AbuseIPDB » 202.29.24.198

202.29.24.198 was found in our database!

This IP was reported 1,073 times. Confidence of Abuse is 100%: ?

100%

ISP	Office of Info.Tech. Admin. for Educational Development
Usage Type	University/College/School
ASN	AS136624
Domain Name	uni.net.th
Country	Thailand
City	Sakon Nakhon, Sakon Nakhon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 202.29.24.198

Whois 202.29.24.198

IP Abuse Reports for 202.29.24.198:

This IP address has been reported a total of 1,073 times from 201 distinct sources. 202.29.24.198 was first reported on July 9th 2021, and the most recent report was 8 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Kenshin869	2025-06-14 20:19:36 (8 minutes ago)	Wordpress unauthorized access attempt	Brute-Force
rtbh.com.tr	2025-06-14 20:07:09 (20 minutes ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
thetomtaylor.co.uk	2025-06-14 17:10:22 (3 hours ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [wa02]	Bad Web Bot Web App Attack
thetomtaylor.co.uk	2025-06-14 16:54:10 (3 hours ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [wa01]	Bad Web Bot Web App Attack
stinpriza	2025-06-14 16:51:32 (3 hours ago)	(XMLRPC) xmlrpc banned 202.29.24.198 (TH/Thailand/-): 1 in the last 3600 secs	Web App Attack
Swiptly	2025-06-14 16:28:51 (3 hours ago)	WordPress xmlrpc spam or enumeration ...	Web Spam Bad Web Bot Web App Attack
Anonymous	2025-06-14 15:47:18 (4 hours ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
gszasz	2025-06-14 05:54:35 (14 hours ago)	[Sat Jun 14 05:23:22.755817 2025] [ssl:error] [pid 1588976:tid 1589096] [client 202.29.24.198:16359] ... show more[Sat Jun 14 05:23:22.755817 2025] [ssl:error] [pid 1588976:tid 1589096] [client 202.29.24.198:16359] AH02032: Hostname ocwg.physics.muni.cz provided via SNI and hostname bogl.no provided via HTTP have no compatible SSL setup [Sat Jun 14 05:32:18.822950 2025] [ssl:error] [pid 1588977:tid 1589072] [client 202.29.24.198:50163] AH02032: Hostname ocwg.physics.muni.cz provided via SNI and hostname bogl.no provided via HTTP have no compatible SSL setup [Sat Jun 14 07:54:33.944348 2025] [ssl:error] [pid 1589172:tid 1589200] [client 202.29.24.198:40382] AH02032: Hostname ocwg.physics.muni.cz provided via SNI and hostname bogl.no provided via HTTP have no compatible SSL setup ... show less	Brute-Force Web App Attack
Jason Howell	2025-06-14 03:53:40 (16 hours ago)	202.29.24.198 - - [13/Jun/2025:21:41:27 -0500] "POST /wp-login.php HTTP/1.1" 200 2217 "https://abstr ... show more202.29.24.198 - - [13/Jun/2025:21:41:27 -0500] "POST /wp-login.php HTTP/1.1" 200 2217 "https://abstractco.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" 202.29.24.198 - - [13/Jun/2025:22:22:31 -0500] "GET /wp-login.php HTTP/1.1" 200 4669 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" 202.29.24.198 - - [13/Jun/2025:22:22:32 -0500] "POST /wp-login.php HTTP/1.1" 200 2217 "https://abstractco.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" 202.29.24.198 - - [13/Jun/2025:22:53:38 -0500] "GET /wp-login.php HTTP/1.1" 200 4669 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" 202.29.24.198 - - [13/Jun/2025:22:53:39 -0500] "POST /wp-login.php HTTP/1.1" 200 2217 "https://abstractco.com/wp-login ... show less	Web App Attack
Spidrweb.co.uk	2025-06-13 21:45:02 (22 hours ago)	Brute-Force WordPress attack (85.155)	Web App Attack
KIsmay	2025-06-13 20:56:07 (23 hours ago)	Jun 13 11:58:38 ismay WPAudit[1366588]: 202.29.24.198 ismay.ca "Mozilla/5.0 (Windows NT 10.0; Win64; ... show moreJun 13 11:58:38 ismay WPAudit[1366588]: 202.29.24.198 ismay.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" admin:Admin2000 FAIL Jun 13 12:05:28 ismay WPAudit[1400816]: 202.29.24.198 ismay.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" admin:Admin@005 FAIL Jun 13 12:56:50 ismay WPAudit[1404634]: 202.29.24.198 ismay.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" admin:[Host]ukismayuk FAIL Jun 13 13:56:02 ismay WPAudit[1404143]: 202.29.24.198 ismay.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" admin:ismay123 FAIL Jun 13 13:56:06 ismay WPAudit[1406212]: 202.29.24.198 ismay.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" admin:ismay-01 FAIL ... show less	Brute-Force Web App Attack
rtbh.com.tr	2025-06-13 20:07:08 (1 day ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
KIsmay	2025-06-13 19:49:29 (1 day ago)	Jun 13 15:11:54 www4 WPAudit[2903759]: 202.29.24.198 lemoncreekcampground.ca "Mozilla/5.0 (Windows N ... show moreJun 13 15:11:54 www4 WPAudit[2903759]: 202.29.24.198 lemoncreekcampground.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" lemoncreek:lemoncreek343 FAIL Jun 13 15:15:16 www4 WPAudit[2903759]: 202.29.24.198 lemoncreekcampground.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" lemoncreek:lemoncreek@54321 FAIL Jun 13 15:34:39 www4 WPAudit[2907380]: 202.29.24.198 lemoncreekcampground.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" lemoncreek:lemoncreek@2021! FAIL Jun 13 15:40:04 www4 WPAudit[2907380]: 202.29.24.198 lemoncreekcampground.ca "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36" lemoncreek:lemoncreekcampground55 FAIL Jun 13 15:49:29 www4 WPAudit[2909370]: 202.29.24.198 lemoncreekcampground.ca "Mozilla/5.0 (Windows NT ... show less	Brute-Force Web App Attack
Kenshin869	2025-06-13 19:46:47 (1 day ago)	Wordpress unauthorized access attempt	Brute-Force
LRob.fr	2025-06-13 17:15:07 (1 day ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking

Showing 1 to 15 of 1073 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

39.164.232.214

203.113.174.95

164.132.7.54

103.84.236.242

176.65.148.227

83.222.190.238

176.65.148.194

123.158.61.238

176.65.148.166

69.57.161.219

181.47.161.200

176.65.148.10

78.153.140.203

173.239.224.37

106.75.169.149

154.222.25.9

176.65.141.224

45.135.232.177

154.58.132.198

176.65.134.190