Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
104.18.50.120 attack
*** Phishing website that camouflaged Amazon.com.
(redirect from)
https://subscriber.jglboots.com/
domain: subscriber.jglboots.com
IP v6 address: 2606:4700:3037::6812:3378 / 2606:4700:3033::6812:3278
IP v4 address: 104.18.50.120 / 104.18.51.120
location: USA
hosting: Cloudflare, Inc
web: https://www.cloudflare.com/abuse
abuse contact: abuse@cloudflare.com, abuse+law@cloudflare.com, rir@cloudflare.com
(redirect to)
https://counts-pontis-name-flare-and-safty.telemagico.com/
domain: counts-pontis-name-flare-and-safty.telemagico.com
IP v6 address: 2606:4700:3030::6818:62f1 / 2606:4700:3033::6818:63f1
IP v4 address: 104.24.99.241 / 104.24.98.241
location: USA
hosting: Cloudflare, Inc
web: https://www.cloudflare.com/abuse
abuse contact: abuse@cloudflare.com, abuse+law@cloudflare.com, rir@cloudflare.com
2020-05-04 03:15:46
104.18.54.70 spam
Used undred times per day for SPAM, PHISHING, SCAM and SEXE on STOLLEN list we don't know where without our agreement, as usual with LIERS and ROBERS !
Especially by namecheap.com with creatensend.com ?
https://www.mywot.com/scorecard/creatensend.com
https://www.mywot.com/scorecard/namecheap.com
Or uniregistry.com with casinovips.com ?
https://www.mywot.com/scorecard/casinovips.com
https://www.mywot.com/scorecard/uniregistry.com
And the same few hours before...
By GoDaddy.com, une autre SOUS MERDE adepte d'ESCROCS commebonusmasters.com...
https://www.mywot.com/scorecard/bonusmasters.com
https://www.mywot.com/scorecard/godaddy.com
2020-02-20 05:28:25
104.18.53.191 attack
*** Phishing website that camouflaged Google.
https://google-chrome.doysstv.com/?index
2020-01-04 20:34:01
104.18.52.191 attackspambots
*** Phishing website that camouflaged Google.
https://google-chrome.doysstv.com/?index
2020-01-04 18:36:35
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.18.5.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4455
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.18.5.85.			IN	A

;; AUTHORITY SECTION:
.			394	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 01:54:33 CST 2022
;; MSG SIZE  rcvd: 104
Host info
Host 85.5.18.104.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.5.18.104.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
154.70.208.66 attackspambots
Sep  1 01:45:13 ns381471 sshd[9257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.70.208.66
Sep  1 01:45:15 ns381471 sshd[9257]: Failed password for invalid user legacy from 154.70.208.66 port 39672 ssh2
2020-09-01 09:19:39
211.90.39.117 attackspambots
Aug 31 21:41:22 rush sshd[3086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.90.39.117
Aug 31 21:41:24 rush sshd[3086]: Failed password for invalid user clarice from 211.90.39.117 port 34037 ssh2
Aug 31 21:46:08 rush sshd[3248]: Failed password for root from 211.90.39.117 port 36970 ssh2
...
2020-09-01 09:16:17
72.167.222.102 attackspam
Automatic report - Banned IP Access
2020-09-01 09:25:15
204.48.20.244 attackbotsspam
Sep  1 04:56:43 ajax sshd[20735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.20.244 
Sep  1 04:56:45 ajax sshd[20735]: Failed password for invalid user xavier from 204.48.20.244 port 44102 ssh2
2020-09-01 12:04:25
202.98.213.26 attack
" "
2020-09-01 09:08:28
139.59.135.84 attackspam
Sep  1 05:56:45 mout sshd[4944]: Invalid user vnc from 139.59.135.84 port 57842
2020-09-01 12:02:04
111.229.222.7 attack
Sep  1 02:15:05 server sshd[22949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.222.7  user=root
Sep  1 02:15:05 server sshd[22949]: User root from 111.229.222.7 not allowed because listed in DenyUsers
Sep  1 02:15:07 server sshd[22949]: Failed password for invalid user root from 111.229.222.7 port 60448 ssh2
Sep  1 02:20:08 server sshd[24005]: Invalid user webadm from 111.229.222.7 port 58802
Sep  1 02:20:08 server sshd[24005]: Invalid user webadm from 111.229.222.7 port 58802
...
2020-09-01 09:03:30
177.69.237.54 attackspam
Invalid user vinci from 177.69.237.54 port 60866
2020-09-01 09:25:36
174.136.57.116 attackspam
xmlrpc attack
2020-09-01 09:28:03
165.232.46.122 attackspam
" "
2020-09-01 09:24:54
190.200.49.141 attackspambots
20/8/31@17:07:06: FAIL: Alarm-Network address from=190.200.49.141
...
2020-09-01 09:26:51
185.216.140.6 attackspam
Fail2Ban Ban Triggered
2020-09-01 09:07:14
67.227.241.68 attack
xmlrpc attack
2020-09-01 08:54:22
134.209.24.61 attack
Triggered by Fail2Ban at Ares web server
2020-09-01 08:55:00
14.236.191.169 attackbotsspam
20/8/31@17:07:13: FAIL: Alarm-Intrusion address from=14.236.191.169
...
2020-09-01 09:22:49

Recently Reported IPs

104.18.6.104 104.18.5.80 104.18.5.83 104.18.6.107
104.18.6.112 104.18.5.92 104.18.6.106 104.18.6.119
104.18.6.116 104.21.65.58 104.18.6.12 104.18.6.150
6.189.167.230 104.18.6.167 104.18.6.170 104.18.6.156
104.18.6.19 104.18.6.184 104.18.6.179 104.18.6.194