JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.0.23.19

154.0.23.19 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 48%: ?

48%

ISP	Mega Internet Infrastructure
Usage Type	Fixed Line ISP
ASN	AS37711
Domain Name	kal.bw
Country	🇧🇼 Botswana
City	Gaborone, Gaborone

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.0.23.19

Whois 154.0.23.19

IP Abuse Reports for 154.0.23.19:

This IP address has been reported a total of 22 times from 17 distinct sources. 154.0.23.19 was first reported on April 29th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 nitrix	2026-05-25 08:03:32 (2 weeks ago)	SYN scanning detected on port 445	Port Scan
🇳🇱 BIV	2026-05-25 04:52:13 (2 weeks ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 445. Automated tiered ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 445. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇫🇷 Coco Bongo	2026-05-24 23:20:36 (2 weeks ago)	1779664835 - 05/25/2026 01:20:35 Host: 154.0.23.19/154.0.23.19 Port: 445 TCP Blocked ...	Port Scan
🇱🇹 NotACaptcha	2026-05-24 22:38:03 (2 weeks ago)	Unauthorised access (May 25 01:38) SRC=154.0.23.19 LEN=52 TTL=115 ID=15876 DF TCP DPT=445 WINDOW=819 ... show more Unauthorised access (May 25 01:38) SRC=154.0.23.19 LEN=52 TTL=115 ID=15876 DF TCP DPT=445 WINDOW=8192 SYN show less	Port Scan
🇫🇷 vtchost.com	2026-05-23 14:31:41 (2 weeks ago)	May 23 16:31:41 vtchost kernel: [112421.278550] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:1 ... show more May 23 16:31:41 vtchost kernel: [112421.278550] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:2a:b3:08:00 SRC=154.0.23.19 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=10168 DF PROTO=TCP SPT=63963 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 zulzeen	2026-05-22 10:00:11 (3 weeks ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (SMB/Possible Ransomware Attack)	Hacking Brute-Force
Anonymous	2026-05-21 05:34:21 (3 weeks ago)	Unauthorized access (tcp/445/smb)	Port Scan
Anonymous	2026-05-20 23:25:12 (3 weeks ago)	1779319511 - 05/21/2026 01:25:11 Host: 154.0.23.19/154.0.23.19 Port: 445 TCP Blocked ...	Port Scan
🇬🇧 PeravixGroup	2026-05-18 19:34:03 (3 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-17 18:47:30 (3 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇵🇱 nfsec.pl	2026-05-17 08:52:42 (3 weeks ago)	Detected: TCP scan on port: 445 with flags: SYN	Port Scan
Anonymous	2026-05-15 16:55:17 (4 weeks ago)	Unauthorized access (tcp/445/smb)	Port Scan
🇺🇸 knock	2026-05-14 00:54:46 (4 weeks ago)	Knock-Knock honeypot brute-force: SMB (4 total hits)	Brute-Force
🇩🇪 IP Analyzer	2026-05-12 01:00:24 (1 month ago)	Unauthorized connection attempt from IP address 154.0.23.19 on Port 445(SMB)	Port Scan
🇫🇷 sthoyer.de	2026-05-09 08:41:03 (1 month ago)	May 9 10:41:02 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 9 10:41:02 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=154.0.23.19 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=6927 DF PROTO=TCP SPT=49671 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.209

🇪🇸 196.196.150.124

🇺🇸 66.132.186.164

🇸🇬 47.129.223.240

🇬🇧 35.203.211.169

🇮🇳 4.240.96.30

🇰🇷 220.77.214.59

🇺🇸 205.210.31.17

🇩🇪 195.20.239.136

🇳🇱 192.253.248.169

🇪🇨 177.53.215.134

🇺🇸 173.239.214.25

🇺🇸 172.110.223.185

🇵🇪 161.132.50.236

🇨🇳 144.255.80.185

🇮🇳 135.235.218.74

🇨🇳 124.235.135.87

🇨🇳 111.61.87.70

🇵🇰 103.244.172.220

🇺🇸 103.215.74.213