202.29.5.173 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
202.29.51.28	attackbotsspam	2020-10-06T12:25:03.780889abusebot-3.cloudsearch.cf sshd[28427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.28 user=root 2020-10-06T12:25:05.408498abusebot-3.cloudsearch.cf sshd[28427]: Failed password for root from 202.29.51.28 port 48840 ssh2 2020-10-06T12:28:19.267290abusebot-3.cloudsearch.cf sshd[28503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.28 user=root 2020-10-06T12:28:21.803124abusebot-3.cloudsearch.cf sshd[28503]: Failed password for root from 202.29.51.28 port 44660 ssh2 2020-10-06T12:31:43.770440abusebot-3.cloudsearch.cf sshd[28522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.28 user=root 2020-10-06T12:31:45.644065abusebot-3.cloudsearch.cf sshd[28522]: Failed password for root from 202.29.51.28 port 40489 ssh2 2020-10-06T12:35:01.420325abusebot-3.cloudsearch.cf sshd[28552]: pam_unix(sshd:auth): authenticat ...	2020-10-07 00:02:19
202.29.51.28	attackbots	Oct 6 02:20:26 roki-contabo sshd\[15980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.28 user=root Oct 6 02:20:28 roki-contabo sshd\[15980\]: Failed password for root from 202.29.51.28 port 38421 ssh2 Oct 6 02:27:05 roki-contabo sshd\[16107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.28 user=root Oct 6 02:27:07 roki-contabo sshd\[16107\]: Failed password for root from 202.29.51.28 port 53935 ssh2 Oct 6 02:31:11 roki-contabo sshd\[16241\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.28 user=root ...	2020-10-06 15:50:51
202.29.51.28	attackbots	2020-10-05T19:06:46.763340morrigan.ad5gb.com sshd[1595700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.28 user=root 2020-10-05T19:06:48.516931morrigan.ad5gb.com sshd[1595700]: Failed password for root from 202.29.51.28 port 57161 ssh2	2020-10-06 08:18:03
202.29.51.28	attack	s2.hscode.pl - SSH Attack	2020-10-06 00:44:40
202.29.51.28	attack	2020-10-05T10:38:08.717067cyberdyne sshd[557945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.28 user=root 2020-10-05T10:38:10.693367cyberdyne sshd[557945]: Failed password for root from 202.29.51.28 port 38569 ssh2 2020-10-05T10:41:14.887129cyberdyne sshd[558753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.28 user=root 2020-10-05T10:41:17.064350cyberdyne sshd[558753]: Failed password for root from 202.29.51.28 port 33673 ssh2 ...	2020-10-05 16:43:47
202.29.51.61	attackbots	Invalid user sentry from 202.29.51.61 port 49059	2020-09-24 20:27:22
202.29.51.61	attack	$f2bV_matches	2020-09-24 03:54:54
202.29.55.172	attack	349. On May 17 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 202.29.55.172.	2020-05-20 23:43:52
202.29.52.49	attackbots	2020-05-05T09:14:21.876572shield sshd\[4481\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.52.49 user=root 2020-05-05T09:14:24.242959shield sshd\[4481\]: Failed password for root from 202.29.52.49 port 60788 ssh2 2020-05-05T09:14:26.603742shield sshd\[4507\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.52.49 user=root 2020-05-05T09:14:28.322857shield sshd\[4507\]: Failed password for root from 202.29.52.49 port 32890 ssh2 2020-05-05T09:14:30.730372shield sshd\[4546\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.52.49 user=root	2020-05-06 01:36:02
202.29.52.220	attack	Unauthorized connection attempt from IP address 202.29.52.220 on Port 445(SMB)	2020-01-28 01:07:50
202.29.51.126	attack	Jan 3 07:10:32 sd-53420 sshd\[12499\]: Invalid user l from 202.29.51.126 Jan 3 07:10:32 sd-53420 sshd\[12499\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.126 Jan 3 07:10:34 sd-53420 sshd\[12499\]: Failed password for invalid user l from 202.29.51.126 port 19842 ssh2 Jan 3 07:12:58 sd-53420 sshd\[13251\]: Invalid user admina from 202.29.51.126 Jan 3 07:12:58 sd-53420 sshd\[13251\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.126 ...	2020-01-03 14:25:27
202.29.51.126	attackbotsspam	2019-11-25T12:44:07.492014suse-nuc sshd[28103]: Invalid user mysql from 202.29.51.126 port 56131 ...	2019-11-30 05:32:03
202.29.57.103	attackbots	11/29/2019-01:28:54.005473 202.29.57.103 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-29 15:45:04
202.29.57.103	attackbots	38081/tcp 8555/tcp 38082/tcp... [2019-09-25/11-26]1928pkt,23pt.(tcp)	2019-11-26 14:01:11
202.29.57.103	attackbots	Portscan or hack attempt detected by psad/fwsnort	2019-11-26 04:47:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.29.5.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58214
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;202.29.5.173.			IN	A

