City: Lamphun
Region: Lamphun
Country: Thailand
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 110.78.158.91 | attackbotsspam | Jun 26 16:13:51 srv-4 sshd\[29521\]: Invalid user admin from 110.78.158.91 Jun 26 16:13:51 srv-4 sshd\[29521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.78.158.91 Jun 26 16:13:53 srv-4 sshd\[29521\]: Failed password for invalid user admin from 110.78.158.91 port 50956 ssh2 ... |
2019-06-26 23:52:05 |
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '110.78.128.0 - 110.78.191.255'
% Abuse contact for '110.78.128.0 - 110.78.191.255' is 'pitoon.p@ntplc.co.th'
inetnum: 110.78.128.0 - 110.78.191.255
netname: CAT-BB-NET
descr: 10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok Thailand
country: TH
admin-c: TU38-AP
tech-c: WP273-AP
tech-c: PD452-AP
tech-c: CB840-AP
abuse-c: AN3307-AP
status: ALLOCATED NON-PORTABLE
remarks: Personal contact # PS474-AP WP273-AP AS1145-AP
notify: pankaew@cat.net.th
mnt-by: MAINT-NTPCL-TH
mnt-lower: MAINT-NTPCL-TH
mnt-routes: MAINT-NTPCL-TH
mnt-irt: IRT-NTPCL-TH
last-modified: 2025-11-19T23:59:29Z
source: APNIC
irt: IRT-NTPCL-TH
address: 99 Chaengwattana Road, Thung Song Hong Subdistrict, Luk Si, Luksi Bangkok 10210
e-mail: pitoon.p@ntplc.co.th
abuse-mailbox: pitoon.p@ntplc.co.th
admin-c: NTPC2-AP
tech-c: NTPC2-AP
auth: # Filtered
mnt-by: MAINT-NTPCL-TH
last-modified: 2026-02-02T07:21:59Z
source: APNIC
role: ABUSE NTPCLTH
country: ZZ
address: 99 Chaengwattana Road, Thung Song Hong Subdistrict, Luk Si, Luksi Bangkok 10210
phone: +000000000
e-mail: pitoon.p@ntplc.co.th
admin-c: NTPC2-AP
tech-c: NTPC2-AP
nic-hdl: AN3307-AP
remarks: Generated from irt object IRT-NTPCL-TH
abuse-mailbox: pitoon.p@ntplc.co.th
mnt-by: APNIC-ABUSE
last-modified: 2025-11-19T01:51:42Z
source: APNIC
person: CAT Broadband
address: 10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok Thailand
country: TH
phone: +66-261-42138
e-mail: nmc@cat.net.th
nic-hdl: CB840-AP
mnt-by: MAINT-TH-THIX-CAT
last-modified: 2018-02-07T08:56:35Z
source: APNIC
person: Passanon dumsood
address: 10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok Thailand
country: TH
phone: +66-261-42138
e-mail: passanon.d@cat.net.th
nic-hdl: PD452-AP
mnt-by: MAINT-TH-THIX-CAT
last-modified: 2017-06-13T04:19:50Z
source: APNIC
person: Theerachai Udomkitpanya
address: 10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok
country: TH
phone: +66-261-42918
e-mail: theerachai.u@cattelecom.com
nic-hdl: TU38-AP
mnt-by: MAINT-TH-THIX-CAT
last-modified: 2017-11-23T10:20:25Z
source: APNIC
person: Weerapong Pankaew
nic-hdl: WP273-AP
e-mail: pankaew@cat.net.th
address: CAT-BB-NET
address: 10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok Thailand
phone: +66-261-42138
fax-no: +66-261-42682
country: TH
mnt-by: MAINT-NEW
last-modified: 2008-09-25T12:45:58Z
source: APNIC
% Information related to '110.78.158.0/24AS131090'
route: 110.78.158.0/24
origin: AS131090
descr: CAT Telecom Public Company Limited
13th CAT TELECOM TOWER
NEW ROAD SRIPHRAYA BANGRAK
BANGKOK
THAILAND
mnt-by: MAINT-NTPCL-TH
last-modified: 2025-11-19T01:51:54Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.78.158.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20695
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;110.78.158.117. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026041101 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 12 14:06:48 CST 2026
;; MSG SIZE rcvd: 107Host 117.158.78.110.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 117.158.78.110.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 107.189.11.148 | attack | 3389BruteforceFW21 |
2019-11-16 15:16:04 |
| 139.180.221.152 | attackspam | 139.180.221.152 - - \[16/Nov/2019:06:29:22 +0000\] "POST /wp/wp-login.php HTTP/1.1" 200 4205 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.180.221.152 - - \[16/Nov/2019:06:29:23 +0000\] "POST /wp/xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ... |
