104.18.5.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.18.50.120	attack	*** Phishing website that camouflaged Amazon.com. (redirect from) https://subscriber.jglboots.com/ domain: subscriber.jglboots.com IP v6 address: 2606:4700:3037::6812:3378 / 2606:4700:3033::6812:3278 IP v4 address: 104.18.50.120 / 104.18.51.120 location: USA hosting: Cloudflare, Inc web: https://www.cloudflare.com/abuse abuse contact: abuse@cloudflare.com, abuse+law@cloudflare.com, rir@cloudflare.com (redirect to) https://counts-pontis-name-flare-and-safty.telemagico.com/ domain: counts-pontis-name-flare-and-safty.telemagico.com IP v6 address: 2606:4700:3030::6818:62f1 / 2606:4700:3033::6818:63f1 IP v4 address: 104.24.99.241 / 104.24.98.241 location: USA hosting: Cloudflare, Inc web: https://www.cloudflare.com/abuse abuse contact: abuse@cloudflare.com, abuse+law@cloudflare.com, rir@cloudflare.com	2020-05-04 03:15:46
104.18.54.70	spam	Used undred times per day for SPAM, PHISHING, SCAM and SEXE on STOLLEN list we don't know where without our agreement, as usual with LIERS and ROBERS ! Especially by namecheap.com with creatensend.com ? https://www.mywot.com/scorecard/creatensend.com https://www.mywot.com/scorecard/namecheap.com Or uniregistry.com with casinovips.com ? https://www.mywot.com/scorecard/casinovips.com https://www.mywot.com/scorecard/uniregistry.com And the same few hours before... By GoDaddy.com, une autre SOUS MERDE adepte d'ESCROCS commebonusmasters.com... https://www.mywot.com/scorecard/bonusmasters.com https://www.mywot.com/scorecard/godaddy.com	2020-02-20 05:28:25
104.18.53.191	attack	*** Phishing website that camouflaged Google. https://google-chrome.doysstv.com/?index	2020-01-04 20:34:01
104.18.52.191	attackspambots	*** Phishing website that camouflaged Google. https://google-chrome.doysstv.com/?index	2020-01-04 18:36:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.18.5.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26390
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.18.5.4.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 17 15:21:57 CST 2022
;; MSG SIZE  rcvd: 103

Host info

Host 4.5.18.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 4.5.18.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.50.107.7	attackspam	Invalid user kensei from 117.50.107.7 port 60018	2020-03-20 01:21:51
5.188.206.34	attack	" "	2020-03-20 01:06:56
84.17.61.9	attack	B: Why website_form ?	2020-03-20 00:55:54
47.252.7.222	attack	Brute forcing email accounts	2020-03-20 01:26:21
54.36.216.174	attackspam	Mar 19 15:37:19 host01 sshd[22409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.216.174 Mar 19 15:37:20 host01 sshd[22409]: Failed password for invalid user jenkins from 54.36.216.174 port 45306 ssh2 Mar 19 15:43:59 host01 sshd[23447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.216.174 ...	2020-03-20 01:16:50
187.12.167.85	attack	Mar 19 15:34:42 sigma sshd\[21296\]: Invalid user teamspeak3 from 187.12.167.85Mar 19 15:34:44 sigma sshd\[21296\]: Failed password for invalid user teamspeak3 from 187.12.167.85 port 32818 ssh2 ...	2020-03-20 01:29:32
119.194.56.152	attackbots	Unauthorized connection attempt detected from IP address 119.194.56.152 to port 83	2020-03-20 00:43:22
83.97.20.34	attackbots	...	2020-03-20 01:24:03
118.96.224.20	attackbotsspam	Unauthorized connection attempt from IP address 118.96.224.20 on Port 445(SMB)	2020-03-20 01:28:05
113.160.97.240	attack	Unauthorized connection attempt from IP address 113.160.97.240 on Port 445(SMB)	2020-03-20 00:47:31
185.234.217.32	attackbots	MYH,DEF GET /admin/.env	2020-03-20 01:17:53
165.227.53.241	attackspambots	DATE:2020-03-19 15:49:20, IP:165.227.53.241, PORT:ssh SSH brute force auth (docker-dc)	2020-03-20 01:23:04
106.13.149.227	attack	Invalid user cpanelphppgadmin from 106.13.149.227 port 36718 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.227 Failed password for invalid user cpanelphppgadmin from 106.13.149.227 port 36718 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.149.227 user=root Failed password for root from 106.13.149.227 port 60858 ssh2	2020-03-20 01:03:43
37.17.40.162	attackspambots	Unauthorized connection attempt from IP address 37.17.40.162 on Port 445(SMB)	2020-03-20 01:16:28
222.186.30.35	attackbotsspam	Mar 19 22:45:30 areeb-Workstation sshd[22054]: Failed password for root from 222.186.30.35 port 43028 ssh2 Mar 19 22:45:34 areeb-Workstation sshd[22054]: Failed password for root from 222.186.30.35 port 43028 ssh2 ...	2020-03-20 01:17:29

Recently Reported IPs

104.18.5.39	104.18.5.54	104.18.5.55	28.172.146.15
104.18.5.67	104.18.5.72	104.18.5.89	56.245.237.141
104.18.5.96	104.18.5.99	104.18.6.103	104.18.6.105
104.18.6.108	104.18.6.110	104.18.6.118	104.18.6.129
104.18.6.143	104.18.6.144	104.18.6.146	104.18.6.160