;; AUTHORITY SECTION:
.			383	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 00:01:06 CST 2022
;; MSG SIZE  rcvd: 105

Host info

173.5.29.202.in-addr.arpa domain name pointer www6.udru.ac.th.
173.5.29.202.in-addr.arpa domain name pointer www.udru.ac.th.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
173.5.29.202.in-addr.arpa	name = www.udru.ac.th.
173.5.29.202.in-addr.arpa	name = www6.udru.ac.th.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.147	attack	Dec 16 06:18:47 MK-Soft-Root1 sshd[10769]: Failed password for root from 222.186.175.147 port 8040 ssh2 Dec 16 06:18:52 MK-Soft-Root1 sshd[10769]: Failed password for root from 222.186.175.147 port 8040 ssh2 ...	2019-12-16 13:34:14
113.88.82.220	attackbots	1576472236 - 12/16/2019 05:57:16 Host: 113.88.82.220/113.88.82.220 Port: 445 TCP Blocked	2019-12-16 13:39:37
192.3.25.92	attackspambots	Dec 16 06:12:05 sd-53420 sshd\[17637\]: Invalid user marian from 192.3.25.92 Dec 16 06:12:05 sd-53420 sshd\[17637\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.25.92 Dec 16 06:12:07 sd-53420 sshd\[17637\]: Failed password for invalid user marian from 192.3.25.92 port 48643 ssh2 Dec 16 06:19:35 sd-53420 sshd\[20489\]: User root from 192.3.25.92 not allowed because none of user's groups are listed in AllowGroups Dec 16 06:19:35 sd-53420 sshd\[20489\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.25.92 user=root ...	2019-12-16 13:21:16
217.182.172.204	attack	$f2bV_matches	2019-12-16 13:50:42
113.88.14.195	attack	Unauthorized connection attempt detected from IP address 113.88.14.195 to port 1433	2019-12-16 13:40:20
159.65.176.156	attack	Dec 16 05:57:19 icinga sshd[29111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.176.156 Dec 16 05:57:20 icinga sshd[29111]: Failed password for invalid user crom from 159.65.176.156 port 38866 ssh2 ...	2019-12-16 13:35:09
139.198.122.76	attack	Dec 15 19:16:53 kapalua sshd\[4163\]: Invalid user a_kirchner from 139.198.122.76 Dec 15 19:16:53 kapalua sshd\[4163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.122.76 Dec 15 19:16:54 kapalua sshd\[4163\]: Failed password for invalid user a_kirchner from 139.198.122.76 port 34128 ssh2 Dec 15 19:24:56 kapalua sshd\[5009\]: Invalid user schellmann from 139.198.122.76 Dec 15 19:24:56 kapalua sshd\[5009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.122.76	2019-12-16 13:34:50
213.251.41.52	attackbotsspam	Dec 16 06:20:08 tux-35-217 sshd\[1148\]: Invalid user helpdesk from 213.251.41.52 port 41226 Dec 16 06:20:08 tux-35-217 sshd\[1148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.251.41.52 Dec 16 06:20:10 tux-35-217 sshd\[1148\]: Failed password for invalid user helpdesk from 213.251.41.52 port 41226 ssh2 Dec 16 06:25:48 tux-35-217 sshd\[1310\]: Invalid user mordechai from 213.251.41.52 port 45902 Dec 16 06:25:48 tux-35-217 sshd\[1310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.251.41.52 ...	2019-12-16 13:35:46
