202.29.70.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: Uninet

Hostname: unknown

Organization: Princess of Naradhiwas University

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Dec 23 15:59:54 vpn01 sshd[18072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 Dec 23 15:59:56 vpn01 sshd[18072]: Failed password for invalid user named from 202.29.70.42 port 43104 ssh2 ...	2019-12-23 23:15:13
attackbots	Dec 20 00:55:35 eventyay sshd[31962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 Dec 20 00:55:37 eventyay sshd[31962]: Failed password for invalid user Paint@2017 from 202.29.70.42 port 43640 ssh2 Dec 20 01:01:37 eventyay sshd[32123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 ...	2019-12-20 08:08:02
attackspambots	$f2bV_matches	2019-12-13 04:59:26
attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-12 22:05:38
attackbots	Dec 10 09:02:06 game-panel sshd[25546]: Failed password for backup from 202.29.70.42 port 39138 ssh2 Dec 10 09:08:17 game-panel sshd[25871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 Dec 10 09:08:18 game-panel sshd[25871]: Failed password for invalid user gdm from 202.29.70.42 port 44660 ssh2	2019-12-10 17:35:46
attackspambots	Nov 16 09:26:18 * sshd[2272]: Failed password for backup from 202.29.70.42 port 45636 ssh2	2019-11-16 19:21:52
attack	$f2bV_matches	2019-11-14 17:36:37
attackbotsspam	Nov 12 13:19:49 eddieflores sshd\[20213\]: Invalid user kurtz from 202.29.70.42 Nov 12 13:19:49 eddieflores sshd\[20213\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mgt.pnu.ac.th Nov 12 13:19:51 eddieflores sshd\[20213\]: Failed password for invalid user kurtz from 202.29.70.42 port 55566 ssh2 Nov 12 13:23:54 eddieflores sshd\[20527\]: Invalid user 1234566 from 202.29.70.42 Nov 12 13:23:54 eddieflores sshd\[20527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mgt.pnu.ac.th	2019-11-13 07:24:42
attackbots	SSH Brute Force	2019-11-11 08:49:21
attackbots	Nov 6 13:41:30 vps666546 sshd\[16846\]: Invalid user millers from 202.29.70.42 port 52912 Nov 6 13:41:30 vps666546 sshd\[16846\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 Nov 6 13:41:32 vps666546 sshd\[16846\]: Failed password for invalid user millers from 202.29.70.42 port 52912 ssh2 Nov 6 13:45:33 vps666546 sshd\[16983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 user=root Nov 6 13:45:35 vps666546 sshd\[16983\]: Failed password for root from 202.29.70.42 port 59494 ssh2 ...	2019-11-06 21:09:36
attackspambots	Oct 18 06:51:30 www sshd\[13459\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 user=root Oct 18 06:51:32 www sshd\[13459\]: Failed password for root from 202.29.70.42 port 54028 ssh2 Oct 18 06:55:42 www sshd\[13510\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 user=root ...	2019-10-18 13:08:01
attackspambots	Sep 22 04:03:27 lcprod sshd\[3452\]: Invalid user admin from 202.29.70.42 Sep 22 04:03:27 lcprod sshd\[3452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mgt.pnu.ac.th Sep 22 04:03:30 lcprod sshd\[3452\]: Failed password for invalid user admin from 202.29.70.42 port 40614 ssh2 Sep 22 04:07:52 lcprod sshd\[3918\]: Invalid user user3 from 202.29.70.42 Sep 22 04:07:52 lcprod sshd\[3918\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mgt.pnu.ac.th	2019-09-23 03:21:58
attackspam	Sep 7 10:47:25 ny01 sshd[13368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 Sep 7 10:47:26 ny01 sshd[13368]: Failed password for invalid user test from 202.29.70.42 port 56582 ssh2 Sep 7 10:52:17 ny01 sshd[14156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42	2019-09-08 05:03:22
attack	Sep 3 21:25:09 web8 sshd\[18137\]: Invalid user wu from 202.29.70.42 Sep 3 21:25:09 web8 sshd\[18137\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 Sep 3 21:25:11 web8 sshd\[18137\]: Failed password for invalid user wu from 202.29.70.42 port 44630 ssh2 Sep 3 21:30:25 web8 sshd\[20710\]: Invalid user xmpp from 202.29.70.42 Sep 3 21:30:25 web8 sshd\[20710\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42	2019-09-04 07:42:04
attackbotsspam	Aug 2 12:24:49 unicornsoft sshd\[3016\]: Invalid user vbox from 202.29.70.42 Aug 2 12:24:49 unicornsoft sshd\[3016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 Aug 2 12:24:51 unicornsoft sshd\[3016\]: Failed password for invalid user vbox from 202.29.70.42 port 49622 ssh2	2019-08-02 23:08:26
attackspam	Jul 25 08:41:48 plusreed sshd[14354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 user=root Jul 25 08:41:50 plusreed sshd[14354]: Failed password for root from 202.29.70.42 port 50282 ssh2 ...	2019-07-25 20:47:07
attackspam	Jul 25 02:52:55 plusreed sshd[5184]: Invalid user sftpuser from 202.29.70.42 ...	2019-07-25 15:08:09
attackbotsspam	Jul 18 19:54:11 s64-1 sshd[8156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 Jul 18 19:54:13 s64-1 sshd[8156]: Failed password for invalid user sam from 202.29.70.42 port 40986 ssh2 Jul 18 19:59:34 s64-1 sshd[8290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 ...	2019-07-19 02:08:03
attackspambots	2019-07-16T18:55:12.887965abusebot-7.cloudsearch.cf sshd\[12022\]: Invalid user nyx from 202.29.70.42 port 59688	2019-07-17 02:58:06
attackbotsspam	2019-06-22T15:56:23.704600enmeeting.mahidol.ac.th sshd\[1870\]: Invalid user han from 202.29.70.42 port 41712 2019-06-22T15:56:23.718692enmeeting.mahidol.ac.th sshd\[1870\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mgt.pnu.ac.th 2019-06-22T15:56:25.681350enmeeting.mahidol.ac.th sshd\[1870\]: Failed password for invalid user han from 202.29.70.42 port 41712 ssh2 ...	2019-06-22 19:47:19

