City: Lamphun
Region: Lamphun
Country: Thailand
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 110.78.156.6 | attackspam | Unauthorized connection attempt from IP address 110.78.156.6 on Port 445(SMB) |
2019-11-09 05:31:40 |
| 110.78.156.97 | attackbots | Unauthorized connection attempt from IP address 110.78.156.97 on Port 445(SMB) |
2019-08-01 12:43:33 |
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '110.78.128.0 - 110.78.191.255'
% Abuse contact for '110.78.128.0 - 110.78.191.255' is 'pitoon.p@ntplc.co.th'
inetnum: 110.78.128.0 - 110.78.191.255
netname: CAT-BB-NET
descr: 10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok Thailand
country: TH
admin-c: TU38-AP
tech-c: WP273-AP
tech-c: PD452-AP
tech-c: CB840-AP
abuse-c: AN3307-AP
status: ALLOCATED NON-PORTABLE
remarks: Personal contact # PS474-AP WP273-AP AS1145-AP
notify: pankaew@cat.net.th
mnt-by: MAINT-NTPCL-TH
mnt-lower: MAINT-NTPCL-TH
mnt-routes: MAINT-NTPCL-TH
mnt-irt: IRT-NTPCL-TH
last-modified: 2025-11-19T23:59:29Z
source: APNIC
irt: IRT-NTPCL-TH
address: 99 Chaengwattana Road, Thung Song Hong Subdistrict, Luk Si, Luksi Bangkok 10210
e-mail: pitoon.p@ntplc.co.th
abuse-mailbox: pitoon.p@ntplc.co.th
admin-c: NTPC2-AP
tech-c: NTPC2-AP
auth: # Filtered
mnt-by: MAINT-NTPCL-TH
last-modified: 2026-02-02T07:21:59Z
source: APNIC
role: ABUSE NTPCLTH
country: ZZ
address: 99 Chaengwattana Road, Thung Song Hong Subdistrict, Luk Si, Luksi Bangkok 10210
phone: +000000000
e-mail: pitoon.p@ntplc.co.th
admin-c: NTPC2-AP
tech-c: NTPC2-AP
nic-hdl: AN3307-AP
remarks: Generated from irt object IRT-NTPCL-TH
abuse-mailbox: pitoon.p@ntplc.co.th
mnt-by: APNIC-ABUSE
last-modified: 2025-11-19T01:51:42Z
source: APNIC
person: CAT Broadband
address: 10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok Thailand
country: TH
phone: +66-261-42138
e-mail: nmc@cat.net.th
nic-hdl: CB840-AP
mnt-by: MAINT-TH-THIX-CAT
last-modified: 2018-02-07T08:56:35Z
source: APNIC
person: Passanon dumsood
address: 10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok Thailand
country: TH
phone: +66-261-42138
e-mail: passanon.d@cat.net.th
nic-hdl: PD452-AP
mnt-by: MAINT-TH-THIX-CAT
last-modified: 2017-06-13T04:19:50Z
source: APNIC
person: Theerachai Udomkitpanya
address: 10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok
country: TH
phone: +66-261-42918
e-mail: theerachai.u@cattelecom.com
nic-hdl: TU38-AP
mnt-by: MAINT-TH-THIX-CAT
last-modified: 2017-11-23T10:20:25Z
source: APNIC
person: Weerapong Pankaew
nic-hdl: WP273-AP
e-mail: pankaew@cat.net.th
address: CAT-BB-NET
address: 10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok Thailand
phone: +66-261-42138
fax-no: +66-261-42682
country: TH
mnt-by: MAINT-NEW
last-modified: 2008-09-25T12:45:58Z
source: APNIC
% Information related to '110.78.156.0/24AS131090'
route: 110.78.156.0/24
origin: AS131090
descr: CAT Telecom Public Company Limited
13th CAT TELECOM TOWER
NEW ROAD SRIPHRAYA BANGRAK
BANGKOK
THAILAND
mnt-by: MAINT-NTPCL-TH
last-modified: 2025-11-19T01:51:54Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.78.156.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28612
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;110.78.156.132. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026040300 1800 900 604800 86400
;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 03 17:16:21 CST 2026
;; MSG SIZE rcvd: 107Host 132.156.78.110.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 132.156.78.110.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 186.122.148.186 | attackspam | Oct 14 07:11:45 server2 sshd[10481]: reveeclipse mapping checking getaddrinfo for host186.186-122-148.telmex.net.ar [186.122.148.186] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 14 07:11:45 server2 sshd[10481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.186 user=r.r Oct 14 07:11:46 server2 sshd[10481]: Failed password for r.r from 186.122.148.186 port 56252 ssh2 Oct 14 07:11:47 server2 sshd[10481]: Received disconnect from 186.122.148.186: 11: Bye Bye [preauth] Oct 14 07:35:30 server2 sshd[12052]: reveeclipse mapping checking getaddrinfo for host186.186-122-148.telmex.net.ar [186.122.148.186] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 14 07:35:30 server2 sshd[12052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.186 user=r.r Oct 14 07:35:32 server2 sshd[12052]: Failed password for r.r from 186.122.148.186 port 51308 ssh2 Oct 14 07:35:32 server2 sshd[12052]: Received........ ------------------------------- |
2019-10-14 19:18:01 |
| 184.168.27.45 | attack | Automatic report - XMLRPC Attack |
