JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.208.49.188

154.208.49.188 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 23%: ?

23%

ISP	IN CABLE INTERNET PRIVATE LIMITED
Usage Type	Fixed Line ISP
ASN	AS150750
Domain Name	incableinternet.com
Country	🇵🇰 Pakistan
City	Lahore, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.208.49.188

Whois 154.208.49.188

IP Abuse Reports for 154.208.49.188:

This IP address has been reported a total of 16 times from 10 distinct sources. 154.208.49.188 was first reported on March 2nd 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 femboy.cat	2026-06-22 06:07:35 (2 days ago)	Port scan to tcp/135 from 154.208.49.188	Brute-Force
🇺🇸 drewf.ink	2026-06-18 15:41:16 (6 days ago)	[15:41] Port scanning. Port(s) scanned: TCP/135	Port Scan
🇺🇸 drewf.ink	2026-06-18 15:17:00 (6 days ago)	[15:17] Port scanning. Port(s) scanned: TCP/135	Port Scan
🇩🇪 femboy.cat	2026-06-10 09:26:26 (2 weeks ago)	Port scan to tcp/445 from 154.208.49.188	Brute-Force
🇨🇦 smick	2026-06-03 09:17:15 (3 weeks ago)	Brute-force attack.	Brute-Force
🇩🇪 phil2k	2026-04-29 03:38:37 (1 month ago)	Firewall: Within 2026-04-28 17:21:56 - 2026-04-28 17:21:56 CEST(+0200) identified: unallowed access ... show more Firewall: Within 2026-04-28 17:21:56 - 2026-04-28 17:21:56 CEST(+0200) identified: unallowed access from 154.208.49.188 on port 445(microsoft-ds) (1 trial) Fail2ban: Within 2026-04-28 17:21:56 - 2026-04-28 17:21:57 CEST(+0200) banned: 4 times by fail2ban[firewall]; 4 times by fail2ban[recidive] show less	Port Scan Brute-Force
🇩🇪 phil2k	2026-04-28 15:21:58 (1 month ago)	fail2ban:firewall:2026-04-28T17:21:56.031124+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> ... show more fail2ban:firewall:2026-04-28T17:21:56.031124+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> OUT= MAC=<ANONYMIZED_MAC> SRC=154.208.49.188 DST=<ANONYMIZED_IP> LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=23293 DF PROTO=TCP SPT=54882 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 2026-04-28T17:21:56.745651+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> OUT= MAC=<ANONYMIZED_MAC> SRC=154.208.49.188 DST=<ANONYMIZED_IP> LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=23524 DF PROTO=TCP SPT=54882 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 show less	DDoS Attack Port Scan Brute-Force
Anonymous	2026-03-26 07:34:07 (2 months ago)	Port-Scan	Port Scan
🇸🇬 drewf.ink	2026-03-17 10:55:28 (3 months ago)	[10:55] Port scanning. Port(s) scanned: TCP/135	Port Scan
🇸🇬 drewf.ink	2026-03-17 10:04:15 (3 months ago)	[10:04] Port scanning. Port(s) scanned: TCP/135	Port Scan
🇺🇸 sumnone	2026-03-17 08:18:10 (3 months ago)	Port probing on unauthorized port 445	Port Scan Hacking Exploited Host
🇨🇦 Largnet SOC	2026-03-11 06:00:06 (3 months ago)	154.208.49.188 triggered Icarus honeypot on port 445. Check us out on github.	Port Scan Hacking
🇺🇸 NXTwoThou	2026-03-09 09:02:11 (3 months ago)	NTLM	Brute-Force
🇺🇸 donarev419	2026-03-05 08:10:35 (3 months ago)	Connection to port 135 with data transfer. Data preview:	Port Scan Hacking
🇨🇦 smick	2026-03-05 06:43:17 (3 months ago)	Brute-force attack.	Brute-Force

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.230

🇺🇸 172.236.228.222

🇳🇱 2a12:da82:4567:d7a1:e9fb:5c31:16da:6328

🇺🇸 192.155.88.246

🇮🇩 180.245.144.97

🇺🇸 170.187.165.134

🇺🇸 164.153.60.199

🇮🇩 163.7.15.232

🇮🇩 163.7.13.217

🇺🇸 162.216.149.114

🇧🇩 160.187.191.71

🇺🇸 159.26.100.224

🇺🇸 159.26.99.226

🇺🇸 104.152.52.61

🇺🇸 91.230.168.13

🇬🇧 86.155.26.166

🇨🇦 85.217.149.63

🇺🇸 77.110.122.180

🇺🇸 74.207.253.22

🇨🇦 68.183.204.21