Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attack
Oct  9 00:27:54 electroncash sshd[3996]: Invalid user system from 104.131.131.140 port 51498
Oct  9 00:27:54 electroncash sshd[3996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 
Oct  9 00:27:54 electroncash sshd[3996]: Invalid user system from 104.131.131.140 port 51498
Oct  9 00:27:56 electroncash sshd[3996]: Failed password for invalid user system from 104.131.131.140 port 51498 ssh2
Oct  9 00:32:04 electroncash sshd[5533]: Invalid user ftpguest from 104.131.131.140 port 54930
...
2020-10-09 07:16:11
attackspambots
(sshd) Failed SSH login from 104.131.131.140 (US/United States/-): 5 in the last 3600 secs
2020-10-08 23:44:00
attack
Bruteforce detected by fail2ban
2020-10-08 15:39:58
attack
Invalid user dreams from 104.131.131.140 port 34722
2020-09-14 21:03:14
attack
Sep 14 06:31:29 web-main sshd[2343823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 
Sep 14 06:31:29 web-main sshd[2343823]: Invalid user hy from 104.131.131.140 port 52753
Sep 14 06:31:31 web-main sshd[2343823]: Failed password for invalid user hy from 104.131.131.140 port 52753 ssh2
2020-09-14 12:55:37
attackspam
Sep 13 21:02:17 ns308116 sshd[25452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140  user=root
Sep 13 21:02:19 ns308116 sshd[25452]: Failed password for root from 104.131.131.140 port 40471 ssh2
Sep 13 21:05:54 ns308116 sshd[30485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140  user=root
Sep 13 21:05:56 ns308116 sshd[30485]: Failed password for root from 104.131.131.140 port 35061 ssh2
Sep 13 21:09:19 ns308116 sshd[2631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140  user=root
...
2020-09-14 04:57:28
attack
Aug 28 23:44:19 pkdns2 sshd\[56504\]: Invalid user oracle from 104.131.131.140Aug 28 23:44:21 pkdns2 sshd\[56504\]: Failed password for invalid user oracle from 104.131.131.140 port 49585 ssh2Aug 28 23:47:32 pkdns2 sshd\[56697\]: Invalid user openerp from 104.131.131.140Aug 28 23:47:35 pkdns2 sshd\[56697\]: Failed password for invalid user openerp from 104.131.131.140 port 45128 ssh2Aug 28 23:50:58 pkdns2 sshd\[56889\]: Invalid user zzh from 104.131.131.140Aug 28 23:51:00 pkdns2 sshd\[56889\]: Failed password for invalid user zzh from 104.131.131.140 port 40672 ssh2
...
2020-08-29 05:16:32
attack
Aug 24 10:02:48 ns381471 sshd[25213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140
Aug 24 10:02:50 ns381471 sshd[25213]: Failed password for invalid user cosmos from 104.131.131.140 port 59203 ssh2
2020-08-24 16:59:01
attack
Aug  8 12:17:38 *** sshd[15225]: User root from 104.131.131.140 not allowed because not listed in AllowUsers
2020-08-08 20:47:23
attackbotsspam
detected by Fail2Ban
2020-08-05 04:58:14
attackbots
Aug  4 12:28:11 vpn01 sshd[18540]: Failed password for root from 104.131.131.140 port 51662 ssh2
...
2020-08-04 18:35:41
attack
Aug  3 14:59:09 OPSO sshd\[29452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140  user=root
Aug  3 14:59:11 OPSO sshd\[29452\]: Failed password for root from 104.131.131.140 port 52596 ssh2
Aug  3 15:03:47 OPSO sshd\[30325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140  user=root
Aug  3 15:03:48 OPSO sshd\[30325\]: Failed password for root from 104.131.131.140 port 59539 ssh2
Aug  3 15:08:19 OPSO sshd\[31015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140  user=root
2020-08-04 01:17:29
attackspambots
2020-07-27T17:01:21.208332mx.sveta.net sshd[581989]: Invalid user minecraft from 104.131.131.140 port 38680
2020-07-27T17:01:23.116165mx.sveta.net sshd[581989]: Failed password for invalid user minecraft from 104.131.131.140 port 38680 ssh2
2020-07-27T17:06:54.511390mx.sveta.net sshd[582092]: Invalid user john from 104.131.131.140 port 47788


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=104.131.131.140
2020-08-03 07:47:31
attackbots
sshd: Failed password for invalid user .... from 104.131.131.140 port 36468 ssh2 (2 attempts)
2020-07-29 18:28:35
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.131.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11754
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.131.131.140.		IN	A

;; AUTHORITY SECTION:
.			219	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072900 1800 900 604800 86400

;; Query time: 547 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 29 18:28:32 CST 2020
;; MSG SIZE  rcvd: 119
Host info
Host 140.131.131.104.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.131.131.104.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
120.79.198.98 attackbotsspam
Unauthorized connection attempt detected from IP address 120.79.198.98 to port 22 [T]
2020-01-15 23:54:36
188.43.12.65 attack
Unauthorized connection attempt detected from IP address 188.43.12.65 to port 445 [T]
2020-01-15 23:46:51
106.245.226.26 attackbotsspam
Unauthorized connection attempt detected from IP address 106.245.226.26 to port 81 [T]
2020-01-15 23:29:07
115.231.95.226 attack
Unauthorized connection attempt detected from IP address 115.231.95.226 to port 3389 [T]
2020-01-15 23:59:35
118.128.244.4 attackspam
unauthorized connection attempt
2020-01-15 23:23:33
123.56.146.238 attackbotsspam
Unauthorized connection attempt detected from IP address 123.56.146.238 to port 23 [J]
2020-01-15 23:18:23
49.167.185.78 attack
Unauthorized connection attempt detected from IP address 49.167.185.78 to port 4567 [T]
2020-01-15 23:34:59
1.54.88.207 attackbots
Unauthorized connection attempt detected from IP address 1.54.88.207 to port 23 [J]
2020-01-15 23:41:10
119.116.28.7 attackbotsspam
Unauthorized connection attempt detected from IP address 119.116.28.7 to port 2323 [J]
2020-01-15 23:56:44
118.70.36.113 attack
Unauthorized connection attempt detected from IP address 118.70.36.113 to port 23 [J]
2020-01-15 23:57:44
61.182.233.134 attack
Unauthorized connection attempt detected from IP address 61.182.233.134 to port 23 [J]
2020-01-15 23:31:05
61.144.53.34 attackspambots
Unauthorized connection attempt detected from IP address 61.144.53.34 to port 1433 [T]
2020-01-15 23:31:42
114.198.172.29 attackbots
Unauthorized connection attempt detected from IP address 114.198.172.29 to port 4567 [J]
2020-01-15 23:25:06
69.162.126.238 attack
MultiHost/MultiPort Probe, Scan, Hack -
2020-01-15 23:30:31
185.100.87.247 attack
Unauthorized connection attempt detected from IP address 185.100.87.247 to port 1725 [T]
2020-01-15 23:47:18

Recently Reported IPs

121.145.33.80 149.28.107.253 45.185.164.132 220.134.109.12
222.117.85.3 196.20.110.189 46.209.230.140 155.225.55.244
197.92.25.163 31.7.82.66 174.141.166.237 220.133.90.70
154.0.173.16 89.198.63.5 31.28.8.163 180.242.154.163
119.45.11.243 5.235.127.21 180.183.61.182 122.117.152.222