JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 49.228.169.167

49.228.169.167 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	AIS Fibre
Usage Type	Fixed Line ISP
ASN	AS133481
Hostname(s)	49-228-169-0.24.nat.tls1b-cgn02.myaisfibre.com
Domain Name	ais.th
Country	🇹🇭 Thailand
City	Udon Thani, Udon Thani

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 49.228.169.167

Whois 49.228.169.167

IP Abuse Reports for 49.228.169.167:

This IP address has been reported a total of 8 times from 7 distinct sources. 49.228.169.167 was first reported on August 29th 2021, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-04-09 06:01:29 (2 months ago)	Captured JA4H: ge20n_0cb84097383f \| Log: 49.228.169.167 - - [09/Apr/2026:12:43:55 +0700] "GET /index ... show more Captured JA4H: ge20n_0cb84097383f \| Log: 49.228.169.167 - - [09/Apr/2026:12:43:55 +0700] "GET /index.php/profil/arsip-artikel?id=55 HTTP/2.0" 403 13875 "-" "Mozilla/5.0 (Linux; Android 8.0; Pixel 2 Build/OPD3.170816.012) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.4073.1086 Mobile Safari/537.36" ge20n_accept-language,upgrade-insecure-requests,user-agent,accept,sec-fetch-site,sec-fetch-mode,sec-fetch-user,sec-fetch-dest,accept-encoding,priority,host... ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-04-09 05:44:06 (2 months ago)	[Thu Apr 09 12:43:55.576619 2026] [security2:error] [pid 408212:tid 140481782609600] [client 49.228. ... show more [Thu Apr 09 12:43:55.576619 2026] [security2:error] [pid 408212:tid 140481782609600] [client 49.228.169.167:57778] ModSecurity: Access denied with code 403 (phase 1). Match of "pm matomo.staklim-malang.info " against "SERVER_NAME" required. [file "/etc/modsecurity/coreruleset-4.25.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "230"] [id "440235"] [msg "BAD REQUEST Bro"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: ?id= found within SERVER_NAME: staklim-malang.info request_line = GET /index.php/profil/arsip-artikel?id=55 HTTP/2.0 Request URI RAW = /index.php/profil/arsip-artikel?id=55 Request Basename = arsip-artikel"] [hostname "staklim-malang.info"] [uri "/index.php/profil/arsip-artikel"] [unique_id "adc8m0J7duxqmeMPiJhv0AABBAA"] [staklim-malang.info] [staklim-malang.info] top=[408214] [8CyFgAC5V3g] [adc8m0J7duxqmeMPiJhv0AABBAA] keep_alive=[1] [2026-04-09 12:43:55.576626] [R:adc8m0J7duxqmeMPiJhv0AABBAA] UA:'Mo ... show less	Email Spam Hacking
Anonymous	2024-08-21 13:21:54 (1 year ago)	Ports: 25,465,587; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
Anonymous	2024-03-07 13:22:13 (2 years ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 oonux.net	2023-09-18 02:01:09 (2 years ago)	RouterOS: Scanning detected TCP 49.228.169.167:58130 > x.x.x.x:445	Port Scan
Anonymous	2023-08-13 04:59:56 (2 years ago)		Web Spam Email Spam Blog Spam Bad Web Bot Web App Attack
🇭🇰 xTom	2021-08-29 07:09:15 (4 years ago)	Aug 29 11:09:03 server sshd[58031]: Invalid user admin from 49.228.169.167 port 25477 Aug 29 11:09:0 ... show more Aug 29 11:09:03 server sshd[58031]: Invalid user admin from 49.228.169.167 port 25477 Aug 29 11:09:06 server sshd[58033]: Invalid user admin from 49.228.169.167 port 28415 Aug 29 11:09:09 server sshd[58035]: Invalid user admin from 49.228.169.167 port 29956 Aug 29 11:09:12 server sshd[58037]: Invalid user admin from 49.228.169.167 port 30769 Aug 29 11:09:15 server sshd[58039]: Invalid user admin from 49.228.169.167 port 64793 ... show less	Brute-Force SSH
🇲🇾 syokadmin	2021-08-29 04:30:15 (4 years ago)	(mod_security) mod_security (id:949110) triggered by 49.228.169.167 (TH/Thailand/49-228-169-0.24.nat ... show more (mod_security) mod_security (id:949110) triggered by 49.228.169.167 (TH/Thailand/49-228-169-0.24.nat.tls1b-cgn02.myaisfibre.com): 1 in the last 3600 secs show less	Brute-Force

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 201.16.238.49

🇳🇬 197.242.249.122

🇫🇮 147.185.133.47

🇹🇭 118.175.93.34

🇧🇩 103.183.62.3

🇿🇦 102.220.85.131

🇩🇪 213.209.159.56

🇧🇬 91.92.40.171

🇫🇷 84.247.169.208

🇫🇷 51.159.149.103

🇸🇬 47.79.207.106

🇨🇿 46.135.100.183

🇯🇵 43.165.169.74

🇲🇽 187.191.48.9

🇺🇸 129.153.145.135

🇨🇳 117.181.205.178

🇧🇷 45.191.209.248

🇺🇸 170.106.152.218

🇫🇮 147.185.133.229

🇰🇷 115.178.75.243