202.29.80.61 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: Uninet

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-09 20:20:27

Comments on same subnet:

IP	Type	Details	Datetime
202.29.80.133	attackbots	Sep 29 18:17:10 hosting sshd[23936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 user=root Sep 29 18:17:12 hosting sshd[23936]: Failed password for root from 202.29.80.133 port 53167 ssh2 ...	2020-09-29 23:52:54
202.29.80.133	attack	Sep 27 00:37:26 gw1 sshd[15443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 Sep 27 00:37:28 gw1 sshd[15443]: Failed password for invalid user dolphin from 202.29.80.133 port 45785 ssh2 ...	2020-09-27 03:54:26
202.29.80.133	attackbots	SSH login attempts.	2020-09-26 19:56:55
202.29.80.133	attack	Sep 18 17:15:02 sip sshd[1645553]: Invalid user ching from 202.29.80.133 port 49620 Sep 18 17:15:04 sip sshd[1645553]: Failed password for invalid user ching from 202.29.80.133 port 49620 ssh2 Sep 18 17:24:27 sip sshd[1645616]: Invalid user ftpuser from 202.29.80.133 port 51123 ...	2020-09-18 23:24:41
202.29.80.133	attackbotsspam	4x Failed Password	2020-09-18 15:34:45
202.29.80.133	attack	Sep 17 19:13:26 vps647732 sshd[16654]: Failed password for root from 202.29.80.133 port 48817 ssh2 Sep 17 19:18:00 vps647732 sshd[16775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 ...	2020-09-18 05:50:28
202.29.80.133	attack	Aug 26 02:44:35 hosting sshd[2314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 user=root Aug 26 02:44:38 hosting sshd[2314]: Failed password for root from 202.29.80.133 port 59174 ssh2 ...	2020-08-26 07:52:52
202.29.80.133	attack	Aug 24 10:23:48 sip sshd[1408033]: Invalid user wcj from 202.29.80.133 port 44103 Aug 24 10:23:51 sip sshd[1408033]: Failed password for invalid user wcj from 202.29.80.133 port 44103 ssh2 Aug 24 10:28:26 sip sshd[1408066]: Invalid user ubuntu from 202.29.80.133 port 47894 ...	2020-08-24 16:37:44
202.29.80.133	attackspambots	2020-08-19T04:58:13.934598shield sshd\[28642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 user=root 2020-08-19T04:58:15.351623shield sshd\[28642\]: Failed password for root from 202.29.80.133 port 52191 ssh2 2020-08-19T05:02:40.630916shield sshd\[28970\]: Invalid user admin from 202.29.80.133 port 56416 2020-08-19T05:02:40.640181shield sshd\[28970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 2020-08-19T05:02:42.714142shield sshd\[28970\]: Failed password for invalid user admin from 202.29.80.133 port 56416 ssh2	2020-08-19 13:11:10
202.29.80.133	attackbotsspam	Aug 15 02:20:06 h2779839 sshd[5796]: Invalid user 9000idclmy.com from 202.29.80.133 port 50493 Aug 15 02:20:06 h2779839 sshd[5796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 Aug 15 02:20:06 h2779839 sshd[5796]: Invalid user 9000idclmy.com from 202.29.80.133 port 50493 Aug 15 02:20:08 h2779839 sshd[5796]: Failed password for invalid user 9000idclmy.com from 202.29.80.133 port 50493 ssh2 Aug 15 02:24:31 h2779839 sshd[5829]: Invalid user goodluck from 202.29.80.133 port 55727 Aug 15 02:24:31 h2779839 sshd[5829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 Aug 15 02:24:31 h2779839 sshd[5829]: Invalid user goodluck from 202.29.80.133 port 55727 Aug 15 02:24:33 h2779839 sshd[5829]: Failed password for invalid user goodluck from 202.29.80.133 port 55727 ssh2 Aug 15 02:28:52 h2779839 sshd[5860]: Invalid user admin123! from 202.29.80.133 port 60975 ...	2020-08-15 08:36:25
202.29.80.133	attack	Jul 30 20:23:06 scw-6657dc sshd[26652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 Jul 30 20:23:06 scw-6657dc sshd[26652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 Jul 30 20:23:08 scw-6657dc sshd[26652]: Failed password for invalid user ningjieqiong from 202.29.80.133 port 53743 ssh2 ...	2020-07-31 04:57:21
202.29.80.133	attack	Jul 29 22:04:47 game-panel sshd[31826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 Jul 29 22:04:49 game-panel sshd[31826]: Failed password for invalid user lanbijia from 202.29.80.133 port 39155 ssh2 Jul 29 22:09:16 game-panel sshd[32209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133	2020-07-30 07:52:39
202.29.80.133	attackbotsspam	Invalid user test2 from 202.29.80.133 port 35374	2020-07-28 06:36:04
202.29.80.133	attackspam	Jul 27 09:56:36 rancher-0 sshd[603073]: Invalid user glynn from 202.29.80.133 port 49918 ...	2020-07-27 16:04:41
202.29.80.133	attack	2020-07-20T16:19:40.880367shield sshd\[1462\]: Invalid user materna from 202.29.80.133 port 47655 2020-07-20T16:19:40.889134shield sshd\[1462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133 2020-07-20T16:19:42.924605shield sshd\[1462\]: Failed password for invalid user materna from 202.29.80.133 port 47655 ssh2 2020-07-20T16:24:46.384248shield sshd\[3460\]: Invalid user tgu from 202.29.80.133 port 55204 2020-07-20T16:24:46.395007shield sshd\[3460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.80.133	2020-07-21 02:29:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.29.80.61
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35542
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.29.80.61.			IN	A

