JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 49.228.88.201

49.228.88.201 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 0%: ?

ISP	AIS Fibre
Usage Type	Mobile ISP
ASN	AS133481
Hostname(s)	49-228-88-0.24.nat.cwdc-cgn03.myaisfibre.com
Domain Name	ais.th
Country	🇹🇭 Thailand
City	Bangkok, Bangkok

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 49.228.88.201

Whois 49.228.88.201

IP Abuse Reports for 49.228.88.201:

This IP address has been reported a total of 25 times from 23 distinct sources. 49.228.88.201 was first reported on October 29th 2025, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2025-10-31 20:09:39 (7 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-10-31 00:09:38 (7 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-10-30 20:09:39 (7 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 AS200819	2025-10-29 17:26:24 (7 months ago)	2025-10-29T17:23:55.009336+00:00 ns101143 sshd[3130103]: Failed password for invalid user igor from ... show more 2025-10-29T17:23:55.009336+00:00 ns101143 sshd[3130103]: Failed password for invalid user igor from 49.228.88.201 port 57378 ssh2 2025-10-29T17:24:07.469338+00:00 ns101143 sshd[3130339]: Invalid user thibault from 49.228.88.201 port 45258 2025-10-29T17:24:07.471168+00:00 ns101143 sshd[3130339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.228.88.201 2025-10-29T17:24:09.399380+00:00 ns101143 sshd[3130339]: Failed password for invalid user thibault from 49.228.88.201 port 45258 ssh2 2025-10-29T17:26:24.139966+00:00 ns101143 sshd[3132484]: Invalid user hiroshi from 49.228.88.201 port 40752 ... show less	Brute-Force
🇩🇪 formality	2025-10-29 17:23:33 (7 months ago)	Invalid user igor from 49.228.88.201 port 18724	Brute-Force SSH
🇩🇪 Freenex1911	2025-10-29 17:02:26 (7 months ago)	2025-10-29T18:02:14.003370+01:00 pve sshd-session[790095]: pam_unix(sshd:auth): authentication failu ... show more 2025-10-29T18:02:14.003370+01:00 pve sshd-session[790095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.228.88.201 user=root 2025-10-29T18:02:15.918960+01:00 pve sshd-session[790095]: Failed password for root from 49.228.88.201 port 35698 ssh2 2025-10-29T18:02:25.911030+01:00 pve sshd-session[790177]: Invalid user finn from 49.228.88.201 port 36196 ... show less	Brute-Force SSH
🇩🇪 ghostwarriors	2025-10-29 16:50:40 (7 months ago)	Unauthorized connection attempt detected, SSH Brute-Force	Port Scan Brute-Force SSH
🇩🇪 giata	2025-10-29 16:46:43 (7 months ago)	2025-10-29T16:46:30.061036 upload sshd[1062238]: Failed password for root from 49.228.88.201 port 56 ... show more 2025-10-29T16:46:30.061036 upload sshd[1062238]: Failed password for root from 49.228.88.201 port 56450 ssh2 2025-10-29T16:46:40.645787 upload sshd[1062241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.228.88.201 user=root 2025-10-29T16:46:42.433720 upload sshd[1062241]: Failed password for root from 49.228.88.201 port 38294 ssh2 ... show less	Brute-Force SSH
🇬🇧 spufidoo	2025-10-29 16:45:40 (7 months ago)	2025-10-29T17:45:36.450944+01:00 heimdall kernel: [4431105.736461] [UFW BLOCK] IN=eth0 OUT= MAC=b8:2 ... show more 2025-10-29T17:45:36.450944+01:00 heimdall kernel: [4431105.736461] [UFW BLOCK] IN=eth0 OUT= MAC=b8:27:eb:a2:a7:d3:d4:05:de:c6:00:32:08:00:45:00:00:3c:ed:5c:40:00:2f:06:0e:bd SRC=49.228.88.201 DST=192.168.4.77 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=60764 DF PROTO=TCP SPT=38926 DPT=22 WINDOW=64240 RES=0x00 SYN URGP=0 2025-10-29T17:45:37.458556+01:00 heimdall kernel: [4431106.744096] [UFW BLOCK] IN=eth0 OUT= MAC=b8:27:eb:a2:a7:d3:d4:05:de:c6:00:32:08:00:45:00:00:3c:ed:5d:40:00:2f:06:0e:bc SRC=49.228.88.201 DST=192.168.4.77 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=60765 DF PROTO=TCP SPT=38926 DPT=22 WINDOW=64240 RES=0x00 SYN URGP=0 2025-10-29T17:45:38.482900+01:00 heimdall kernel: [4431107.768402] [UFW BLOCK] IN=eth0 OUT= MAC=b8:27:eb:a2:a7:d3:d4:05:de:c6:00:32:08:00:45:00:00:3c:ed:5e:40:00:2f:06:0e:bb SRC=49.228.88.201 DST=192.168.4.77 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=60766 DF PROTO=TCP SPT=38926 DPT=22 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Brute-Force SSH
