Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackspam
Invalid user remi from 104.40.18.45 port 17152
2019-11-02 22:52:38
attack
2019-10-30T10:33:12.8853431495-001 sshd\[52850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.18.45  user=root
2019-10-30T10:33:14.4806541495-001 sshd\[52850\]: Failed password for root from 104.40.18.45 port 17152 ssh2
2019-10-30T10:40:10.9444231495-001 sshd\[53341\]: Invalid user test from 104.40.18.45 port 17152
2019-10-30T10:40:10.9479291495-001 sshd\[53341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.18.45
2019-10-30T10:40:13.2603491495-001 sshd\[53341\]: Failed password for invalid user test from 104.40.18.45 port 17152 ssh2
2019-10-30T10:44:15.5613081495-001 sshd\[53473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.18.45  user=root
...
2019-10-30 23:59:03
attack
Oct 10 03:41:20   TCP Attack: SRC=104.40.18.45 DST=[Masked] LEN=40 TOS=0x00 PREC=0x00 TTL=40  PROTO=TCP SPT=16832 DPT=23 WINDOW=34909 RES=0x00 SYN URGP=0
2019-10-10 19:53:26
attack
Invalid user mapred from 104.40.18.45 port 16704
2019-09-29 17:17:20
attack
Sep 16 22:22:10 OPSO sshd\[2001\]: Invalid user tony from 104.40.18.45 port 16896
Sep 16 22:22:10 OPSO sshd\[2001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.18.45
Sep 16 22:22:13 OPSO sshd\[2001\]: Failed password for invalid user tony from 104.40.18.45 port 16896 ssh2
Sep 16 22:26:47 OPSO sshd\[2923\]: Invalid user administrador from 104.40.18.45 port 16896
Sep 16 22:26:47 OPSO sshd\[2923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.18.45
2019-09-17 08:37:05
attack
Sep 14 12:20:35 plex sshd[29964]: Invalid user access from 104.40.18.45 port 16896
2019-09-14 23:51:14
attack
SSHAttack
2019-08-23 19:20:29
Comments on same subnet:
IP Type Details Datetime
104.40.185.198 attackbotsspam
suspicious action Sat, 22 Feb 2020 13:44:59 -0300
2020-02-23 06:09:02
104.40.183.140 attackspambots
IDS
2020-02-15 10:43:29
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.40.18.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33646
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.40.18.45.			IN	A

;; AUTHORITY SECTION:
.			2520	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082300 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 23 19:20:22 CST 2019
;; MSG SIZE  rcvd: 116
Host info
Host 45.18.40.104.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 45.18.40.104.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
88.214.26.8 attackspambots
Sep  3 08:44:42 rpi sshd[27119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.214.26.8 
Sep  3 08:44:44 rpi sshd[27119]: Failed password for invalid user admin from 88.214.26.8 port 57046 ssh2
2019-09-03 15:01:21
154.8.200.196 attack
Automatic report generated by Wazuh
2019-09-03 14:39:03
170.238.46.6 attackspam
Sep  2 22:47:56 XXX sshd[27633]: Invalid user demo from 170.238.46.6 port 40512
2019-09-03 14:21:34
144.76.186.196 attackbots
RDP Bruteforce
2019-09-03 15:03:26
187.15.3.164 attackbotsspam
Unauthorized connection attempt from IP address 187.15.3.164 on Port 445(SMB)
2019-09-03 14:35:30
180.97.220.246 attack
Unauthorized access on Port 22 [ssh]
2019-09-03 15:05:23
61.166.173.158 attack
Automatic report - Port Scan Attack
2019-09-03 14:34:38
117.239.48.242 attackbots
Sep  3 04:24:58 debian sshd\[2995\]: Invalid user security from 117.239.48.242 port 46714
Sep  3 04:24:58 debian sshd\[2995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.239.48.242
...
2019-09-03 14:26:36
171.251.127.125 attackspam
Unauthorized connection attempt from IP address 171.251.127.125 on Port 445(SMB)
2019-09-03 14:39:35
181.118.196.70 attackspambots
Sep  3 01:00:55 ns3367391 sshd\[16296\]: Invalid user admin from 181.118.196.70 port 35617
Sep  3 01:00:55 ns3367391 sshd\[16296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.118.196.70
...
2019-09-03 14:18:23
191.53.52.136 attackbotsspam
Unauthorized connection attempt from IP address 191.53.52.136 on Port 25(SMTP)
2019-09-03 14:52:40
51.75.122.16 attackbots
Sep  3 03:45:02 tuxlinux sshd[56933]: Invalid user victoria from 51.75.122.16 port 49986
Sep  3 03:45:02 tuxlinux sshd[56933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.122.16 
Sep  3 03:45:02 tuxlinux sshd[56933]: Invalid user victoria from 51.75.122.16 port 49986
Sep  3 03:45:02 tuxlinux sshd[56933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.122.16 
Sep  3 03:45:02 tuxlinux sshd[56933]: Invalid user victoria from 51.75.122.16 port 49986
Sep  3 03:45:02 tuxlinux sshd[56933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.122.16 
Sep  3 03:45:03 tuxlinux sshd[56933]: Failed password for invalid user victoria from 51.75.122.16 port 49986 ssh2
...
2019-09-03 14:59:33
45.119.212.105 attackbots
Sep  3 02:39:31 plusreed sshd[3210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.119.212.105  user=root
Sep  3 02:39:33 plusreed sshd[3210]: Failed password for root from 45.119.212.105 port 54438 ssh2
Sep  3 02:46:39 plusreed sshd[5034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.119.212.105  user=root
Sep  3 02:46:42 plusreed sshd[5034]: Failed password for root from 45.119.212.105 port 35094 ssh2
...
2019-09-03 14:49:20
220.180.239.104 attack
Sep  3 03:41:04 www_kotimaassa_fi sshd[12484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.180.239.104
Sep  3 03:41:06 www_kotimaassa_fi sshd[12484]: Failed password for invalid user fop2 from 220.180.239.104 port 59696 ssh2
...
2019-09-03 14:31:29
80.82.77.33 attack
Automatic report - Port Scan Attack
2019-09-03 14:27:07

Recently Reported IPs

132.205.245.239 79.221.116.180 74.71.82.163 66.96.229.234
46.252.143.90 187.62.98.192 179.54.111.143 27.76.160.219
213.86.248.146 24.203.245.226 100.189.236.103 245.112.221.171
99.89.182.70 187.12.110.206 113.175.216.27 98.2.14.9
85.234.207.31 143.62.78.97 58.79.207.119 132.1.75.143