JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.0.131.67

154.0.131.67 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 64%: ?

64%

ISP	ROKE Fixed wireless and fiber
Usage Type	Fixed Line ISP
ASN	AS37063
Domain Name	roketelkom.co.ug
Country	🇺🇬 Uganda
City	Kampala, Central Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.0.131.67

Whois 154.0.131.67

IP Abuse Reports for 154.0.131.67:

This IP address has been reported a total of 134 times from 53 distinct sources. 154.0.131.67 was first reported on August 9th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-06 03:16:43 (1 day ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 dyln	2026-06-05 03:36:15 (2 days ago)	Dyls honeypot brute-force: SMB (4 total hits)	Brute-Force
🇬🇧 PeravixGroup	2026-06-03 07:31:36 (4 days ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 vtchost.com	2026-06-01 02:19:18 (6 days ago)	Jun 1 04:19:17 vtchost kernel: [241303.472579] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:1 ... show more Jun 1 04:19:17 vtchost kernel: [241303.472579] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:2a:b3:08:00 SRC=154.0.131.67 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=17417 DF PROTO=TCP SPT=55931 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 Nerdscave Hosting	2026-06-01 00:51:55 (6 days ago)	[SMB Honeypot Report] Timestamp: 2026-06-01 00:51:25 UTC Port: 54281 No credentials captured Attack ... show more [SMB Honeypot Report] Timestamp: 2026-06-01 00:51:25 UTC Port: 54281 No credentials captured Attack Type: Unauthorized SMB connection attempt show less	Brute-Force Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-31 07:43:07 (1 week ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Yachiyo Runami	2026-05-31 03:28:56 (1 week ago)	Port Scan on Honeypot \| Ports: 445/SMB \| Proto: TCP(1) \| Flags: all SYN \| TTL: 116 \| Len: 52B \| Win: ... show more Port Scan on Honeypot \| Ports: 445/SMB \| Proto: TCP(1) \| Flags: all SYN \| TTL: 116 \| Len: 52B \| Win: 8192(1) \| F2B/ufw-honeypot@2026-05-31T03:28:56Z show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-29 11:35:23 (1 week ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 knock	2026-05-29 01:48:45 (1 week ago)	Knock-Knock honeypot brute-force: SMB (4 total hits)	Brute-Force
🇬🇧 Birdo	2026-05-26 02:07:00 (1 week ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇵🇱 nfsec.pl	2026-05-22 01:05:28 (2 weeks ago)	Detected: TCP scan on port: 445 with flags: SYN	Port Scan
🇬🇧 PeravixGroup	2026-05-20 14:26:53 (2 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 guldkage	2026-05-19 05:19:37 (2 weeks ago)	Unauthorized connection attempt detected from IP address 154.0.131.67 to port 445 (ger-02) [SMB]	Exploited Host
🇫🇷 vtchost.com	2026-05-17 17:35:58 (3 weeks ago)	May 17 19:35:57 vtchost kernel: [209850.110804] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:1 ... show more May 17 19:35:57 vtchost kernel: [209850.110804] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:2a:b3:08:00 SRC=154.0.131.67 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=28875 DF PROTO=TCP SPT=56428 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-05-16 17:08:37 (3 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.71.154.89

🇮🇱 172.70.153.168

🇮🇸 172.69.144.160

🇨🇳 101.126.53.14

🇳🇱 45.153.34.71

🇨🇳 180.168.60.146

🇺🇸 173.239.224.95

🇩🇪 172.70.247.209

🇮🇳 172.69.95.14

🇮🇳 165.232.181.59

🇨🇳 117.187.40.36

🇭🇰 172.253.4.21

🇳🇵 172.71.231.166

🇧🇷 172.69.99.164

🇲🇳 172.68.93.137

🇺🇸 132.145.213.106

🇧🇩 123.49.50.130

🇸🇪 81.226.129.67

🇮🇷 5.232.83.237

🇳🇱 176.65.148.158