104.18.38.104 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.18.38.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.18.38.104.			IN	A

;; AUTHORITY SECTION:
.			247	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022051902 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 20 11:37:37 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 104.38.18.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.38.18.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
154.210.1.88	attack	firewall-block, port(s): 445/tcp	2020-01-14 08:41:02
164.52.24.162	attackspam	Unauthorized connection attempt detected from IP address 164.52.24.162 to port 443 [J]	2020-01-14 08:38:55
222.186.175.183	attackbots	SSH-BruteForce	2020-01-14 08:59:33
185.176.27.90	attack	Jan 14 01:20:48 debian-2gb-nbg1-2 kernel: \[1220550.236398\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.90 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=1282 PROTO=TCP SPT=54139 DPT=9710 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-14 08:32:49
62.210.28.57	attackspam	[2020-01-13 16:51:14] NOTICE[2175][C-00002633] chan_sip.c: Call from '' (62.210.28.57:49325) to extension '4011972592277524' rejected because extension not found in context 'public'. [2020-01-13 16:51:14] SECURITY[2212] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-01-13T16:51:14.436-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="4011972592277524",SessionID="0x7f5ac48ee978",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.28.57/49325",ACLName="no_extension_match" [2020-01-13 16:56:35] NOTICE[2175][C-00002637] chan_sip.c: Call from '' (62.210.28.57:55615) to extension '3011972592277524' rejected because extension not found in context 'public'. [2020-01-13 16:56:35] SECURITY[2212] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-01-13T16:56:35.674-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="3011972592277524",SessionID="0x7f5ac4c6fb48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP ...	2020-01-14 09:02:00
182.48.38.103	attackbotsspam	"SSH brute force auth login attempt."	2020-01-14 09:09:42
50.63.12.204	attackspambots	50.63.12.204 - - \[13/Jan/2020:22:19:34 +0100\] "POST /wp-login.php HTTP/1.0" 200 7672 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 50.63.12.204 - - \[13/Jan/2020:22:19:36 +0100\] "POST /wp-login.php HTTP/1.0" 200 7502 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 50.63.12.204 - - \[13/Jan/2020:22:19:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 7496 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-01-14 09:06:28
158.140.95.32	attackspam	"PROTOCOL-VOIP SIP URI bloque call header=From:any@xxxxx.com&xxxxx_IP_or_To:E.164@xxxxx.com&xxxxx_IP"	2020-01-14 08:54:17
222.186.175.23	attackspam	Jan 14 01:40:54 h2177944 sshd\[10349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.23 user=root Jan 14 01:40:56 h2177944 sshd\[10349\]: Failed password for root from 222.186.175.23 port 24954 ssh2 Jan 14 01:40:58 h2177944 sshd\[10349\]: Failed password for root from 222.186.175.23 port 24954 ssh2 Jan 14 01:41:00 h2177944 sshd\[10349\]: Failed password for root from 222.186.175.23 port 24954 ssh2 ...	2020-01-14 08:41:42
188.213.165.47	attackbots	Unauthorized connection attempt detected from IP address 188.213.165.47 to port 2220 [J]	2020-01-14 08:40:42
80.211.9.57	attackbots	Jan 13 07:09:53 server sshd\[20544\]: Failed password for invalid user t7adm from 80.211.9.57 port 59032 ssh2 Jan 14 03:34:43 server sshd\[8298\]: Invalid user test6 from 80.211.9.57 Jan 14 03:34:43 server sshd\[8298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cloud-io.cloud Jan 14 03:34:45 server sshd\[8298\]: Failed password for invalid user test6 from 80.211.9.57 port 60376 ssh2 Jan 14 03:35:43 server sshd\[8897\]: Invalid user t7adm from 80.211.9.57 Jan 14 03:35:43 server sshd\[8897\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cloud-io.cloud ...	2020-01-14 08:37:01
138.99.216.171	attackspambots	01/13/2020-19:56:21.778335 138.99.216.171 Protocol: 6 ET SCAN Suspicious inbound to mySQL port 3306	2020-01-14 09:00:59
51.15.24.143	attackspam	firewall-block, port(s): 5060/udp	2020-01-14 08:57:13
201.20.88.10	attack	$f2bV_matches	2020-01-14 08:29:30
103.40.235.215	attack	Jan 13 05:14:24 : SSH login attempts with invalid user	2020-01-14 08:36:37

Recently Reported IPs

104.18.38.103	104.18.38.106	104.18.38.108	131.147.240.95
104.18.38.111	104.18.38.115	104.18.38.116	104.18.38.117
70.187.240.204	104.18.38.12	104.18.38.120	216.212.44.70
104.18.38.121	104.18.38.122	104.18.38.125	104.18.38.156
104.18.38.190	104.18.38.198	104.18.38.240	104.18.38.47