JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.12.50.154

154.12.50.154 was found in our database!

This IP was reported 291 times. Confidence of Abuse is 100%: ?

100%

ISP	PSINet, Inc.
Usage Type	Commercial
ASN	AS979
Domain Name	psinet.hn
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.12.50.154

Whois 154.12.50.154

IP Abuse Reports for 154.12.50.154:

This IP address has been reported a total of 291 times from 167 distinct sources. 154.12.50.154 was first reported on April 30th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 helix	2026-05-28 04:34:48 (1 week ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
Anonymous	2026-05-09 16:32:04 (4 weeks ago)	[Firewall] SSH Brute-Force \| Proto: TCP (NEW) \| Src port: 43801 \| Dst port: 22 (SSH) \| Pkt len: 40 \| ... show more [Firewall] SSH Brute-Force \| Proto: TCP (NEW) \| Src port: 43801 \| Dst port: 22 (SSH) \| Pkt len: 40 \| Attempts logged: 2 \| ISP: NetLab Global \| Origin: Los Angeles, United States \| Prior AbuseIPDB score: 100% (290 reports) \| Detected: 2026-05-02 08:44 CST \| Promoted to blacklist after repeated attempts \| Banned: 3h24m38s show less	Brute-Force
🇨🇳 ThreatBook.io	2026-05-06 23:10:04 (1 month ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/154.12.50.154	SSH
🇮🇪 RoboSOC	2026-05-06 08:35:44 (1 month ago)	Port 22 Scan, PTR: PTR record not found	Port Scan
🇬🇧 PeravixGroup	2026-05-06 07:17:02 (1 month ago)	Honeypot detection: SSH brute-force authentication attempt on port 22. Severity: MEDIUM. Aaran.cloud	SSH Brute-Force
🇺🇸 RAP	2026-05-06 05:25:05 (1 month ago)	2026-05-06 05:25:05 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇫🇷 security.rdmc.fr	2026-05-06 05:21:04 (1 month ago)	Port Scan Attack proto:TCP src:63955 dst:23	Port Scan
🇩🇪 ghostwarriors	2026-05-06 05:20:27 (1 month ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇩🇪 iNetWorker	2026-05-06 05:10:40 (1 month ago)	trying to access non-authorized port	Port Scan
🇩🇪 Admins@FBN	2026-05-06 05:09:36 (1 month ago)	FW-PortScan: Traffic Blocked srcport=45072 dstport=2222	Port Scan
Anonymous	2026-05-06 04:57:32 (1 month ago)	Port scan and brute force attack	Port Scan Brute-Force
🇸🇪 sa0azs	2026-05-06 04:54:26 (1 month ago)	2026-05-06T06:53:50.392996+02:00 ErrolFlynn sshd[235065]: pam_unix(sshd:auth): authentication failur ... show more 2026-05-06T06:53:50.392996+02:00 ErrolFlynn sshd[235065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.12.50.154 2026-05-06T06:53:51.942231+02:00 ErrolFlynn sshd[235065]: Failed password for invalid user admin from 154.12.50.154 port 47366 ssh2 2026-05-06T06:54:23.496046+02:00 ErrolFlynn sshd[235076]: Invalid user orangepi from 154.12.50.154 port 50452 ... show less	Brute-Force SSH
🇺🇸 netllama	2026-05-06 04:38:49 (1 month ago)	May 5 21:38:18 netllama sshd-session[1297934]: Invalid user admin from 154.12.50.154 port 46098 May ... show more May 5 21:38:18 netllama sshd-session[1297934]: Invalid user admin from 154.12.50.154 port 46098 May 5 21:38:48 netllama sshd-session[1297968]: Invalid user orangepi from 154.12.50.154 port 35768 ... show less	Brute-Force SSH
🇨🇭 SOC [GOLINE SA]	2026-05-05 10:08:25 (1 month ago)	FortiGate detected IPS attack from IPv4 address 154.12.50.154	Hacking
🇺🇸 AFSI	2026-05-04 19:36:49 (1 month ago)	Web Application Attack 1:300053 - SERVER-WEBAPP Apache HTTP Server httpd directory traversal attempt ... show more Web Application Attack 1:300053 - SERVER-WEBAPP Apache HTTP Server httpd directory traversal attempt) show less	Port Scan Hacking

Showing 1 to 15 of 291 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 151.101.131.6

🇯🇵 103.125.146.110

🇫🇷 51.75.141.245

🇸🇬 47.84.107.173

🇱🇹 216.132.188.53

🇳🇱 176.65.139.211

🇺🇸 167.99.109.156

🇻🇳 113.161.39.122

🇮🇳 103.65.197.150

🇭🇰 23.91.97.170

🇬🇧 213.166.84.48

🇹🇷 185.153.231.44

🇺🇸 147.185.132.246

🇱🇹 45.227.254.170

🇧🇷 45.169.200.254

🇮🇩 16.79.40.252

🇮🇷 5.232.111.36

🇺🇸 167.88.165.95

🇻🇳 160.25.81.6

🇺🇸 152.32.233.27