The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.
Loki botnet controller located at 18.104.22.168 on port 80 (using HTTP POST):
$ dig +short opticallogz.xyz
Referencing malware binaries (MD5 hash):
077755c67dcc6a0dbeb780ccedf28d18 — AV detection: 23 / 68 (33.82)
31a1de9276d21cd5d2ac689f1b210d8c — AV detection: 25 / 66 (37.88)
Other malicious domain names hosted on this IP address: