Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
104.18.7.4 attackspam
[DoS Attack: SYN/ACK Scan] from source: 104.18.7.4, port 443, Friday, July 31, 2020 22:27:58
2020-08-01 06:05:57
104.18.70.149 attack
"MarketingPromoSystems, 8 The Green Suite #5828 Dover DE" 185.230.46.95 - phishing redirect www1.innovationaltech.xyz
2020-05-24 22:42:26
104.18.71.149 attack
"MarketingPromoSystems, 8 The Green Suite #5828 Dover DE" 185.230.46.95 - phishing redirect www1.innovationaltech.xyz
2020-05-24 22:11:41
104.18.72.149 attackspam
"MarketingPromoSystems, 8 The Green Suite #5828 Dover DE" 185.230.46.95 - phishing redirect www1.innovationaltech.xyz
2020-05-24 21:44:55
104.18.70.28 spam
AGAIN and AGAIN and ALWAYS the same REGISTRAR as 1api.net TO STOP IMMEDIATELY for keeping SPAMMERS, LIERS, ROBERS and else since too many years ! The cheapest service, as usual...
Dossier transmis aux autorités Européennes et Françaises pour CONDAMNATION à 750 € par POURRIEL émis les SOUS MERDES, OK ?

From: Joka 
Date: Wed, 18 Mar 2020 16:46:18 +0000
Subject: LE CASINO JOKA. =?utf-8?b?T8OZ?= LES FORTUNES SE PROFILENT
Message-Id: <4WMA.BA1D.F33KVOH670.20200318164618859@bestoffer-today.com>

live@bestoffer-today.com which send to « https://bestoffer-today.com/4WMA-BA1D-F33KVOH670/uauto.aspx » to BURN / CLOSE / DELETTE / STOP IMMEDIATELY for SPAM, PHISHING and SCAM on STOLLEN List ! ! !

bestoffer-today.com => 1api.net

bestoffer-today.com => 104.16.209.86

104.16.209.86 => cloudflare.com AS USUAL...

1api.net => 84.200.110.124

84.200.110.124 => accelerated.de

live@bestoffer-today.com => 94.143.106.199

94.143.106.199 => dotmailer.com

dotmailer.com => 104.18.70.28

104.18.70.28 => cloudflare.com AS USUAL...

dotmailer.com send to dotdigital.com

dotdigital.com => 104.19.144.113

104.19.144.113 => cloudflare.com

https://www.mywot.com/scorecard/dotmailer.com

https://www.mywot.com/scorecard/dotdigital.com

https://www.mywot.com/scorecard/bestoffer-today.com

https://www.mywot.com/scorecard/1api.net AS USUAL...

https://en.asytech.cn/check-ip/104.16.209.86

https://en.asytech.cn/check-ip/84.200.110.124

https://en.asytech.cn/check-ip/94.143.106.199

https://en.asytech.cn/check-ip/104.18.70.28

https://en.asytech.cn/check-ip/104.19.144.113
2020-03-19 05:04:23
104.18.70.106 attack
siteaudit.crawler.semrush.com - - \[27/Oct/2019:04:48:48 +0100\] "GET /robots.txt HTTP/1.1" 200 4578 "-" "Mozilla/5.0 \(compatible\; Googlebot/2.1\; +http://www.google.com/bot.html\)"
siteaudit.crawler.semrush.com - - \[27/Oct/2019:04:48:49 +0100\] "GET /galerie/villa-bunterkund.html HTTP/1.1" 200 10713 "-" "Mozilla/5.0 \(compatible\; Googlebot/2.1\; +http://www.google.com/bot.html\)"
siteaudit.crawler.semrush.com - - \[27/Oct/2019:04:48:55 +0100\] "GET / HTTP/1.1" 200 9534 "-" "Mozilla/5.0 \(compatible\; Googlebot/2.1\; +http://www.google.com/bot.html\)"
...
2019-10-27 17:27:20
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.18.7.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50932
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.18.7.40.			IN	A

