JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.186.166.154

213.186.166.154 was found in our database!

This IP was reported 390 times. Confidence of Abuse is 81%: ?

81%

ISP	Jordan Media City(ART)
Usage Type	Fixed Line ISP
ASN	AS8376
Domain Name	ucjordan.com
Country	🇯🇴 Jordan
City	Amman, Amman

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.186.166.154

Whois 213.186.166.154

IP Abuse Reports for 213.186.166.154:

This IP address has been reported a total of 390 times from 66 distinct sources. 213.186.166.154 was first reported on September 6th 2025, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 dyln	2026-06-26 01:56:58 (16 hours ago)	Dyls honeypot brute-force: SMB (4 total hits)	Brute-Force
🇩🇪 Mailguard-FRD	2026-06-24 03:44:52 (2 days ago)	1782272691 - 06/24/2026 05:44:51 Host: 213.186.166.154/213.186.166.154 Port: 445 TCP Blocked ...	Port Scan
🇺🇸 sumnone	2026-06-23 21:57:58 (2 days ago)	Port probing on unauthorized port 445	Port Scan Hacking Exploited Host
🇫🇷 Coco Bongo	2026-06-21 04:20:43 (5 days ago)	1782015642 - 06/21/2026 06:20:42 Host: 213.186.166.154/213.186.166.154 Port: 445 TCP Blocked ...	Port Scan
🇫🇷 Little Iguana	2026-06-20 16:58:55 (6 days ago)	trying to access non-authorized port	Port Scan
🇵🇱 nfsec.pl	2026-06-18 06:54:13 (1 week ago)	Detected: TCP scan on port: 445 with flags: SYN	Port Scan
🇺🇸 RAP	2026-06-17 07:56:42 (1 week ago)	2026-06-17 07:56:42 UTC Unauthorized activity to TCP port 445. SMB	Port Scan
🇬🇧 PeravixGroup	2026-06-17 02:30:52 (1 week ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 Birdo	2026-06-17 00:00:32 (1 week ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
Anonymous	2026-06-13 19:40:35 (1 week ago)	Unauthorized connection to SMB port 445	Port Scan
🇬🇧 PeravixGroup	2026-06-10 23:24:11 (2 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 drewf.ink	2026-06-10 17:19:33 (2 weeks ago)	[17:19] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [17:19] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
🇺🇸 drewf.ink	2026-06-10 12:22:29 (2 weeks ago)	[12:22] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [12:22] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
🇺🇸 drewf.ink	2026-06-10 04:59:40 (2 weeks ago)	[04:59] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [04:59] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
🇫🇷 vtchost.com	2026-06-10 00:27:22 (2 weeks ago)	Jun 10 02:27:21 vtchost kernel: [148160.636892] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:1 ... show more Jun 10 02:27:21 vtchost kernel: [148160.636892] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:2a:b3:08:00 SRC=213.186.166.154 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x00 TTL=113 ID=15501 DF PROTO=TCP SPT=63970 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan

Showing 1 to 15 of 390 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.94

🇨🇴 200.10.29.236

🇺🇸 162.216.150.41

🇫🇮 147.185.133.113

🇦🇺 103.63.231.168

🇨🇳 61.155.106.101

🇳🇱 20.71.254.235

🇩🇪 185.168.29.14

🇧🇷 177.136.248.227

🇺🇸 173.239.214.243

🇳🇱 169.150.196.198

🇨🇳 111.225.148.72

🇳🇱 102.129.200.117

🇿🇲 102.23.122.235

🇳🇴 87.120.104.75

🇬🇧 86.149.138.167

🇧🇭 82.194.51.30

🇱🇹 62.60.130.219

🇮🇩 165.154.151.176

🇫🇮 147.185.133.205