Suspicious Traffic from Docker Container on Umbrel 1.4.2 > 193.142.147.196:1488

[mero20j1]

Hello,

I’m observing unusual traffic to a specific IP and port from the Docker container bitcoin_i2pd_daemon_1 on my Umbrel 1.4.2 setup.

While I’m not certain it’s malicious, the IP is blacklisted and the port is commonly associated with malware or command-and-control (C2) activity, which raises some concerns.

I verified the Docker image hash for purplei2p/i2pd:release-2.44.0 (sha256:d154a599…) and it matches the expected value, so the image itself appears to be authentic.

Am I just being overly cautious, or is this genuinely suspicious?

Best regards,