTL=108 ID=256 TCP DPT=139 WINDOW=16384 SYN Unauthorised access (Sep 23) SRC=186.208.2.3 LEN=40 TTL=108 ID=256 TCP DPT=139 WINDOW=16384 SYN Unauthorised access (Sep 23) SRC=186.208.2.3 LEN=40 TTL=108 ID=256 TCP DPT=139 WINDOW=16384 SYN Unauthorised access (Sep 22) SRC=186.208.2.3 LEN=40 TTL=108 ID=256 TCP DPT=139 WINDOW=16384 SYN	2019-09-25 22:22:08
132.232.59.136	attack	Sep 25 14:22:07 saschabauer sshd[27751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.59.136 Sep 25 14:22:09 saschabauer sshd[27751]: Failed password for invalid user mail1 from 132.232.59.136 port 54806 ssh2	2019-09-25 22:11:59
51.68.70.72	attackspambots	Sep 25 17:02:07 pkdns2 sshd\[48674\]: Invalid user cloud from 51.68.70.72Sep 25 17:02:08 pkdns2 sshd\[48674\]: Failed password for invalid user cloud from 51.68.70.72 port 47752 ssh2Sep 25 17:06:27 pkdns2 sshd\[48850\]: Invalid user demo1 from 51.68.70.72Sep 25 17:06:29 pkdns2 sshd\[48850\]: Failed password for invalid user demo1 from 51.68.70.72 port 33146 ssh2Sep 25 17:10:51 pkdns2 sshd\[49043\]: Invalid user route from 51.68.70.72Sep 25 17:10:53 pkdns2 sshd\[49043\]: Failed password for invalid user route from 51.68.70.72 port 46768 ssh2 ...	2019-09-25 22:29:46
218.92.0.156	attack	Sep 25 15:39:29 piServer sshd[22796]: Failed password for root from 218.92.0.156 port 10746 ssh2 Sep 25 15:39:32 piServer sshd[22796]: Failed password for root from 218.92.0.156 port 10746 ssh2 Sep 25 15:39:35 piServer sshd[22796]: Failed password for root from 218.92.0.156 port 10746 ssh2 Sep 25 15:39:38 piServer sshd[22796]: Failed password for root from 218.92.0.156 port 10746 ssh2 ...	2019-09-25 22:30:36
180.130.236.119	attackspam	Sep2513:49:55server4pure-ftpd:$\?@175.5.36.89$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2514:09:44server4pure-ftpd:$\?@121.238.181.158$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2513:42:37server4pure-ftpd:$\?@220.118.82.68$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2514:02:27server4pure-ftpd:$\?@180.130.236.119$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2513:45:23server4pure-ftpd:$\?@125.113.51.92$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2513:50:01server4pure-ftpd:$\?@175.5.36.89$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2514:02:41server4pure-ftpd:$\?@180.130.236.119$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2514:09:50server4pure-ftpd:$\?@121.238.181.158$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2514:21:39server4pure-ftpd:$\?@182.86.225.99$[WARNING]Authenticationfailedforuser[forum-wbp]Sep2513:45:28server4pure-ftpd:$\?@125.113.51.92$[WARNING]Authenticationfailedforuser[forum-wbp]IPAddressesBlocked:175.5.36.89$CN/China/-$121.23	2019-09-25 22:40:45
113.161.44.73	attackbotsspam	445/tcp 445/tcp [2019-09-04/25]2pkt	2019-09-25 21:59:15
187.188.158.5	attackbotsspam	Automatic report - Banned IP Access	2019-09-25 22:37:45
46.212.176.250	attack	Sep 25 13:49:52 game-panel sshd[5899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.212.176.250 Sep 25 13:49:54 game-panel sshd[5899]: Failed password for invalid user admin from 46.212.176.250 port 53474 ssh2 Sep 25 13:53:47 game-panel sshd[6025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.212.176.250	2019-09-25 21:57:32
212.152.35.78	attack	Sep 25 16:18:03 microserver sshd[49134]: Invalid user ubuntu from 212.152.35.78 port 50451 Sep 25 16:18:03 microserver sshd[49134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.152.35.78 Sep 25 16:18:05 microserver sshd[49134]: Failed password for invalid user ubuntu from 212.152.35.78 port 50451 ssh2 Sep 25 16:21:58 microserver sshd[49750]: Invalid user homager from 212.152.35.78 port 42960 Sep 25 16:21:58 microserver sshd[49750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.152.35.78 Sep 25 16:33:58 microserver sshd[51149]: Invalid user git123 from 212.152.35.78 port 48766 Sep 25 16:33:58 microserver sshd[51149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.152.35.78 Sep 25 16:34:00 microserver sshd[51149]: Failed password for invalid user git123 from 212.152.35.78 port 48766 ssh2 Sep 25 16:38:05 microserver sshd[51752]: Invalid user chen from 212.152.35.78 port 41300	2019-09-25 22:24:37
139.59.41.154	attackspam	$f2bV_matches_ltvn	2019-09-25 22:41:06
91.238.161.153	attackspam	SMB Server BruteForce Attack	2019-09-25 22:03:53
143.192.97.178	attackspam	Sep 25 03:13:31 php1 sshd\[7051\]: Invalid user hosting3r from 143.192.97.178 Sep 25 03:13:31 php1 sshd\[7051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.192.97.178 Sep 25 03:13:33 php1 sshd\[7051\]: Failed password for invalid user hosting3r from 143.192.97.178 port 6864 ssh2 Sep 25 03:18:21 php1 sshd\[7657\]: Invalid user kimura from 143.192.97.178 Sep 25 03:18:21 php1 sshd\[7657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.192.97.178	2019-09-25 22:23:04
2.178.33.139	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/2.178.33.139/ IR - 1H : (255) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IR NAME ASN : ASN12880 IP : 2.178.33.139 CIDR : 2.178.0.0/16 PREFIX COUNT : 276 UNIQUE IP COUNT : 1035264 WYKRYTE ATAKI Z ASN12880 : 1H - 2 3H - 2 6H - 7 12H - 20 24H - 49 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-25 22:39:10

Recently Reported IPs

104.18.30.168	167.199.22.185	104.18.32.142	104.18.32.205
104.18.32.27	104.18.32.77	104.18.33.100	104.18.33.157
104.18.33.159	104.18.33.16	104.18.33.162	104.18.33.165
104.18.33.17	104.18.33.170	104.18.33.171	104.18.33.172
104.18.33.173	104.18.33.175	104.18.33.176	104.18.33.177