104.18.71.149 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: CloudFlare Inc.

Hostname: unknown

Organization: unknown

Usage Type: Content Delivery Network

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	"MarketingPromoSystems, 8 The Green Suite #5828 Dover DE" 185.230.46.95 - phishing redirect www1.innovationaltech.xyz	2020-05-24 22:11:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.18.71.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23385
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.18.71.149.			IN	A

;; AUTHORITY SECTION:
.			543	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052400 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 24 22:11:34 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 149.71.18.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.71.18.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
140.143.238.108	attack	Scanned 3 times in the last 24 hours on port 22	2020-04-02 09:44:31
200.59.51.9	attackspambots	Brute force attempt	2020-04-02 12:16:10
103.120.220.34	attackbotsspam	Apr 2 05:53:41 OPSO sshd\[28220\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.220.34 user=root Apr 2 05:53:43 OPSO sshd\[28220\]: Failed password for root from 103.120.220.34 port 43148 ssh2 Apr 2 05:56:38 OPSO sshd\[28810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.220.34 user=root Apr 2 05:56:39 OPSO sshd\[28810\]: Failed password for root from 103.120.220.34 port 34772 ssh2 Apr 2 05:59:32 OPSO sshd\[29178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.220.34 user=root	2020-04-02 12:03:43
213.139.99.149	attackbots	Repeated RDP login failures. Last user: Administrator	2020-04-02 12:29:41
159.65.91.105	attackbots	Apr 2 06:10:37 srv-ubuntu-dev3 sshd[102749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.91.105 user=root Apr 2 06:10:39 srv-ubuntu-dev3 sshd[102749]: Failed password for root from 159.65.91.105 port 41062 ssh2 Apr 2 06:14:27 srv-ubuntu-dev3 sshd[103417]: Invalid user test from 159.65.91.105 Apr 2 06:14:27 srv-ubuntu-dev3 sshd[103417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.91.105 Apr 2 06:14:27 srv-ubuntu-dev3 sshd[103417]: Invalid user test from 159.65.91.105 Apr 2 06:14:29 srv-ubuntu-dev3 sshd[103417]: Failed password for invalid user test from 159.65.91.105 port 52016 ssh2 Apr 2 06:18:19 srv-ubuntu-dev3 sshd[104174]: Invalid user zxchen from 159.65.91.105 Apr 2 06:18:19 srv-ubuntu-dev3 sshd[104174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.91.105 Apr 2 06:18:19 srv-ubuntu-dev3 sshd[104174]: Invalid user zxchen fro ...	2020-04-02 12:20:16
192.144.184.199	attack	Invalid user tgl from 192.144.184.199 port 11754	2020-04-02 09:39:47
106.13.20.73	attackspambots	Apr 2 05:44:46 roki sshd[22253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.20.73 user=root Apr 2 05:44:48 roki sshd[22253]: Failed password for root from 106.13.20.73 port 48120 ssh2 Apr 2 05:59:18 roki sshd[23427]: Invalid user user10 from 106.13.20.73 Apr 2 05:59:18 roki sshd[23427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.20.73 Apr 2 05:59:21 roki sshd[23427]: Failed password for invalid user user10 from 106.13.20.73 port 49948 ssh2 ...	2020-04-02 12:12:55
203.150.36.109	attackspambots	Repeated RDP login failures. Last user: Test	2020-04-02 12:30:25
197.248.223.142	attack	Repeated RDP login failures. Last user: User	2020-04-02 12:23:32
106.13.77.151	attack	$f2bV_matches	2020-04-02 12:03:24
52.130.76.97	attackspambots	$f2bV_matches	2020-04-02 12:22:56
105.224.255.91	attack	2020-04-02T14:59:03.986256luisaranguren sshd[1841401]: Invalid user math from 105.224.255.91 port 55712 2020-04-02T14:59:05.477674luisaranguren sshd[1841401]: Failed password for invalid user math from 105.224.255.91 port 55712 ssh2 ...	2020-04-02 12:27:53
180.182.47.132	attack	(sshd) Failed SSH login from 180.182.47.132 (KR/South Korea/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 2 05:59:07 ubnt-55d23 sshd[16386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.182.47.132 user=root Apr 2 05:59:09 ubnt-55d23 sshd[16386]: Failed password for root from 180.182.47.132 port 47006 ssh2	2020-04-02 12:18:24
182.75.139.26	attack	$f2bV_matches	2020-04-02 12:21:11
176.31.105.112	attackspambots	LGS,DEF GET /wp-login.php	2020-04-02 12:00:44

Recently Reported IPs

10.12.90.70	175.245.74.71	40.90.38.232	50.68.95.254
245.7.203.27	64.136.247.100	127.202.220.107	241.99.83.141
155.54.126.50	85.218.20.224	221.58.4.252	203.16.227.69
131.198.105.98	191.95.108.66	196.120.51.92	20.247.220.38
186.251.224.200	95.85.154.77	103.131.71.91	34.84.179.51