JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 3.229.248.49

3.229.248.49 was found in our database!

This IP was reported 734 times. Confidence of Abuse is 73%: ?

73%

ISP	Amazon Data Services Northern Virginia
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14618
Hostname(s)	ec2-3-229-248-49.compute-1.amazonaws.com
Domain Name	amazon.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 3.229.248.49

Whois 3.229.248.49

IP Abuse Reports for 3.229.248.49:

This IP address has been reported a total of 734 times from 155 distinct sources. 3.229.248.49 was first reported on February 23rd 2023, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-28 13:46:12 (6 hours ago)	Failed Wordpress Logins	Web App Attack
🇺🇸 avgsmoe	2026-06-28 10:59:10 (9 hours ago)	CROWDSEC offender. Observed 4881 times.	Port Scan Brute-Force Web App Attack
🇧🇪 cmbplf	2026-06-28 00:04:00 (20 hours ago)	9.164 requests in 1 hour (1mo3w11h)	Brute-Force Bad Web Bot
Anonymous	2026-06-27 09:26:06 (1 day ago)	FortiWeb WAF: 36 attacks detected. Threat Score: 8400. Types: Client Management(18), Block IP List(1 ... show more FortiWeb WAF: 36 attacks detected. Threat Score: 8400. Types: Client Management(18), Block IP List(18). Origin: United States. show less	Web App Attack
🇮🇳 evicky2002	2026-06-26 05:53:22 (2 days ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇷🇺 6o6ep	2026-06-25 21:49:54 (2 days ago)	Automatic report from firewall log	Port Scan Hacking Web App Attack
🇷🇺 DZBOT	2026-06-25 14:21:42 (3 days ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
Anonymous	2026-06-25 09:28:44 (3 days ago)	FortiWeb WAF: 8 attacks detected. Threat Score: 6800. Types: Client Management(4), Block IP List(4). ... show more FortiWeb WAF: 8 attacks detected. Threat Score: 6800. Types: Client Management(4), Block IP List(4). Origin: United States. show less	Web App Attack
Anonymous	2026-06-23 09:32:50 (5 days ago)	FortiWeb WAF: 12 attacks detected. Threat Score: 5200. Types: Client Management(6), Block IP List(6) ... show more FortiWeb WAF: 12 attacks detected. Threat Score: 5200. Types: Client Management(6), Block IP List(6). Origin: United States. show less	Web App Attack
Anonymous	2026-06-21 09:29:58 (1 week ago)	FortiWeb WAF: 12 attacks detected. Threat Score: 5200. Types: Client Management(6), Block IP List(6) ... show more FortiWeb WAF: 12 attacks detected. Threat Score: 5200. Types: Client Management(6), Block IP List(6). Origin: United States. show less	Web App Attack
🇩🇪 strzonnek	2026-06-21 08:28:29 (1 week ago)	attack on webform	Brute-Force Web App Attack
🇮🇩 hermawan	2026-06-20 12:11:10 (1 week ago)	[Sat Jun 20 19:11:05.567694 2026] [security2:error] [pid 49652:tid 140111497914048] [client 3.229.24 ... show more [Sat Jun 20 19:11:05.567694 2026] [security2:error] [pid 49652:tid 140111497914048] [client 3.229.248.49:27057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Head" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "254"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Head found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/99.0.4844.84 Safari/537.36 request_line = GET /OneSignalSDKWorker.js HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/OneSignalSDKWorker.js"] [unique_id "ajaDWQiQiZr0OYFTIVgY4AABUQI"], referer https://staklim-jatim.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[49655] [pWKRTa60F1g] [ajaDWQiQiZr0OYFTIVgY4AABUQI] keep_alive=[1] [2026-06-20 19:11:05.567700] [R:ajaDWQiQiZr0OYFTIVgY4AABUQI] UA:'Mozilla/5.0 (X11; Linux x86_64) ... show less	Email Spam Hacking
Anonymous	2026-06-19 09:30:01 (1 week ago)	FortiWeb WAF: 32 attacks detected. Threat Score: 5600. Types: Client Management(16), Block IP List(1 ... show more FortiWeb WAF: 32 attacks detected. Threat Score: 5600. Types: Client Management(16), Block IP List(16). Origin: United States. show less	Web App Attack
🇮🇩 hermawan	2026-06-18 15:36:39 (1 week ago)	[Thu Jun 18 22:36:38.395003 2026] [security2:error] [pid 563753:tid 140711172212416] [client 3.229.2 ... show more [Thu Jun 18 22:36:38.395003 2026] [security2:error] [pid 563753:tid 140711172212416] [client 3.229.248.49:56700] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "Head" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "254"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: Head found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/99.0.4844.84 Safari/537.36 request_line = GET /OneSignalSDKWorker.js HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/OneSignalSDKWorker.js"] [unique_id "ajQQhrcokWXuJinFhnPrYQAACwY"], referer https://staklim-jatim.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[563770] [1fHr8Eh7YQo] [ajQQhrcokWXuJinFhnPrYQAACwY] keep_alive=[1] [2026-06-18 22:36:38.395010] [R:ajQQhrcokWXuJinFhnPrYQAACwY] UA:'Mozilla/5.0 (X11; Linux x86_6 ... show less	Email Spam Hacking
🇷🇺 6o6ep	2026-06-18 11:26:23 (1 week ago)	Automatic report from firewall log	Port Scan Hacking Web App Attack

Showing 1 to 15 of 734 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.229.220.180

🇩🇪 213.209.159.242

🇳🇱 172.94.9.53

🇻🇳 103.199.16.90

🇯🇵 103.163.220.44

🇳🇱 88.210.63.69

🇳🇱 45.142.193.161

🇭🇰 223.197.166.78

🇨🇳 218.21.243.58

🇬🇧 185.216.145.177

🇲🇽 177.229.197.38

🇧🇷 177.131.167.27

🇯🇵 172.253.236.158

🇺🇸 147.185.132.249

🇩🇪 69.5.169.164

🇺🇸 66.132.186.248

🇺🇸 2607:f8b0:4001:c10::127

🇺🇸 216.25.89.83

🇦🇷 190.244.39.224

🇧🇷 187.40.215.162