JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.56.148.166

194.56.148.166 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 98%: ?

98%

ISP	Sefroyek Pardaz Engineering PJSC
Usage Type	Commercial
ASN	AS60248
Domain Name	shahrad.net
Country	🇮🇷 Iran (Islamic Republic of)
City	Tehran, Tehran

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.56.148.166

Whois 194.56.148.166

IP Abuse Reports for 194.56.148.166:

This IP address has been reported a total of 22 times from 18 distinct sources. 194.56.148.166 was first reported on June 17th 2026, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bigscoots.com	2026-06-20 12:50:37 (9 hours ago)	194.56.148.166 (IR/Iran/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Port ... show more 194.56.148.166 (IR/Iran/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 20 07:46:03 15236 sshd[30414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.107.159.38 user=root Jun 20 07:46:05 15236 sshd[30414]: Failed password for root from 91.107.159.38 port 36242 ssh2 Jun 20 07:48:43 15236 sshd[31680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.56.148.166 user=root Jun 20 07:48:45 15236 sshd[31680]: Failed password for root from 194.56.148.166 port 56644 ssh2 Jun 20 07:50:21 15236 sshd[32633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.107.159.38 user=root IP Addresses Blocked: 91.107.159.38 (DE/Germany/static.38.159.107.91.clients.your-server.de) show less	Brute-Force SSH
🇳🇱 paradoxnetworks	2026-06-19 23:25:58 (22 hours ago)	2026-06-19T23:20:03.757090+00:00 edge-drt-ams03.int.pdx.net.uk sshd-session[216704]: Invalid user sw ... show more 2026-06-19T23:20:03.757090+00:00 edge-drt-ams03.int.pdx.net.uk sshd-session[216704]: Invalid user sws from 194.56.148.166 port 35318 2026-06-19T23:24:27.330453+00:00 edge-drt-ams03.int.pdx.net.uk sshd-session[217096]: Invalid user iprint from 194.56.148.166 port 40814 2026-06-19T23:25:57.255125+00:00 edge-drt-ams03.int.pdx.net.uk sshd-session[217238]: Invalid user patches from 194.56.148.166 port 40578 ... show less	Brute-Force SSH
🇭🇺 szasa	2026-06-19 22:34:00 (23 hours ago)	Jun 20 00:26:26 monitoring01 sshd[3965541]: Invalid user llm from 194.56.148.166 port 57122 Jun 20 0 ... show more Jun 20 00:26:26 monitoring01 sshd[3965541]: Invalid user llm from 194.56.148.166 port 57122 Jun 20 00:33:59 monitoring01 sshd[3966639]: Invalid user bwadmin from 194.56.148.166 port 38596 Jun 20 00:33:59 monitoring01 sshd[3966639]: Invalid user bwadmin from 194.56.148.166 port 38596 ... show less	Brute-Force SSH
🇩🇪 ghostwarriors	2026-06-19 22:20:31 (1 day ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇭🇺 szasa	2026-06-19 22:17:30 (1 day ago)	Jun 19 23:55:18 monitoring01 sshd[3959184]: Invalid user support from 194.56.148.166 port 56430 Jun ... show more Jun 19 23:55:18 monitoring01 sshd[3959184]: Invalid user support from 194.56.148.166 port 56430 Jun 20 00:11:32 monitoring01 sshd[3962735]: Invalid user thomas from 194.56.148.166 port 39228 Jun 20 00:14:31 monitoring01 sshd[3962990]: Invalid user donna from 194.56.148.166 port 43250 Jun 20 00:17:30 monitoring01 sshd[3963778]: Invalid user cy from 194.56.148.166 port 33792 ... show less	Brute-Force SSH
🇫🇷 kisiek	2026-06-19 22:17:10 (1 day ago)	(sshd) Failed SSH login from 194.56.148.166 (IR/Iran/-): 5 in the last 3600 secs; Ports: ; Directio ... show more (sshd) Failed SSH login from 194.56.148.166 (IR/Iran/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_SSHD; Logs: Jun 20 00:08:07 zone sshd[4189226]: Invalid user gitlab-runner from 194.56.148.166 port 48934 Jun 20 00:08:10 zone sshd[4189226]: Failed password for invalid user gitlab-runner from 194.56.148.166 port 48934 ssh2 Jun 20 00:09:39 zone sshd[4189477]: Invalid user app from 194.56.148.166 port 58402 Jun 20 00:09:41 zone sshd[4189477]: Failed password for invalid user app from 194.56.148.166 port 58402 ssh2 Jun 20 00:17:07 zone sshd[4192925]: Invalid user cy from 194.56.148.166 port 47052 show less	Port Scan
🇩🇪 GrafSchnüffel	2026-06-19 22:11:25 (1 day ago)	2026-06-19T23:53:39.121060+02:00 admin sshd[1137431]: Failed password for invalid user support from ... show more 2026-06-19T23:53:39.121060+02:00 admin sshd[1137431]: Failed password for invalid user support from 194.56.148.166 port 44518 ssh2 2026-06-20T00:08:23.020774+02:00 admin sshd[1268988]: Invalid user gitlab-runner from 194.56.148.166 port 50690 2026-06-20T00:08:23.024142+02:00 admin sshd[1268988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.56.148.166 2026-06-20T00:08:24.917460+02:00 admin sshd[1268988]: Failed password for invalid user gitlab-runner from 194.56.148.166 port 50690 ssh2 2026-06-20T00:11:24.859814+02:00 admin sshd[1270215]: Invalid user thomas from 194.56.148.166 port 45602 ... show less	Brute-Force SSH