2019-10-14 18:54:05 |
| 91.241.214.238 | attackspambots | Telnet Server BruteForce Attack |
2019-10-14 19:07:23 |
| 79.143.186.36 | attackspam | Lines containing failures of 79.143.186.36 Oct 14 12:26:45 shared02 sshd[10082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.143.186.36 user=r.r Oct 14 12:26:47 shared02 sshd[10082]: Failed password for r.r from 79.143.186.36 port 57188 ssh2 Oct 14 12:26:47 shared02 sshd[10082]: Received disconnect from 79.143.186.36 port 57188:11: Bye Bye [preauth] Oct 14 12:26:47 shared02 sshd[10082]: Disconnected from authenticating user r.r 79.143.186.36 port 57188 [preauth] Oct 14 12:48:49 shared02 sshd[17862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.143.186.36 user=r.r Oct 14 12:48:51 shared02 sshd[17862]: Failed password for r.r from 79.143.186.36 port 52320 ssh2 Oct 14 12:48:52 shared02 sshd[17862]: Received disconnect from 79.143.186.36 port 52320:11: Bye Bye [preauth] Oct 14 12:48:52 shared02 sshd[17862]: Disconnected from authenticating user r.r 79.143.186.36 port 52320 [preauth........ ------------------------------ |
2019-10-14 19:29:53 |
| 59.72.122.148 | attackbotsspam | Automatic report - Banned IP Access |
2019-10-14 19:02:13 |
| 164.132.98.75 | attackspambots | Oct 14 09:21:46 SilenceServices sshd[23803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.98.75 Oct 14 09:21:48 SilenceServices sshd[23803]: Failed password for invalid user Debian2019 from 164.132.98.75 port 48200 ssh2 Oct 14 09:25:50 SilenceServices sshd[24944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.98.75 |
2019-10-14 19:06:00 |
| 165.227.53.38 | attackbotsspam | Oct 14 12:30:58 riskplan-s sshd[4919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.53.38 user=r.r Oct 14 12:31:01 riskplan-s sshd[4919]: Failed password for r.r from 165.227.53.38 port 42924 ssh2 Oct 14 12:31:01 riskplan-s sshd[4919]: Received disconnect from 165.227.53.38: 11: Bye Bye [preauth] Oct 14 12:47:13 riskplan-s sshd[5095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.53.38 user=r.r Oct 14 12:47:14 riskplan-s sshd[5095]: Failed password for r.r from 165.227.53.38 port 37192 ssh2 Oct 14 12:47:15 riskplan-s sshd[5095]: Received disconnect from 165.227.53.38: 11: Bye Bye [preauth] Oct 14 12:50:52 riskplan-s sshd[5132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.53.38 user=r.r Oct 14 12:50:54 riskplan-s sshd[5132]: Failed password for r.r from 165.227.53.38 port 48486 ssh2 Oct 14 12:50:54 riskplan-s sshd[513........ ------------------------------- |
2019-10-14 19:21:21 |
| 54.37.68.66 | attack | Oct 14 11:38:41 SilenceServices sshd[28770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.68.66 Oct 14 11:38:43 SilenceServices sshd[28770]: Failed password for invalid user 123@P@ssw0rd from 54.37.68.66 port 52126 ssh2 Oct 14 11:42:58 SilenceServices sshd[29994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.68.66 |
2019-10-14 19:08:31 |
| 54.37.136.183 | attack | Oct 14 07:03:15 www sshd\[55194\]: Failed password for root from 54.37.136.183 port 53828 ssh2Oct 14 07:07:19 www sshd\[55243\]: Failed password for root from 54.37.136.183 port 37244 ssh2Oct 14 07:11:28 www sshd\[55390\]: Failed password for root from 54.37.136.183 port 48940 ssh2 ... |
2019-10-14 18:49:01 |
| 186.151.170.222 | attackbotsspam | Oct 14 11:34:45 tuxlinux sshd[4083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.151.170.222 user=root Oct 14 11:34:47 tuxlinux sshd[4083]: Failed password for root from 186.151.170.222 port 39009 ssh2 Oct 14 11:34:45 tuxlinux sshd[4083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.151.170.222 user=root Oct 14 11:34:47 tuxlinux sshd[4083]: Failed password for root from 186.151.170.222 port 39009 ssh2 Oct 14 11:58:48 tuxlinux sshd[4497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.151.170.222 user=root ... |
2019-10-14 19:00:37 |
| 42.112.234.37 | attackbotsspam | Honeypot attack, port: 445, PTR: PTR record not found |
2019-10-14 19:33:43 |
| 14.232.164.207 | attack | DATE:2019-10-14 05:46:32, IP:14.232.164.207, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc) |
2019-10-14 18:58:28 |
| 185.90.118.80 | attackspam | 10/14/2019-05:58:11.090698 185.90.118.80 Protocol: 6 ET SCAN Potential SSH Scan |
2019-10-14 19:19:08 |
| 203.113.102.178 | attackbotsspam | Automatic report - Banned IP Access |
2019-10-14 19:01:53 |
| 83.246.93.211 | attack | 2019-10-14T08:12:52.655275abusebot.cloudsearch.cf sshd\[13679\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=db1.fos2.thuecom-medien.de user=root |
2019-10-14 19:14:53 |