2019-11-16 15:09:57 |
| 222.186.175.155 | attackbots | Nov 16 08:04:31 rotator sshd\[4637\]: Failed password for root from 222.186.175.155 port 50600 ssh2Nov 16 08:04:34 rotator sshd\[4637\]: Failed password for root from 222.186.175.155 port 50600 ssh2Nov 16 08:04:37 rotator sshd\[4637\]: Failed password for root from 222.186.175.155 port 50600 ssh2Nov 16 08:04:40 rotator sshd\[4637\]: Failed password for root from 222.186.175.155 port 50600 ssh2Nov 16 08:04:44 rotator sshd\[4637\]: Failed password for root from 222.186.175.155 port 50600 ssh2Nov 16 08:04:51 rotator sshd\[4640\]: Failed password for root from 222.186.175.155 port 6956 ssh2 ... |
2019-11-16 15:08:17 |
| 117.214.101.194 | attackspam | SpamReport |
2019-11-16 14:43:52 |
| 113.114.120.250 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/113.114.120.250/ CN - 1H : (694) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 113.114.120.250 CIDR : 113.114.0.0/15 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 8 3H - 33 6H - 74 12H - 144 24H - 291 DateTime : 2019-11-16 07:29:04 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-11-16 15:22:40 |
| 189.141.210.33 | attack | Automatic report - Port Scan Attack |
2019-11-16 15:03:50 |
| 49.88.112.71 | attackspam | 2019-11-16T07:12:50.876906shield sshd\[24788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.71 user=root 2019-11-16T07:12:53.183220shield sshd\[24788\]: Failed password for root from 49.88.112.71 port 22887 ssh2 2019-11-16T07:12:55.483775shield sshd\[24788\]: Failed password for root from 49.88.112.71 port 22887 ssh2 2019-11-16T07:12:58.391595shield sshd\[24788\]: Failed password for root from 49.88.112.71 port 22887 ssh2 2019-11-16T07:13:41.960955shield sshd\[24818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.71 user=root |
2019-11-16 15:24:06 |
| 159.89.235.61 | attackspambots | 2019-11-16T07:29:35.863985scmdmz1 sshd\[6986\]: Invalid user ah from 159.89.235.61 port 53192 2019-11-16T07:29:35.866631scmdmz1 sshd\[6986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.235.61 2019-11-16T07:29:37.591109scmdmz1 sshd\[6986\]: Failed password for invalid user ah from 159.89.235.61 port 53192 ssh2 ... |
2019-11-16 15:01:19 |
| 5.196.201.7 | attackspam | Nov 16 08:01:52 mail postfix/smtpd[15981]: warning: unknown[5.196.201.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 16 08:02:45 mail postfix/smtpd[18776]: warning: unknown[5.196.201.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 16 08:02:50 mail postfix/smtpd[16407]: warning: unknown[5.196.201.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-16 15:24:57 |
| 218.92.0.182 | attackspambots | Failed password for root from 218.92.0.182 port 54211 ssh2 Failed password for root from 218.92.0.182 port 54211 ssh2 Failed password for root from 218.92.0.182 port 54211 ssh2 Failed password for root from 218.92.0.182 port 54211 ssh2 Failed password for root from 218.92.0.182 port 54211 ssh2 |
2019-11-16 15:18:54 |
| 182.116.41.36 | attackspambots | Honeypot attack, port: 23, PTR: hn.kd.ny.adsl. |
2019-11-16 14:47:46 |
| 27.70.153.187 | attack | Nov 16 11:53:27 gw1 sshd[23257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.70.153.187 Nov 16 11:53:29 gw1 sshd[23257]: Failed password for invalid user tomcat from 27.70.153.187 port 25912 ssh2 ... |
2019-11-16 14:53:39 |
| 144.217.214.13 | attack | SSH bruteforce |
2019-11-16 14:52:31 |
| 182.34.34.148 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/182.34.34.148/ CN - 1H : (695) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 182.34.34.148 CIDR : 182.32.0.0/13 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 9 3H - 34 6H - 75 12H - 145 24H - 292 DateTime : 2019-11-16 07:29:49 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-11-16 14:47:26 |
| 46.105.16.246 | attack | $f2bV_matches |
2019-11-16 15:09:05 |