;; AUTHORITY SECTION:
.			376	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 19:23:26 CST 2022
;; MSG SIZE  rcvd: 104
Host info
Host 40.7.18.104.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 40.7.18.104.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
177.152.124.24 attack
Sep 23 06:05:49 r.ca sshd[12331]: Failed password for root from 177.152.124.24 port 42250 ssh2
2020-09-23 19:17:26
118.24.140.195 attack
Invalid user testing from 118.24.140.195 port 37752
2020-09-23 18:53:17
159.65.158.172 attackspam
$f2bV_matches
2020-09-23 18:51:43
150.109.151.206 attackbotsspam
TCP port : 13723
2020-09-23 19:33:14
118.89.245.202 attackspam
(sshd) Failed SSH login from 118.89.245.202 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 23 05:49:15 optimus sshd[23764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.245.202  user=root
Sep 23 05:49:17 optimus sshd[23764]: Failed password for root from 118.89.245.202 port 35300 ssh2
Sep 23 05:58:53 optimus sshd[26969]: Invalid user gary from 118.89.245.202
Sep 23 05:58:53 optimus sshd[26969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.245.202 
Sep 23 05:58:55 optimus sshd[26969]: Failed password for invalid user gary from 118.89.245.202 port 47128 ssh2
2020-09-23 19:29:10
200.196.136.18 attackbots
Unauthorized connection attempt from IP address 200.196.136.18 on Port 445(SMB)
2020-09-23 19:27:43
186.4.235.4 attackspambots
Sep 23 11:11:32 h2779839 sshd[29472]: Invalid user admin from 186.4.235.4 port 54650
Sep 23 11:11:32 h2779839 sshd[29472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.4.235.4
Sep 23 11:11:32 h2779839 sshd[29472]: Invalid user admin from 186.4.235.4 port 54650
Sep 23 11:11:34 h2779839 sshd[29472]: Failed password for invalid user admin from 186.4.235.4 port 54650 ssh2
Sep 23 11:13:23 h2779839 sshd[29501]: Invalid user mythtv from 186.4.235.4 port 54536
Sep 23 11:13:23 h2779839 sshd[29501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.4.235.4
Sep 23 11:13:23 h2779839 sshd[29501]: Invalid user mythtv from 186.4.235.4 port 54536
Sep 23 11:13:24 h2779839 sshd[29501]: Failed password for invalid user mythtv from 186.4.235.4 port 54536 ssh2
Sep 23 11:15:11 h2779839 sshd[29530]: Invalid user user2 from 186.4.235.4 port 54408
...
2020-09-23 18:47:58
163.172.113.108 attackbotsspam
SSH brute force attempt
2020-09-23 18:50:25
140.210.90.197 attackbotsspam
Invalid user appltest from 140.210.90.197 port 44862
2020-09-23 18:48:17
187.112.20.37 attackbots
1600794352 - 09/22/2020 19:05:52 Host: 187.112.20.37/187.112.20.37 Port: 445 TCP Blocked
2020-09-23 19:41:20
187.136.193.37 attackspam
20/9/22@13:00:49: FAIL: Alarm-Network address from=187.136.193.37
20/9/22@13:00:49: FAIL: Alarm-Network address from=187.136.193.37
...
2020-09-23 18:50:49
179.70.139.103 attackbots
Lines containing failures of 179.70.139.103
Sep 22 06:49:17 nopeasti sshd[12906]: Invalid user start from 179.70.139.103 port 58081
Sep 22 06:49:17 nopeasti sshd[12906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.70.139.103 
Sep 22 06:49:19 nopeasti sshd[12906]: Failed password for invalid user start from 179.70.139.103 port 58081 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=179.70.139.103
2020-09-23 19:07:12
203.77.43.79 attack
1600794042 - 09/22/2020 19:00:42 Host: 203.77.43.79/203.77.43.79 Port: 445 TCP Blocked
2020-09-23 19:04:11
14.240.248.215 attackbotsspam
Unauthorized connection attempt from IP address 14.240.248.215 on Port 445(SMB)
2020-09-23 19:03:54
185.39.10.89 attack
Port scan on 3 port(s): 19099 19742 19903
2020-09-23 19:12:55

Recently Reported IPs

104.18.7.248 104.18.7.236 104.18.7.34 104.18.7.44
104.18.7.244 104.18.7.36 104.18.7.38 104.18.7.48
104.18.7.9 104.18.13.36 104.18.7.73 104.18.72.35
104.18.7.72 104.18.73.35 104.18.70.52 104.18.72.78
104.18.7.47 104.18.73.78 104.18.75.12 104.18.76.12