JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.154.134.195

165.154.134.195 was found in our database!

This IP was reported 3,256 times. Confidence of Abuse is 87%: ?

87%

ISP	UCLOUD INFORMATION TECHNOLOGY (HK) LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS135377
Domain Name	ucloud.cn
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.154.134.195

Whois 165.154.134.195

IP Abuse Reports for 165.154.134.195:

This IP address has been reported a total of 3,256 times from 171 distinct sources. 165.154.134.195 was first reported on March 23rd 2023, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇪 donarev419	2026-06-21 05:06:04 (1 day ago)	Connection to port 4433 with data transfer. Data preview: GET / HTTP/1.1 Host: 51.21.134.169:4433 ... show more Connection to port 4433 with data transfer. Data preview: GET / HTTP/1.1 Host: 51.21.134.169:4433 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US show less	Port Scan Hacking
🇧🇷 opastorello	2026-06-18 17:31:57 (4 days ago)	T-Pot honeypot: 45 hits in 15min on port(s) 49152 (P0f/Honeytrap/Suricata). Port scan / unsolicited ... show more T-Pot honeypot: 45 hits in 15min on port(s) 49152 (P0f/Honeytrap/Suricata). Port scan / unsolicited connection. Automated report. show less	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-18 14:28:47 (4 days ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 49152 GET / User-Agent: Mozilla/5.0 (Macintosh, I ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 49152 GET / User-Agent: Mozilla/5.0 (Macintosh, Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6.1 Safari/605.1.15 Accept-Encoding: gzip; 49152 [6] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
Anonymous	2026-06-18 02:36:29 (4 days ago)	Honeypot hit: HTTP/1.1 request on 49152 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10 ... show more Honeypot hit: HTTP/1.1 request on 49152 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:128.0) Gecko/20100101 Firefox/128.0 Accept-Encoding: gzip; 49152 [6] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇺🇸 kosada.com	2026-06-15 01:21:08 (1 week ago)	Web vulnerability probing (bogus request)	Web App Attack
🇸🇪 KIDOS	2026-06-14 15:35:36 (1 week ago)	Apache monitor: ssrf_log_spoofing	Brute-Force SSH
🇮🇩 PENJAGA.AUM	2026-06-14 10:08:24 (1 week ago)	165.154.134.195 - Attack: Possible XSS attack, js event handler	Web App Attack SQL Injection Spoofing
🇧🇷 diego	2026-06-14 02:45:20 (1 week ago)	[probe-44-49] 2026-06-14 02:28:58, Client: 165.154.134.195, Protocol: 6, Unauthorized activity to HT ... show more [probe-44-49] 2026-06-14 02:28:58, Client: 165.154.134.195, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
🇧🇷 diego	2026-06-13 05:45:27 (1 week ago)	[rede-188] 2026-06-13 05:29:12, Client: 165.154.134.195, Protocol: 6, Unauthorized activity to HTTP: ... show more [rede-188] 2026-06-13 05:29:12, Client: 165.154.134.195, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
🇬🇧 sandra361	2026-06-12 20:42:04 (1 week ago)	Port scan detected: 18 attempts across 1 ports (8181). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=16 ... show more Port scan detected: 18 attempts across 1 ports (8181). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=165.154.134.195 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=60854 DF PROTO=TCP SPT=39838 DPT=8181 WINDOW=64952 RES=0x00 SYN URGP=0 show less	Port Scan
🇧🇷 diego	2026-06-12 13:20:20 (1 week ago)	[probe-44-49] 2026-06-12 13:05:14, Client: 165.154.134.195, Protocol: 6, Unauthorized activity to HT ... show more [probe-44-49] 2026-06-12 13:05:14, Client: 165.154.134.195, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
🇺🇸 donarev419	2026-06-12 04:04:08 (1 week ago)	Connection to port 8080 with data transfer. Data preview: GET / HTTP/1.1 Host: 167.253.66.144:8080 ... show more Connection to port 8080 with data transfer. Data preview: GET / HTTP/1.1 Host: 167.253.66.144:8080 User-Agent: Mozilla/5.0 (SS; Linux i686) AppleWebKit/537. show less	Port Scan Hacking
🇧🇷 diego	2026-06-11 04:13:07 (1 week ago)	[arem1] 2026-06-11 03:56:03, Client: 165.154.134.195, Protocol: 6, Unauthorized activity to HTTP: GE ... show more [arem1] 2026-06-11 03:56:03, Client: 165.154.134.195, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
🇧🇷 diego	2026-06-11 01:15:20 (1 week ago)	[probe-44-49] 2026-06-11 00:59:50, Client: 165.154.134.195, Protocol: 6, Unauthorized activity to HT ... show more [probe-44-49] 2026-06-11 00:59:50, Client: 165.154.134.195, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
🇮🇩 Burayot	2026-06-10 23:21:22 (1 week ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 165.154.134.195 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 165.154.134.195 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack

Showing 1 to 15 of 3256 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 186.29.32.11

🇯🇵 162.43.101.199

🇨🇳 120.53.233.237

🇮🇳 103.250.160.76

🇺🇸 66.132.172.232

🇸🇦 50.60.124.42

🇳🇱 45.148.10.147

🇺🇸 44.241.102.97

🇷🇺 185.94.111.1

🇷🇺 178.178.103.146

🇻🇳 160.250.181.54

🇭🇰 154.198.162.75

🇧🇷 148.227.79.52

🇺🇸 142.147.56.33

🇨🇦 104.233.20.159

🇮🇩 103.150.113.254

🇮🇩 103.129.175.241

🇪🇸 92.189.117.217

🇧🇬 91.191.209.74

🇬🇧 89.241.242.244