101.51.104.139

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
101.51.104.215	attackspam	Unauthorized IMAP connection attempt	2020-08-08 13:45:35
101.51.104.13	attack	Lines containing failures of 101.51.104.13 auth.log:Feb 6 14:27:14 omfg sshd[31415]: Connection from 101.51.104.13 port 50811 on 78.46.60.41 port 22 auth.log:Feb 6 14:27:16 omfg sshd[31416]: Connection from 101.51.104.13 port 50838 on 78.46.60.42 port 22 auth.log:Feb 6 14:27:16 omfg sshd[31417]: Connection from 101.51.104.13 port 50531 on 78.46.60.16 port 22 auth.log:Feb 6 14:27:16 omfg sshd[31418]: Connection from 101.51.104.13 port 50880 on 78.46.60.53 port 22 auth.log:Feb 6 14:27:16 omfg sshd[31419]: Connection from 101.51.104.13 port 51638 on 78.46.60.42 port 22 auth.log:Feb 6 14:27:16 omfg sshd[31420]: Connection from 101.51.104.13 port 51637 on 78.46.60.41 port 22 auth.log:Feb 6 14:27:17 omfg sshd[31423]: Connection from 101.51.104.13 port 51645 on 78.46.60.16 port 22 auth.log:Feb 6 14:27:18 omfg sshd[31425]: Connection from 101.51.104.13 port 51910 on 78.46.60.53 port 22 auth.log:Feb 6 14:27:19 omfg sshd[31423]: Invalid user admin from 101.51.104.13 auth......... ------------------------------	2020-02-07 02:18:56
101.51.104.225	attack	Unauthorized connection attempt detected from IP address 101.51.104.225 to port 8080	2020-01-01 04:44:36

Type

Details

Datetime

101.51.104.215

attackspam

Unauthorized IMAP connection attempt

2020-08-08 13:45:35

101.51.104.13

attack

Lines containing failures of 101.51.104.13
auth.log:Feb  6 14:27:14 omfg sshd[31415]: Connection from 101.51.104.13 port 50811 on 78.46.60.41 port 22
auth.log:Feb  6 14:27:16 omfg sshd[31416]: Connection from 101.51.104.13 port 50838 on 78.46.60.42 port 22
auth.log:Feb  6 14:27:16 omfg sshd[31417]: Connection from 101.51.104.13 port 50531 on 78.46.60.16 port 22
auth.log:Feb  6 14:27:16 omfg sshd[31418]: Connection from 101.51.104.13 port 50880 on 78.46.60.53 port 22
auth.log:Feb  6 14:27:16 omfg sshd[31419]: Connection from 101.51.104.13 port 51638 on 78.46.60.42 port 22
auth.log:Feb  6 14:27:16 omfg sshd[31420]: Connection from 101.51.104.13 port 51637 on 78.46.60.41 port 22
auth.log:Feb  6 14:27:17 omfg sshd[31423]: Connection from 101.51.104.13 port 51645 on 78.46.60.16 port 22
auth.log:Feb  6 14:27:18 omfg sshd[31425]: Connection from 101.51.104.13 port 51910 on 78.46.60.53 port 22
auth.log:Feb  6 14:27:19 omfg sshd[31423]: Invalid user admin from 101.51.104.13
auth.........
------------------------------

2020-02-07 02:18:56

101.51.104.225

attack

Unauthorized connection attempt detected from IP address 101.51.104.225 to port 8080

2020-01-01 04:44:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 101.51.104.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16519
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;101.51.104.139.			IN	A

;; AUTHORITY SECTION:
.			250	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 22:29:42 CST 2022
;; MSG SIZE  rcvd: 107

