This IP address has been reported a total of
98
times from
52 distinct
sources.
188.166.49.139 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
Anonymous
Port scan / connection attempts on ports 465/TCP, 4782/TCP, 5552/TCP, 8082/TCP to unused IP
UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ...
show moreUFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=188.166.49.139; proto=TCP; source_port=61009; target_port=10000; flags=SYN
show less
Blocked by UFW (TCP on 7000)
Source port: 61004
TTL: 238
Packet length: 44
TOS: 0x08
This report (f ...
show moreBlocked by UFW (TCP on 7000)
Source port: 61004
TTL: 238
Packet length: 44
TOS: 0x08
This report (for 188.166.49.139) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Blocked by UFW on ns03 [8086/tcp] Source port: 61007 TTL: 246 Packet length: 44 TOS: 0x00 This repo ...
show moreBlocked by UFW on ns03 [8086/tcp] Source port: 61007 TTL: 246 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Honeypot hit: HTTP/1.1 request on 11000
GET /
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) ...
show moreHoneypot hit: HTTP/1.1 request on 11000
GET /
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:142.0) Gecko/20100101 Firefox/142.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate; 11000 [2] TCP
show less
2025-12-10T13:58:46.510895+01:00 beastie.lan.nrvl.net sshd[2198118]: Invalid user es from 188.166.49 ...
show more2025-12-10T13:58:46.510895+01:00 beastie.lan.nrvl.net sshd[2198118]: Invalid user es from 188.166.49.139 port 44826
2025-12-10T13:59:19.644193+01:00 beastie.lan.nrvl.net sshd[2198145]: Invalid user es from 188.166.49.139 port 49888
2025-12-10T13:59:52.285696+01:00 beastie.lan.nrvl.net sshd[2198172]: Invalid user es from 188.166.49.139 port 33146
2025-12-10T14:00:26.848201+01:00 beastie.lan.nrvl.net sshd[2198284]: Invalid user es from 188.166.49.139 port 57820
2025-12-10T14:00:59.360318+01:00 beastie.lan.nrvl.net sshd[2198310]: Invalid user es from 188.166.49.139 port 45004
...
show less
2025-12-10T13:49:44.554503+01:00 pokevador sshd[457623]: Failed password for mysql from 188.166.49.1 ...
show more2025-12-10T13:49:44.554503+01:00 pokevador sshd[457623]: Failed password for mysql from 188.166.49.139 port 45710 ssh2
2025-12-10T13:50:15.951649+01:00 pokevador sshd[457999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.49.139 user=mysql
2025-12-10T13:50:18.425429+01:00 pokevador sshd[457999]: Failed password for mysql from 188.166.49.139 port 47562 ssh2
...
show less
Brute-Force
SSH
Anonymous
2025-12-10T13:47:40.870240+01:00 raspberrypi sshd[1874426]: Invalid user nginx from 188.166.49.139 p ...
show more2025-12-10T13:47:40.870240+01:00 raspberrypi sshd[1874426]: Invalid user nginx from 188.166.49.139 port 38336
2025-12-10T13:48:12.053043+01:00 raspberrypi sshd[1874587]: Invalid user nginx from 188.166.49.139 port 60200
2025-12-10T13:48:45.422082+01:00 raspberrypi sshd[1874903]: Invalid user nginx from 188.166.49.139 port 33670
...
show less
2025-12-10T12:42:58.212796+00:00 test-privategpt sshd[3636030]: Invalid user nginx from 188.166.49.1 ...
show more2025-12-10T12:42:58.212796+00:00 test-privategpt sshd[3636030]: Invalid user nginx from 188.166.49.139 port 53022
2025-12-10T12:43:29.061341+00:00 test-privategpt sshd[3636136]: Invalid user nginx from 188.166.49.139 port 34060
...
show less
Brute-Force
Anonymous
Dec 10 13:41:16 C1D543E sshd[568889]: Invalid user nginx from 188.166.49.139 port 35834
Dec 10 13:41 ...
show moreDec 10 13:41:16 C1D543E sshd[568889]: Invalid user nginx from 188.166.49.139 port 35834
Dec 10 13:41:16 C1D543E sshd[568889]: Failed password for invalid user nginx from 188.166.49.139 port 35834 ssh2
Dec 10 13:41:48 C1D543E sshd[568913]: Invalid user nginx from 188.166.49.139 port 41918
Dec 10 13:41:48 C1D543E sshd[568913]: Failed password for invalid user nginx from 188.166.49.139 port 41918 ssh2
Dec 10 13:42:18 C1D543E sshd[568917]: Invalid user nginx from 188.166.49.139 port 36478
...
show less
Brute-Force
SSH
Showing 1 to
15
of 98 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