104.40.19.137 - IPInfo

Basic Info

City: San Jose

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: Microsoft Corporation

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.40.197.65	attackbots	445/tcp 1433/tcp... [2020-08-17/10-05]7pkt,2pt.(tcp)	2020-10-07 01:22:06
104.40.197.65	attackspam	445/tcp 1433/tcp... [2020-08-17/10-05]7pkt,2pt.(tcp)	2020-10-06 17:16:30
104.40.197.196	attackbots	Apr 10 08:21:40 Tower sshd[3810]: Connection from 104.40.197.196 port 42132 on 192.168.10.220 port 22 rdomain "" Apr 10 08:21:41 Tower sshd[3810]: Invalid user linuxacademy from 104.40.197.196 port 42132 Apr 10 08:21:41 Tower sshd[3810]: error: Could not get shadow information for NOUSER Apr 10 08:21:41 Tower sshd[3810]: Failed password for invalid user linuxacademy from 104.40.197.196 port 42132 ssh2 Apr 10 08:21:41 Tower sshd[3810]: Received disconnect from 104.40.197.196 port 42132:11: Bye Bye [preauth] Apr 10 08:21:41 Tower sshd[3810]: Disconnected from invalid user linuxacademy 104.40.197.196 port 42132 [preauth]	2020-04-10 21:34:09
104.40.195.105	attackbots	Jan 15 21:29:16 meumeu sshd[25579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.195.105 Jan 15 21:29:18 meumeu sshd[25579]: Failed password for invalid user smbuser from 104.40.195.105 port 41492 ssh2 Jan 15 21:32:19 meumeu sshd[26025]: Failed password for root from 104.40.195.105 port 12309 ssh2 ...	2020-01-16 04:34:54
104.40.195.105	attackspam	Invalid user prueba from 104.40.195.105 port 34390	2020-01-15 18:07:50