Comments on same subnet:

IP	Type	Details	Datetime
202.29.70.46	attack	$f2bV_matches	2020-02-11 03:03:09
202.29.70.46	attackspambots	$f2bV_matches	2019-10-04 03:05:10
202.29.70.46	attackspambots	Aug 23 19:10:38 fr01 sshd[11699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.46 user=root Aug 23 19:10:41 fr01 sshd[11699]: Failed password for root from 202.29.70.46 port 58372 ssh2 Aug 23 19:10:45 fr01 sshd[11701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.46 user=root Aug 23 19:10:47 fr01 sshd[11701]: Failed password for root from 202.29.70.46 port 40266 ssh2 Aug 23 19:10:50 fr01 sshd[11743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.46 user=root Aug 23 19:10:52 fr01 sshd[11743]: Failed password for root from 202.29.70.46 port 50392 ssh2 ...	2019-08-24 05:19:19
202.29.70.46	attackbots	2019-08-15T17:50:55.587310wiz-ks3 sshd[12175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mgt2.pnu.ac.th user=root 2019-08-15T17:50:57.308866wiz-ks3 sshd[12175]: Failed password for root from 202.29.70.46 port 37784 ssh2 2019-08-15T17:51:20.150274wiz-ks3 sshd[12177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mgt2.pnu.ac.th user=root 2019-08-15T17:51:21.636145wiz-ks3 sshd[12177]: Failed password for root from 202.29.70.46 port 41570 ssh2 2019-08-15T17:51:40.447160wiz-ks3 sshd[12180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mgt2.pnu.ac.th user=root 2019-08-15T17:51:42.013136wiz-ks3 sshd[12180]: Failed password for root from 202.29.70.46 port 45362 ssh2 2019-08-15T17:52:00.771609wiz-ks3 sshd[12182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mgt2.pnu.ac.th user=root 2019-08-15T17:52:03.416521wiz-ks3 sshd[12182]: Failed password	2019-08-21 14:41:28
202.29.70.46	attack	Aug 9 08:54:29 MK-Soft-Root1 sshd\[12240\]: Invalid user butter from 202.29.70.46 port 59262 Aug 9 08:54:29 MK-Soft-Root1 sshd\[12240\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.46 Aug 9 08:54:31 MK-Soft-Root1 sshd\[12240\]: Failed password for invalid user butter from 202.29.70.46 port 59262 ssh2 ...	2019-08-09 23:21:14
202.29.70.46	attackbots	2019-08-07T17:42:51.870187abusebot-8.cloudsearch.cf sshd\[10709\]: Invalid user oracle from 202.29.70.46 port 35974	2019-08-08 03:52:59
202.29.70.46	attackbots	Invalid user test from 202.29.70.46 port 57534	2019-07-28 04:51:57
202.29.70.46	attack	Triggered by Fail2Ban at Ares web server	2019-07-20 08:48:14
202.29.70.46	attackbots	2019-06-29T18:46:34.661429Z 0057d11129e5 New connection: 202.29.70.46:50118 (172.17.0.4:2222) [session: 0057d11129e5] 2019-06-29T18:46:50.869745Z 45b181e92b7d New connection: 202.29.70.46:45264 (172.17.0.4:2222) [session: 45b181e92b7d]	2019-06-30 11:47:55