🇺🇸 z3rg	2025-10-29 16:41:07 (7 months ago)	2025-10-29T12:39:24.563992-04:00 sputnik3 sshd[1647552]: pam_unix(sshd:auth): authentication failure ... show more 2025-10-29T12:39:24.563992-04:00 sputnik3 sshd[1647552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.228.88.201 2025-10-29T12:39:26.497528-04:00 sputnik3 sshd[1647552]: Failed password for invalid user az from 49.228.88.201 port 43530 ssh2 2025-10-29T12:41:05.490241-04:00 sputnik3 sshd[1648212]: Invalid user odoo17 from 49.228.88.201 port 41888 ... show less	Brute-Force SSH
Anonymous	2025-10-29 16:36:30 (7 months ago)	$f2bV_matches	Brute-Force SSH
🇬🇧 www.elivecd.org	2025-10-29 16:35:03 (7 months ago)	2025-10-29T16:32:43.881336+00:00 hostvu2 sshd[2661221]: Failed password for invalid user ocr from 49 ... show more 2025-10-29T16:32:43.881336+00:00 hostvu2 sshd[2661221]: Failed password for invalid user ocr from 49.228.88.201 port 45676 ssh2 2025-10-29T16:33:31.807117+00:00 hostvu2 sshd[2662731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.228.88.201 user=root 2025-10-29T16:33:32.944361+00:00 hostvu2 sshd[2662731]: Failed password for root from 49.228.88.201 port 37330 ssh2 2025-10-29T16:35:01.696569+00:00 hostvu2 sshd[2662831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.228.88.201 user=root 2025-10-29T16:35:03.190144+00:00 hostvu2 sshd[2662831]: Failed password for root from 49.228.88.201 port 57842 ssh2 ... show less	SSH
🇩🇪 Onno Achterndiek	2025-10-29 16:33:20 (7 months ago)	Oct 29 17:32:17 web2 sshd[33016]: Failed password for root from 49.228.88.201 port 36326 ssh2 Oct 29 ... show more Oct 29 17:32:17 web2 sshd[33016]: Failed password for root from 49.228.88.201 port 36326 ssh2 Oct 29 17:33:20 web2 sshd[33018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.228.88.201 show less	Brute-Force SSH
🇺🇸 bigscoots.com	2025-10-29 16:25:13 (7 months ago)	(sshd) Failed SSH login from 49.228.88.201 (TH/Thailand/49-228-88-0.24.nat.cwdc-cgn03.myaisfibre.com ... show more (sshd) Failed SSH login from 49.228.88.201 (TH/Thailand/49-228-88-0.24.nat.cwdc-cgn03.myaisfibre.com): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Oct 29 11:23:47 13862 sshd[6312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.228.88.201 user=root Oct 29 11:23:49 13862 sshd[6312]: Failed password for root from 49.228.88.201 port 47302 ssh2 Oct 29 11:24:36 13862 sshd[6431]: Invalid user nagios from 49.228.88.201 port 37418 Oct 29 11:24:38 13862 sshd[6431]: Failed password for invalid user nagios from 49.228.88.201 port 37418 ssh2 Oct 29 11:25:08 13862 sshd[6575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.228.88.201 user=root show less	Brute-Force SSH
🇨🇿 lp	2025-10-29 16:19:54 (7 months ago)	SSH Brute force: 14 attempts were recorded from 49.228.88.201 2025-10-29T15:46:15+01:00 Disconnected ... show more SSH Brute force: 14 attempts were recorded from 49.228.88.201 2025-10-29T15:46:15+01:00 Disconnected from authenticating user root 49.228.88.201 port 57056 [preauth] 2025-10-29T15:46:55+01:00 Invalid user me from 49.228.88.201 port 39310 2025-10-29T15:48:01+01:00 Invalid user pivpn from 49.228.88.201 port 45218 2025-10-29T15:48:25+01:00 Invalid user cronuser from 49.228.88.201 port 54188 2025-10-29T15:48:50+01:00 Invalid user lala from 49.228.88.201 port 52144 2025-10-29T15:50:40+01:00 Disconnected from authenticating user root 49.228.88.201 port 37240 [preauth] 2025-10-29T15:51:11+01:00 Disconnected from authenticating user root 49.228.88.201 port 34796 [preauth] 2025-10-29T15:51:31+01:00 Invalid user cisco from 49.228.88.201 port 59624 2025-10-29T15:52:06+01:00 Disconnected from authenticating user root 49.228.88.201 port 42330 [preauth] 2025-10-29T15:52:49+01:00 Disconnected from auth show less	Brute-Force SSH

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 2804:1690:825:d57f:29f6:9ff7:167a:36a

🇲🇦 196.217.4.210

🇧🇷 192.145.206.69

🇳🇱 176.65.148.185

🇻🇳 171.234.8.95

🇦🇿 158.181.44.82

🇮🇳 152.59.146.218

🇨🇳 121.29.149.212

🇺🇸 52.91.2.81

🇳🇱 45.153.34.71

🇻🇳 14.245.166.71

🇰🇷 223.171.144.229

🇮🇩 210.87.92.147

🇪🇬 197.52.194.24

🇲🇽 186.96.145.241

🇷🇺 185.231.153.163

🇻🇳 171.239.92.87

🇳🇬 152.32.140.39

🇧🇩 123.49.60.158

🇺🇸 107.167.8.34