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.40.19.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44178
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.40.19.137.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 05 01:34:17 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 137.19.40.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 137.19.40.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.202.78.165	attackbotsspam	Unauthorized connection attempt from IP address 91.202.78.165 on Port 445(SMB)	2019-09-06 07:43:23
157.230.156.81	attack	fire	2019-09-06 07:07:43
149.202.65.173	attackbots	Sep 5 13:31:55 sachi sshd\[6275\]: Invalid user 1234 from 149.202.65.173 Sep 5 13:31:55 sachi sshd\[6275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3014527.ip-149-202-65.eu Sep 5 13:31:57 sachi sshd\[6275\]: Failed password for invalid user 1234 from 149.202.65.173 port 54390 ssh2 Sep 5 13:36:12 sachi sshd\[6645\]: Invalid user tomas from 149.202.65.173 Sep 5 13:36:12 sachi sshd\[6645\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3014527.ip-149-202-65.eu	2019-09-06 07:44:11
81.177.98.52	attack	2019-09-05T23:16:39.545803abusebot-2.cloudsearch.cf sshd\[20988\]: Invalid user mysql from 81.177.98.52 port 57614	2019-09-06 07:22:38
18.213.117.193	attack	Sep 5 16:12:16 vayu sshd[690592]: Invalid user teamspeak from 18.213.117.193 Sep 5 16:12:16 vayu sshd[690592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-18-213-117-193.compute-1.amazonaws.com Sep 5 16:12:18 vayu sshd[690592]: Failed password for invalid user teamspeak from 18.213.117.193 port 34964 ssh2 Sep 5 16:12:18 vayu sshd[690592]: Received disconnect from 18.213.117.193: 11: Bye Bye [preauth] Sep 5 16:39:48 vayu sshd[700924]: Invalid user test2 from 18.213.117.193 Sep 5 16:39:48 vayu sshd[700924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-18-213-117-193.compute-1.amazonaws.com Sep 5 16:39:50 vayu sshd[700924]: Failed password for invalid user test2 from 18.213.117.193 port 32822 ssh2 Sep 5 16:39:50 vayu sshd[700924]: Received disconnect from 18.213.117.193: 11: Bye Bye [preauth] Sep 5 16:43:53 vayu sshd[702579]: Invalid user sammy from 18.213.117.193 Sep ........ -------------------------------	2019-09-06 07:48:02
52.221.227.130	attackbots	Sep 5 13:09:55 hpm sshd\[20563\]: Invalid user wwwadmin from 52.221.227.130 Sep 5 13:09:55 hpm sshd\[20563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-221-227-130.ap-southeast-1.compute.amazonaws.com Sep 5 13:09:57 hpm sshd\[20563\]: Failed password for invalid user wwwadmin from 52.221.227.130 port 46323 ssh2 Sep 5 13:14:48 hpm sshd\[20948\]: Invalid user redmine from 52.221.227.130 Sep 5 13:14:48 hpm sshd\[20948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-221-227-130.ap-southeast-1.compute.amazonaws.com	2019-09-06 07:26:34
190.109.68.187	attackbots	Unauthorized connection attempt from IP address 190.109.68.187 on Port 445(SMB)	2019-09-06 07:45:08
158.174.89.71	attackspam	fire	2019-09-06 07:05:27
81.22.45.148	attackspambots	09/05/2019-18:51:51.856689 81.22.45.148 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 85	2019-09-06 07:37:00
167.71.220.97	attackbots	Sep 6 02:05:54 lcl-usvr-02 sshd[11734]: Invalid user admin from 167.71.220.97 port 54203 Sep 6 02:05:55 lcl-usvr-02 sshd[11734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.220.97 Sep 6 02:05:54 lcl-usvr-02 sshd[11734]: Invalid user admin from 167.71.220.97 port 54203 Sep 6 02:05:57 lcl-usvr-02 sshd[11734]: Failed password for invalid user admin from 167.71.220.97 port 54203 ssh2 ...	2019-09-06 07:28:28
51.83.74.45	attackbots	2019-09-05T20:53:42.909661 sshd[1084]: Invalid user odoo from 51.83.74.45 port 39644 2019-09-05T20:53:42.922933 sshd[1084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.74.45 2019-09-05T20:53:42.909661 sshd[1084]: Invalid user odoo from 51.83.74.45 port 39644 2019-09-05T20:53:45.073937 sshd[1084]: Failed password for invalid user odoo from 51.83.74.45 port 39644 ssh2 2019-09-05T21:05:58.671691 sshd[1211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.74.45 user=root 2019-09-05T21:06:01.198452 sshd[1211]: Failed password for root from 51.83.74.45 port 40498 ssh2 ...	2019-09-06 07:46:53
148.70.116.223	attackspam	Sep 5 23:09:27 MainVPS sshd[29872]: Invalid user minecraft from 148.70.116.223 port 40968 Sep 5 23:09:27 MainVPS sshd[29872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.116.223 Sep 5 23:09:27 MainVPS sshd[29872]: Invalid user minecraft from 148.70.116.223 port 40968 Sep 5 23:09:29 MainVPS sshd[29872]: Failed password for invalid user minecraft from 148.70.116.223 port 40968 ssh2 Sep 5 23:14:34 MainVPS sshd[30216]: Invalid user ftpuser from 148.70.116.223 port 34397 ...	2019-09-06 07:26:03
52.81.98.88	attack	Sep 5 21:06:20 fr01 sshd[26607]: Invalid user ts3server from 52.81.98.88 ...	2019-09-06 07:14:15
125.227.62.145	attackbotsspam	Sep 5 12:20:01 php1 sshd\[29258\]: Invalid user minecraft from 125.227.62.145 Sep 5 12:20:01 php1 sshd\[29258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125-227-62-145.hinet-ip.hinet.net Sep 5 12:20:03 php1 sshd\[29258\]: Failed password for invalid user minecraft from 125.227.62.145 port 37496 ssh2 Sep 5 12:25:05 php1 sshd\[29909\]: Invalid user robot from 125.227.62.145 Sep 5 12:25:05 php1 sshd\[29909\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125-227-62-145.hinet-ip.hinet.net	2019-09-06 07:13:58
104.236.142.89	attackbots	Sep 5 23:03:33 web8 sshd\[15672\]: Invalid user vbox from 104.236.142.89 Sep 5 23:03:33 web8 sshd\[15672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.142.89 Sep 5 23:03:34 web8 sshd\[15672\]: Failed password for invalid user vbox from 104.236.142.89 port 57242 ssh2 Sep 5 23:07:58 web8 sshd\[17898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.142.89 user=mysql Sep 5 23:07:59 web8 sshd\[17898\]: Failed password for mysql from 104.236.142.89 port 44370 ssh2	2019-09-06 07:09:05

Recently Reported IPs

213.230.94.147	221.90.225.135	50.135.15.208	108.236.197.240
213.230.114.5	165.28.93.43	171.70.162.234	192.184.142.235
96.175.85.224	162.239.215.127	53.186.109.105	12.214.153.176
52.233.210.87	60.195.53.202	179.36.213.112	85.212.153.157
171.245.71.132	14.250.180.51	80.62.58.180	49.40.212.237