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.29.70.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64723
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.29.70.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 17:47:45 +08 2019
;; MSG SIZE  rcvd: 116

Host info

42.70.29.202.in-addr.arpa domain name pointer mgt.pnu.ac.th.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
42.70.29.202.in-addr.arpa	name = mgt.pnu.ac.th.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.168.71.146	attackbots	$f2bV_matches	2020-03-25 01:20:04
150.95.140.160	attack	2020-03-24T15:33:18.178097randservbullet-proofcloud-66.localdomain sshd[11659]: Invalid user qe from 150.95.140.160 port 41884 2020-03-24T15:33:18.183864randservbullet-proofcloud-66.localdomain sshd[11659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=v150-95-140-160.a085.g.tyo1.static.cnode.io 2020-03-24T15:33:18.178097randservbullet-proofcloud-66.localdomain sshd[11659]: Invalid user qe from 150.95.140.160 port 41884 2020-03-24T15:33:19.906419randservbullet-proofcloud-66.localdomain sshd[11659]: Failed password for invalid user qe from 150.95.140.160 port 41884 ssh2 ...	2020-03-25 01:26:51
183.102.7.173	attackspam	port scan and connect, tcp 23 (telnet)	2020-03-25 01:28:14
142.93.23.172	attackbotsspam	(mod_security) mod_security (id:230011) triggered by 142.93.23.172 (US/United States/clients5.gaslamp.media): 5 in the last 3600 secs	2020-03-25 01:19:10
141.98.10.137	attack	Rude login attack (46 tries in 1d)	2020-03-25 00:51:00
177.69.26.97	attackbotsspam	Invalid user dsjtcg from 177.69.26.97 port 43830	2020-03-25 00:59:21
106.13.41.42	attack	Mar 24 14:53:20 nextcloud sshd\[29589\]: Invalid user day from 106.13.41.42 Mar 24 14:53:20 nextcloud sshd\[29589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.41.42 Mar 24 14:53:22 nextcloud sshd\[29589\]: Failed password for invalid user day from 106.13.41.42 port 38462 ssh2	2020-03-25 01:11:40
178.125.27.228	attack	Fail2Ban Ban Triggered	2020-03-25 01:31:48
118.70.41.46	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-25 00:43:55
196.52.43.101	attack	1585064606 - 03/24/2020 16:43:26 Host: 196.52.43.101/196.52.43.101 Port: 8080 TCP Blocked	2020-03-25 01:00:01
218.56.102.14	attackbots	Port Scan detected from 218.56.102.14 (CN/China/-). 4 hits in the last 180 seconds	2020-03-25 01:25:08
80.211.56.134	attack	Invalid user amy from 80.211.56.134 port 56424	2020-03-25 01:23:50
194.26.29.14	attack	Mar 24 18:21:23 debian-2gb-nbg1-2 kernel: \[7329566.402657\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=41815 PROTO=TCP SPT=50545 DPT=6050 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-25 01:35:24
124.105.173.17	attack	Mar 24 18:08:23 lukav-desktop sshd\[21946\]: Invalid user angelina from 124.105.173.17 Mar 24 18:08:23 lukav-desktop sshd\[21946\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.105.173.17 Mar 24 18:08:26 lukav-desktop sshd\[21946\]: Failed password for invalid user angelina from 124.105.173.17 port 46718 ssh2 Mar 24 18:13:34 lukav-desktop sshd\[12086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.105.173.17 user=mysql Mar 24 18:13:37 lukav-desktop sshd\[12086\]: Failed password for mysql from 124.105.173.17 port 57804 ssh2	2020-03-25 01:12:29
83.240.217.138	attackspam	Mar 24 17:29:25 pornomens sshd\[26309\]: Invalid user vg from 83.240.217.138 port 57896 Mar 24 17:29:25 pornomens sshd\[26309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.240.217.138 Mar 24 17:29:27 pornomens sshd\[26309\]: Failed password for invalid user vg from 83.240.217.138 port 57896 ssh2 ...	2020-03-25 01:13:13

Recently Reported IPs

182.180.151.2	118.24.178.116	113.160.185.144	104.18.31.233
14.177.64.104	220.194.237.43	212.225.196.16	192.241.129.190
155.223.63.120	119.28.189.208	62.56.251.204	184.105.139.68
180.211.162.254	162.243.150.140	204.244.124.57	113.176.70.233
112.133.229.242	182.75.82.54	178.89.178.221	200.97.28.54