🇺🇸 yzfdude1	2026-06-19 21:27:50 (1 day ago)	Jun 19 15:11:14 b146-29 sshd[329437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu ... show more Jun 19 15:11:14 b146-29 sshd[329437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.56.148.166 Jun 19 15:11:16 b146-29 sshd[329437]: Failed password for invalid user gin from 194.56.148.166 port 50912 ssh2 Jun 19 15:27:50 b146-29 sshd[329585]: Invalid user center from 194.56.148.166 port 38336 ... show less	Brute-Force SSH
Anonymous	2026-06-19 21:22:06 (1 day ago)	2026-06-19T21:16:46.617024+00:00 ubuntu sshd[462884]: Failed password for invalid user gin from 194. ... show more 2026-06-19T21:16:46.617024+00:00 ubuntu sshd[462884]: Failed password for invalid user gin from 194.56.148.166 port 35842 ssh2 2026-06-19T21:16:47.965584+00:00 ubuntu sshd[462884]: Disconnected from invalid user gin 194.56.148.166 port 35842 [preauth] 2026-06-19T21:22:04.064436+00:00 ubuntu sshd[463221]: Invalid user plone from 194.56.148.166 port 43470 2026-06-19T21:22:04.067348+00:00 ubuntu sshd[463221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.56.148.166 2026-06-19T21:22:06.120299+00:00 ubuntu sshd[463221]: Failed password for invalid user plone from 194.56.148.166 port 43470 ssh2 ... show less	Brute-Force SSH
🇸🇬 eleven	2026-06-19 20:21:38 (1 day ago)		Brute-Force SSH
Anonymous	2026-06-19 19:37:55 (1 day ago)	2026-06-19T12:31:52.178029 monitor sshd[3889626]: Invalid user ubuntu from 194.56.148.166 port 42604 ... show more 2026-06-19T12:31:52.178029 monitor sshd[3889626]: Invalid user ubuntu from 194.56.148.166 port 42604 2026-06-19T12:33:21.233311 monitor sshd[3890002]: Invalid user new from 194.56.148.166 port 36548 2026-06-19T12:37:54.492431 monitor sshd[3891171]: Invalid user alex from 194.56.148.166 port 33792 ... show less	Brute-Force SSH
🇺🇸 paradoxnetworks	2026-06-19 19:20:12 (1 day ago)	2026-06-19T19:09:49.741727+00:00 edge-drt-dal01.int.pdx.net.uk sshd[1389700]: Invalid user book from ... show more 2026-06-19T19:09:49.741727+00:00 edge-drt-dal01.int.pdx.net.uk sshd[1389700]: Invalid user book from 194.56.148.166 port 46792 2026-06-19T19:15:46.516398+00:00 edge-drt-dal01.int.pdx.net.uk sshd[1390164]: Invalid user abhi from 194.56.148.166 port 41568 2026-06-19T19:20:11.728420+00:00 edge-drt-dal01.int.pdx.net.uk sshd[1390498]: Invalid user testuser from 194.56.148.166 port 57602 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-19 19:15:22 (1 day ago)	194.56.148.166 (IR/Iran/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Port ... show more 194.56.148.166 (IR/Iran/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 19 14:00:51 13719 sshd[25014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.107.159.38 user=root Jun 19 14:00:54 13719 sshd[25014]: Failed password for root from 91.107.159.38 port 60004 ssh2 Jun 19 14:09:08 13719 sshd[29818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.107.159.38 user=root Jun 19 14:09:09 13719 sshd[29818]: Failed password for root from 91.107.159.38 port 54394 ssh2 Jun 19 14:15:05 13719 sshd[689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.56.148.166 user=root IP Addresses Blocked: 91.107.159.38 (DE/Germany/static.38.159.107.91.clients.your-server.de) show less	Brute-Force SSH
🇩🇪 NetWatch	2026-06-19 19:00:51 (1 day ago)	The IP 194.56.148.166 tried multiple SSH_BRUTE_FORCE logins	Brute-Force
🇸🇬 itachi1706	2026-06-19 18:33:44 (1 day ago)	2026-06-19T18:32:22.419266+00:00 sg-jumphost-server sshd[1354276]: Disconnected from authenticating ... show more 2026-06-19T18:32:22.419266+00:00 sg-jumphost-server sshd[1354276]: Disconnected from authenticating user root 194.56.148.166 port 47552 [preauth] 2026-06-19T18:33:43.516504+00:00 sg-jumphost-server sshd[1354336]: Invalid user logan from 194.56.148.166 port 56532 ... show less	Brute-Force SSH

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.71.60.5

🇺🇸 153.66.28.132

🇸🇬 128.199.209.169

🇨🇦 68.147.224.123

🇬🇧 35.203.210.114

🇸🇪 185.246.130.20

🇺🇸 162.216.149.42

🇺🇸 64.23.161.101

🇺🇸 54.90.98.111

🇬🇭 41.204.63.118

🇺🇸 185.180.141.69

🇫🇷 185.177.72.58

🇷🇺 185.2.106.102

🇲🇾 149.118.148.214

🇺🇸 104.210.140.139

🇺🇸 54.81.211.170

🇺🇸 52.167.144.169

🇻🇳 36.50.135.229

🇯🇵 8.209.237.154

🇰🇷 211.252.98.159