182.46.100.54	attack	Dec 15 23:56:46 web1 postfix/smtpd[7448]: warning: unknown[182.46.100.54]: SASL LOGIN authentication failed: authentication failure Dec 15 23:56:50 web1 postfix/smtpd[7448]: warning: unknown[182.46.100.54]: SASL LOGIN authentication failed: authentication failure Dec 15 23:56:56 web1 postfix/smtpd[7448]: warning: unknown[182.46.100.54]: SASL LOGIN authentication failed: authentication failure Dec 15 23:57:00 web1 postfix/smtpd[7448]: warning: unknown[182.46.100.54]: SASL LOGIN authentication failed: authentication failure Dec 15 23:57:04 web1 postfix/smtpd[7448]: warning: unknown[182.46.100.54]: SASL LOGIN authentication failed: authentication failure ...	2019-12-16 13:45:41
222.186.42.4	attack	--- report --- Dec 16 01:35:11 sshd: Connection from 222.186.42.4 port 40180 Dec 16 01:35:14 sshd: Failed password for root from 222.186.42.4 port 40180 ssh2 Dec 16 01:35:16 sshd: Received disconnect from 222.186.42.4: 11: [preauth]	2019-12-16 13:14:59
35.232.92.131	attack	Dec 16 06:13:10 herz-der-gamer sshd[25113]: Invalid user kuczka from 35.232.92.131 port 33824 Dec 16 06:13:10 herz-der-gamer sshd[25113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.232.92.131 Dec 16 06:13:10 herz-der-gamer sshd[25113]: Invalid user kuczka from 35.232.92.131 port 33824 Dec 16 06:13:12 herz-der-gamer sshd[25113]: Failed password for invalid user kuczka from 35.232.92.131 port 33824 ssh2 ...	2019-12-16 13:13:54
118.126.97.230	attack	Dec 16 05:09:07 hcbbdb sshd\[8803\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.97.230 user=root Dec 16 05:09:09 hcbbdb sshd\[8803\]: Failed password for root from 118.126.97.230 port 57570 ssh2 Dec 16 05:15:07 hcbbdb sshd\[9564\]: Invalid user wikran from 118.126.97.230 Dec 16 05:15:07 hcbbdb sshd\[9564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.97.230 Dec 16 05:15:10 hcbbdb sshd\[9564\]: Failed password for invalid user wikran from 118.126.97.230 port 52804 ssh2	2019-12-16 13:24:55
79.166.96.144	attackbots	Telnet Server BruteForce Attack	2019-12-16 13:50:22
208.85.248.166	attackbots	Unauthorized connection attempt detected from IP address 208.85.248.166 to port 445	2019-12-16 13:46:01
40.92.5.65	attack	Dec 16 07:57:27 debian-2gb-vpn-nbg1-1 kernel: [850618.191150] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.5.65 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=65131 DF PROTO=TCP SPT=6222 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0	2019-12-16 13:28:58

Recently Reported IPs

202.29.62.2	202.29.68.221	202.29.72.34	202.29.64.10
202.29.58.23	202.3.175.209	202.3.77.184	202.29.9.8
202.3.77.248	202.29.83.169	202.30.111.50	202.30.0.123
202.3.66.212	202.3.19.94	202.31.11.230	202.32.158.53
202.32.114.45	202.31.187.154	202.32.140.140	202.32.158.50