Host info

139.104.51.101.in-addr.arpa domain name pointer node-knf.pool-101-51.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.104.51.101.in-addr.arpa	name = node-knf.pool-101-51.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.75.76.67	attackbots	Invalid user oc from 49.75.76.67 port 35278	2020-04-30 04:17:04
148.70.133.175	attack	2020-04-29T18:28:19.497285dmca.cloudsearch.cf sshd[26487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.133.175 user=root 2020-04-29T18:28:22.239166dmca.cloudsearch.cf sshd[26487]: Failed password for root from 148.70.133.175 port 46742 ssh2 2020-04-29T18:31:36.098425dmca.cloudsearch.cf sshd[26682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.133.175 user=root 2020-04-29T18:31:38.217993dmca.cloudsearch.cf sshd[26682]: Failed password for root from 148.70.133.175 port 54400 ssh2 2020-04-29T18:34:43.744481dmca.cloudsearch.cf sshd[26902]: Invalid user marlon from 148.70.133.175 port 33888 2020-04-29T18:34:43.748565dmca.cloudsearch.cf sshd[26902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.133.175 2020-04-29T18:34:43.744481dmca.cloudsearch.cf sshd[26902]: Invalid user marlon from 148.70.133.175 port 33888 2020-04-29T18:34:45.873120dmca.c ...	2020-04-30 03:59:48
105.186.142.173	attackbotsspam	Unauthorized connection attempt from IP address 105.186.142.173 on Port 445(SMB)	2020-04-30 04:25:20
104.168.44.166	attackbotsspam	Lines containing failures of 104.168.44.166 Apr 28 19:19:17 UTC__SANYALnet-Labs__cac12 sshd[9912]: Connection from 104.168.44.166 port 49337 on 64.137.176.96 port 22 Apr 28 19:19:17 UTC__SANYALnet-Labs__cac12 sshd[9912]: Did not receive identification string from 104.168.44.166 port 49337 Apr 28 19:19:21 UTC__SANYALnet-Labs__cac12 sshd[9913]: Connection from 104.168.44.166 port 52003 on 64.137.176.96 port 22 Apr 28 19:19:22 UTC__SANYALnet-Labs__cac12 sshd[9913]: Address 104.168.44.166 maps to 104-168-44-166-host.colocrossing.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Apr 28 19:19:22 UTC__SANYALnet-Labs__cac12 sshd[9913]: User r.r from 104.168.44.166 not allowed because not listed in AllowUsers Apr 28 19:19:22 UTC__SANYALnet-Labs__cac12 sshd[9913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.44.166 user=r.r Apr 28 19:19:24 UTC__SANYALnet-Labs__cac12 sshd[9913]: Failed password for invali........ ------------------------------	2020-04-30 04:08:35
157.230.151.241	attackspambots	Invalid user admin from 157.230.151.241 port 45490	2020-04-30 03:59:20
190.151.144.57	attack	Invalid user froggie from 190.151.144.57 port 47624	2020-04-30 03:53:07
182.61.160.77	attackbots	Failed password for root from 182.61.160.77 port 43038 ssh2	2020-04-30 03:54:39
159.203.11.4	attack	Automatic report - XMLRPC Attack	2020-04-30 04:31:16
49.233.24.148	attackspambots	Apr 29 20:08:44 v22019038103785759 sshd\[13393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.24.148 user=root Apr 29 20:08:47 v22019038103785759 sshd\[13393\]: Failed password for root from 49.233.24.148 port 33318 ssh2 Apr 29 20:14:02 v22019038103785759 sshd\[13755\]: Invalid user santosh from 49.233.24.148 port 60860 Apr 29 20:14:02 v22019038103785759 sshd\[13755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.24.148 Apr 29 20:14:04 v22019038103785759 sshd\[13755\]: Failed password for invalid user santosh from 49.233.24.148 port 60860 ssh2 ...	2020-04-30 04:16:31
177.0.0.215	proxy	هاتا	2020-04-30 04:23:18
49.233.75.234	attack	20 attempts against mh-ssh on echoip	2020-04-30 04:15:50
75.44.16.251	attack	Failed password for root from 75.44.16.251 port 37882 ssh2	2020-04-30 04:11:03
195.69.222.166	attack	Failed password for root from 195.69.222.166 port 23018 ssh2	2020-04-30 03:52:04
162.243.138.139	attackbots	ZGrab Application Layer Scanner Detection	2020-04-30 04:29:21
103.226.248.72	attack	Invalid user json from 103.226.248.72 port 50696	2020-04-30 04:08:52

Recently Reported IPs

101.51.104.142	101.51.104.148	101.51.104.151	101.51.104.140
101.51.104.156	101.51.104.155	101.51.104.162	101.51.104.144
101.51.104.159	102.130.81.65	101.51.104.166	101.51.104.17
101.51.104.169	101.51.104.153	101.51.104.175	101.51.104.179
101.51.104.172	101.51.104.183	101.51.104.180	101.51.104.188