;; AUTHORITY SECTION:
.			178	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030900 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 09 20:20:20 CST 2020
;; MSG SIZE  rcvd: 116

Host info

61.80.29.202.in-addr.arpa has no PTR record

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 61.80.29.202.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.63.194.47	attackspambots	Automatic report - Banned IP Access	2019-08-22 18:49:15
213.182.94.121	attackbots	Aug 21 23:34:56 friendsofhawaii sshd\[15295\]: Invalid user coronado from 213.182.94.121 Aug 21 23:34:56 friendsofhawaii sshd\[15295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.182.94.121 Aug 21 23:34:58 friendsofhawaii sshd\[15295\]: Failed password for invalid user coronado from 213.182.94.121 port 41419 ssh2 Aug 21 23:39:16 friendsofhawaii sshd\[15794\]: Invalid user redmine from 213.182.94.121 Aug 21 23:39:16 friendsofhawaii sshd\[15794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.182.94.121	2019-08-22 18:17:02
191.17.46.170	attackbotsspam	Unauthorised access (Aug 22) SRC=191.17.46.170 LEN=40 TOS=0x10 PREC=0x40 TTL=240 ID=29818 DF TCP DPT=23 WINDOW=14600 SYN	2019-08-22 18:57:39
129.204.90.220	attack	Aug 21 23:57:54 lcprod sshd\[1598\]: Invalid user bb from 129.204.90.220 Aug 21 23:57:54 lcprod sshd\[1598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.90.220 Aug 21 23:57:56 lcprod sshd\[1598\]: Failed password for invalid user bb from 129.204.90.220 port 59822 ssh2 Aug 22 00:03:21 lcprod sshd\[2120\]: Invalid user paulj from 129.204.90.220 Aug 22 00:03:21 lcprod sshd\[2120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.90.220	2019-08-22 18:14:42
67.205.177.0	attack	Aug 22 10:35:47 hb sshd\[19139\]: Invalid user deploy from 67.205.177.0 Aug 22 10:35:47 hb sshd\[19139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.177.0 Aug 22 10:35:49 hb sshd\[19139\]: Failed password for invalid user deploy from 67.205.177.0 port 50690 ssh2 Aug 22 10:40:00 hb sshd\[19539\]: Invalid user gaming from 67.205.177.0 Aug 22 10:40:00 hb sshd\[19539\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.177.0	2019-08-22 18:52:45
163.172.117.140	attack	Aug 22 10:54:03 cp sshd[3391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.117.140	2019-08-22 17:50:37
50.62.57.6	attackspam	22.08.2019 12:08:52 - Wordpress fail Detected by ELinOX-ALM	2019-08-22 18:50:07
128.199.199.113	attackspambots	Aug 22 10:05:35 *** sshd[21469]: Invalid user ripping from 128.199.199.113	2019-08-22 18:08:00
157.230.39.152	attackbots	Aug 22 11:15:06 vps647732 sshd[32471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.39.152 Aug 22 11:15:08 vps647732 sshd[32471]: Failed password for invalid user musicbot1 from 157.230.39.152 port 45816 ssh2 ...	2019-08-22 17:39:06
190.228.16.101	attack	Aug 22 05:29:23 aat-srv002 sshd[9765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.228.16.101 Aug 22 05:29:25 aat-srv002 sshd[9765]: Failed password for invalid user webmaster from 190.228.16.101 port 58730 ssh2 Aug 22 05:34:33 aat-srv002 sshd[9944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.228.16.101 Aug 22 05:34:34 aat-srv002 sshd[9944]: Failed password for invalid user teamspeak3 from 190.228.16.101 port 48242 ssh2 ...	2019-08-22 18:39:16
185.222.211.114	attack	Aug 22 11:54:27 lumpi kernel: INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.222.211.114 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=13461 PROTO=TCP SPT=45539 DPT=3057 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-08-22 18:11:39
60.19.168.206	attackspam	Unauthorised access (Aug 22) SRC=60.19.168.206 LEN=40 TTL=49 ID=15491 TCP DPT=8080 WINDOW=25693 SYN	2019-08-22 17:51:54
14.41.77.225	attackspam	Aug 22 09:58:09 hcbbdb sshd\[28192\]: Invalid user sammy from 14.41.77.225 Aug 22 09:58:09 hcbbdb sshd\[28192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.41.77.225 Aug 22 09:58:11 hcbbdb sshd\[28192\]: Failed password for invalid user sammy from 14.41.77.225 port 55204 ssh2 Aug 22 10:03:02 hcbbdb sshd\[28710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.41.77.225 user=root Aug 22 10:03:04 hcbbdb sshd\[28710\]: Failed password for root from 14.41.77.225 port 44354 ssh2	2019-08-22 18:08:52
195.154.221.30	attackspambots	Automatic report - Port Scan Attack	2019-08-22 18:05:22
77.247.108.77	attackbotsspam	[SMB remote code execution attempt: port tcp/445] [portscan] tcp/88 [Kerberos] [scan/connect: 3 time(s)] *(RWIN=1024)(08221235)	2019-08-22 18:51:08

Recently Reported IPs

213.126.227.38	12.10.56.235	238.80.48.85	138.236.213.222
64.116.147.17	179.224.118.121	176.24.247.218	89.201.91.137
25.254.24.161	180.100.213.63	91.235.71.114	103.23.155.137
197.251.195.97	124.253.157.231	121.101.134.181	2.45.105.77
138.197.134.206	185.74.4.138	213.160.113.40	121.180.188.110