104.131.131.140

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 9 00:27:54 electroncash sshd[3996]: Invalid user system from 104.131.131.140 port 51498 Oct 9 00:27:54 electroncash sshd[3996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 Oct 9 00:27:54 electroncash sshd[3996]: Invalid user system from 104.131.131.140 port 51498 Oct 9 00:27:56 electroncash sshd[3996]: Failed password for invalid user system from 104.131.131.140 port 51498 ssh2 Oct 9 00:32:04 electroncash sshd[5533]: Invalid user ftpguest from 104.131.131.140 port 54930 ...	2020-10-09 07:16:11
attackspambots	(sshd) Failed SSH login from 104.131.131.140 (US/United States/-): 5 in the last 3600 secs	2020-10-08 23:44:00
attack	Bruteforce detected by fail2ban	2020-10-08 15:39:58
attack	Invalid user dreams from 104.131.131.140 port 34722	2020-09-14 21:03:14
attack	Sep 14 06:31:29 web-main sshd[2343823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 Sep 14 06:31:29 web-main sshd[2343823]: Invalid user hy from 104.131.131.140 port 52753 Sep 14 06:31:31 web-main sshd[2343823]: Failed password for invalid user hy from 104.131.131.140 port 52753 ssh2	2020-09-14 12:55:37
attackspam	Sep 13 21:02:17 ns308116 sshd[25452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 user=root Sep 13 21:02:19 ns308116 sshd[25452]: Failed password for root from 104.131.131.140 port 40471 ssh2 Sep 13 21:05:54 ns308116 sshd[30485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 user=root Sep 13 21:05:56 ns308116 sshd[30485]: Failed password for root from 104.131.131.140 port 35061 ssh2 Sep 13 21:09:19 ns308116 sshd[2631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 user=root ...	2020-09-14 04:57:28
attack	Aug 28 23:44:19 pkdns2 sshd\[56504\]: Invalid user oracle from 104.131.131.140Aug 28 23:44:21 pkdns2 sshd\[56504\]: Failed password for invalid user oracle from 104.131.131.140 port 49585 ssh2Aug 28 23:47:32 pkdns2 sshd\[56697\]: Invalid user openerp from 104.131.131.140Aug 28 23:47:35 pkdns2 sshd\[56697\]: Failed password for invalid user openerp from 104.131.131.140 port 45128 ssh2Aug 28 23:50:58 pkdns2 sshd\[56889\]: Invalid user zzh from 104.131.131.140Aug 28 23:51:00 pkdns2 sshd\[56889\]: Failed password for invalid user zzh from 104.131.131.140 port 40672 ssh2 ...	2020-08-29 05:16:32
attack	Aug 24 10:02:48 ns381471 sshd[25213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 Aug 24 10:02:50 ns381471 sshd[25213]: Failed password for invalid user cosmos from 104.131.131.140 port 59203 ssh2	2020-08-24 16:59:01
attack	Aug 8 12:17:38 *** sshd[15225]: User root from 104.131.131.140 not allowed because not listed in AllowUsers	2020-08-08 20:47:23
attackbotsspam	detected by Fail2Ban	2020-08-05 04:58:14
attackbots	Aug 4 12:28:11 vpn01 sshd[18540]: Failed password for root from 104.131.131.140 port 51662 ssh2 ...	2020-08-04 18:35:41
attack	Aug 3 14:59:09 OPSO sshd\[29452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 user=root Aug 3 14:59:11 OPSO sshd\[29452\]: Failed password for root from 104.131.131.140 port 52596 ssh2 Aug 3 15:03:47 OPSO sshd\[30325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 user=root Aug 3 15:03:48 OPSO sshd\[30325\]: Failed password for root from 104.131.131.140 port 59539 ssh2 Aug 3 15:08:19 OPSO sshd\[31015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 user=root	2020-08-04 01:17:29
attackspambots	2020-07-27T17:01:21.208332mx.sveta.net sshd[581989]: Invalid user minecraft from 104.131.131.140 port 38680 2020-07-27T17:01:23.116165mx.sveta.net sshd[581989]: Failed password for invalid user minecraft from 104.131.131.140 port 38680 ssh2 2020-07-27T17:06:54.511390mx.sveta.net sshd[582092]: Invalid user john from 104.131.131.140 port 47788 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.131.131.140	2020-08-03 07:47:31
attackbots	sshd: Failed password for invalid user .... from 104.131.131.140 port 36468 ssh2 (2 attempts)	2020-07-29 18:28:35

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.131.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11754
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.131.131.140.		IN	A

;; AUTHORITY SECTION:
.			219	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072900 1800 900 604800 86400

;; Query time: 547 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 29 18:28:32 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 140.131.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.131.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.79.198.98	attackbotsspam	Unauthorized connection attempt detected from IP address 120.79.198.98 to port 22 [T]	2020-01-15 23:54:36
188.43.12.65	attack	Unauthorized connection attempt detected from IP address 188.43.12.65 to port 445 [T]	2020-01-15 23:46:51
106.245.226.26	attackbotsspam	Unauthorized connection attempt detected from IP address 106.245.226.26 to port 81 [T]	2020-01-15 23:29:07
115.231.95.226	attack	Unauthorized connection attempt detected from IP address 115.231.95.226 to port 3389 [T]	2020-01-15 23:59:35
118.128.244.4	attackspam	unauthorized connection attempt	2020-01-15 23:23:33
123.56.146.238	attackbotsspam	Unauthorized connection attempt detected from IP address 123.56.146.238 to port 23 [J]	2020-01-15 23:18:23
49.167.185.78	attack	Unauthorized connection attempt detected from IP address 49.167.185.78 to port 4567 [T]	2020-01-15 23:34:59
1.54.88.207	attackbots	Unauthorized connection attempt detected from IP address 1.54.88.207 to port 23 [J]	2020-01-15 23:41:10
119.116.28.7	attackbotsspam	Unauthorized connection attempt detected from IP address 119.116.28.7 to port 2323 [J]	2020-01-15 23:56:44
118.70.36.113	attack	Unauthorized connection attempt detected from IP address 118.70.36.113 to port 23 [J]	2020-01-15 23:57:44
61.182.233.134	attack	Unauthorized connection attempt detected from IP address 61.182.233.134 to port 23 [J]	2020-01-15 23:31:05
61.144.53.34	attackspambots	Unauthorized connection attempt detected from IP address 61.144.53.34 to port 1433 [T]	2020-01-15 23:31:42
114.198.172.29	attackbots	Unauthorized connection attempt detected from IP address 114.198.172.29 to port 4567 [J]	2020-01-15 23:25:06
69.162.126.238	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-15 23:30:31
185.100.87.247	attack	Unauthorized connection attempt detected from IP address 185.100.87.247 to port 1725 [T]	2020-01-15 23:47:18

Recently Reported IPs

121.145.33.80	149.28.107.253	45.185.164.132	220.134.109.12
222.117.85.3	196.20.110.189	46.209.230.140	155.225.55.244
197.92.25.163	31.7.82.66	174.141.166.237	220.133.90.70
154.0.173.16	89.198.63.5	31.28.8.163	180.242.154.163
119.45.11.243	5.235.127.21	180.183.61.182	122.117.152.222