104.40.18.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Invalid user remi from 104.40.18.45 port 17152	2019-11-02 22:52:38
attack	2019-10-30T10:33:12.8853431495-001 sshd\[52850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.18.45 user=root 2019-10-30T10:33:14.4806541495-001 sshd\[52850\]: Failed password for root from 104.40.18.45 port 17152 ssh2 2019-10-30T10:40:10.9444231495-001 sshd\[53341\]: Invalid user test from 104.40.18.45 port 17152 2019-10-30T10:40:10.9479291495-001 sshd\[53341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.18.45 2019-10-30T10:40:13.2603491495-001 sshd\[53341\]: Failed password for invalid user test from 104.40.18.45 port 17152 ssh2 2019-10-30T10:44:15.5613081495-001 sshd\[53473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.18.45 user=root ...	2019-10-30 23:59:03
attack	Oct 10 03:41:20 TCP Attack: SRC=104.40.18.45 DST=[Masked] LEN=40 TOS=0x00 PREC=0x00 TTL=40 PROTO=TCP SPT=16832 DPT=23 WINDOW=34909 RES=0x00 SYN URGP=0	2019-10-10 19:53:26
attack	Invalid user mapred from 104.40.18.45 port 16704	2019-09-29 17:17:20
attack	Sep 16 22:22:10 OPSO sshd\[2001\]: Invalid user tony from 104.40.18.45 port 16896 Sep 16 22:22:10 OPSO sshd\[2001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.18.45 Sep 16 22:22:13 OPSO sshd\[2001\]: Failed password for invalid user tony from 104.40.18.45 port 16896 ssh2 Sep 16 22:26:47 OPSO sshd\[2923\]: Invalid user administrador from 104.40.18.45 port 16896 Sep 16 22:26:47 OPSO sshd\[2923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.18.45	2019-09-17 08:37:05
attack	Sep 14 12:20:35 plex sshd[29964]: Invalid user access from 104.40.18.45 port 16896	2019-09-14 23:51:14
attack	SSHAttack	2019-08-23 19:20:29

Comments on same subnet:

IP	Type	Details	Datetime
104.40.185.198	attackbotsspam	suspicious action Sat, 22 Feb 2020 13:44:59 -0300	2020-02-23 06:09:02
104.40.183.140	attackspambots	IDS	2020-02-15 10:43:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.40.18.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33646
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.40.18.45.			IN	A

;; AUTHORITY SECTION:
.			2520	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082300 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 23 19:20:22 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 45.18.40.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 45.18.40.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
148.70.91.15	attackspambots	Unauthorized connection attempt detected from IP address 148.70.91.15 to port 2220 [J]	2020-01-16 22:14:37
1.1.158.132	attack	Unauthorized IMAP connection attempt	2020-01-16 22:02:21
95.213.244.42	attack	[portscan] Port scan	2020-01-16 21:54:57
218.92.0.165	attackspambots	2020-01-16T15:12:00.742118scmdmz1 sshd[2942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.165 user=root 2020-01-16T15:12:02.831098scmdmz1 sshd[2942]: Failed password for root from 218.92.0.165 port 9423 ssh2 2020-01-16T15:12:06.497389scmdmz1 sshd[2942]: Failed password for root from 218.92.0.165 port 9423 ssh2 2020-01-16T15:12:00.742118scmdmz1 sshd[2942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.165 user=root 2020-01-16T15:12:02.831098scmdmz1 sshd[2942]: Failed password for root from 218.92.0.165 port 9423 ssh2 2020-01-16T15:12:06.497389scmdmz1 sshd[2942]: Failed password for root from 218.92.0.165 port 9423 ssh2 2020-01-16T15:12:00.742118scmdmz1 sshd[2942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.165 user=root 2020-01-16T15:12:02.831098scmdmz1 sshd[2942]: Failed password for root from 218.92.0.165 port 9423 ssh2 2020-01-16T15:12:06.497389scmd	2020-01-16 22:16:52
169.239.48.108	attackspam	Unauthorized connection attempt detected from IP address 169.239.48.108 to port 2220 [J]	2020-01-16 21:58:55
78.29.32.173	attack	Unauthorized connection attempt detected from IP address 78.29.32.173 to port 2220 [J]	2020-01-16 21:46:13
101.95.8.238	attackspambots	01/16/2020-08:04:07.425971 101.95.8.238 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-01-16 22:12:14
167.99.155.36	attackbots	Unauthorized connection attempt detected from IP address 167.99.155.36 to port 2220 [J]	2020-01-16 22:24:35
176.9.79.215	attackbots	Jan 16 14:23:59 relay postfix/smtpd\[16765\]: warning: static.215.79.9.176.clients.your-server.de\[176.9.79.215\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 16 14:23:59 relay postfix/smtpd\[16193\]: warning: static.215.79.9.176.clients.your-server.de\[176.9.79.215\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 16 14:31:22 relay postfix/smtpd\[16291\]: warning: static.215.79.9.176.clients.your-server.de\[176.9.79.215\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 16 14:32:48 relay postfix/smtpd\[16193\]: warning: static.215.79.9.176.clients.your-server.de\[176.9.79.215\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 16 14:32:55 relay postfix/smtpd\[16765\]: warning: static.215.79.9.176.clients.your-server.de\[176.9.79.215\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-16 21:49:33
139.59.180.53	attackbots	Jan 16 14:30:28 legacy sshd[15845]: Failed password for root from 139.59.180.53 port 59640 ssh2 Jan 16 14:31:22 legacy sshd[15862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.180.53 Jan 16 14:31:24 legacy sshd[15862]: Failed password for invalid user backuppc from 139.59.180.53 port 41410 ssh2 ...	2020-01-16 22:04:17
42.115.175.153	attackbotsspam	Caught in portsentry honeypot	2020-01-16 21:52:43
85.209.0.77	attackspambots	Jan1614:15:48server6sshd[18748]:refusedconnectfrom85.209.0.77\(85.209.0.77\)Jan1614:15:48server6sshd[18749]:refusedconnectfrom85.209.0.77\(85.209.0.77\)Jan1614:15:48server6sshd[18750]:refusedconnectfrom85.209.0.77\(85.209.0.77\)Jan1614:15:48server6sshd[18751]:refusedconnectfrom85.209.0.77\(85.209.0.77\)Jan1614:15:48server6sshd[18752]:refusedconnectfrom85.209.0.77\(85.209.0.77\)	2020-01-16 22:18:23
62.60.206.138	attackspam	Jan 16 15:09:39 dedicated sshd[21743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.60.206.138 user=root Jan 16 15:09:41 dedicated sshd[21743]: Failed password for root from 62.60.206.138 port 38846 ssh2	2020-01-16 22:11:32
222.186.175.181	attackspambots	SSH Bruteforce attempt	2020-01-16 21:53:11
69.229.6.8	attack	Jan 16 14:41:52 mout sshd[13170]: Invalid user admin from 69.229.6.8 port 47868	2020-01-16 22:10:46

Recently Reported IPs

132.205.245.239	79.221.116.180	74.71.82.163	66.96.229.234
46.252.143.90	187.62.98.192	179.54.111.143	27.76.160.219
213.86.248.146	24.203.245.226	100.189.236.103	245.112.221.171
99.89.182.70	187.12.110.206	113.175.216.27	98.2.14.9
85.234.207.31	143.62.78.97	58.79.207.119	132.1.75.143