JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.154.134.233

165.154.134.233 was found in our database!

This IP was reported 1,595 times. Confidence of Abuse is 85%: ?

85%

ISP	UCLOUD INFORMATION TECHNOLOGY (HK) LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS135377
Domain Name	ucloud.cn
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.154.134.233

Whois 165.154.134.233

IP Abuse Reports for 165.154.134.233:

This IP address has been reported a total of 1,595 times from 114 distinct sources. 165.154.134.233 was first reported on January 29th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 andypiper	2026-05-28 01:01:46 (1 week ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇳🇱 donarev419	2026-05-28 00:14:04 (1 week ago)	Connection to port 126 with data transfer. Data preview: �	Port Scan Hacking
🇯🇵 mkaraki	2026-05-25 07:22:59 (1 week ago)	1779693777 # Service_probe # SIGNATURE_SEND # source_ip:165.154.134.233 # dst_port:104 ...	Port Scan
🇮🇳 evicky2002	2026-05-25 06:00:00 (1 week ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
Anonymous	2026-05-20 10:39:05 (2 weeks ago)	$f2bV_matches	Brute-Force SSH
🇺🇸 donarev419	2026-05-20 06:39:40 (2 weeks ago)	Connection to port 183 with data transfer. Data preview: �	Port Scan Hacking
🇩🇪 Justin F. \| AS204464	2026-05-18 02:47:06 (2 weeks ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 8181 GET / User-Agent: Mozilla/5.0 (Macintosh; In ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 8181 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_16) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0.3 Safari/605.1.15 Accept-Encoding: gzip; 8181 [7] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
🇨🇭 ScanThe.Net	2026-05-17 11:35:31 (2 weeks ago)	ID: 3298927473 \| PORT: 8181 \| https://165-154-134-233.scanthe.net	Port Scan
🇬🇧 gbzret4d	2026-05-16 23:51:35 (2 weeks ago)	Honeypot [uk-production01]: HTTP/1.1 request on 8181 GET / User-Agent: Mozilla/5.0 (Macintosh; U; I ... show more Honeypot [uk-production01]: HTTP/1.1 request on 8181 GET / User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X; ja-jp) AppleWebKit/523.12.2 (KHTML, like Gecko) Version/3.0.4 Safari/523.12.2 Accept-Encoding: gzip; 8181 [6] TCP show less	Hacking Bad Web Bot
🇯🇵 mkaraki	2026-05-16 19:03:42 (2 weeks ago)	1778958221 # Service_probe # SIGNATURE_SEND # source_ip:165.154.134.233 # dst_port:44 ...	Port Scan
🇬🇧 gbzret4d	2026-05-15 15:45:36 (3 weeks ago)	Honeypot [uk-production01]: HTTP/1.1 request on 8181 GET / User-Agent: Mozilla/5.0 (SS; Linux i686) ... show more Honeypot [uk-production01]: HTTP/1.1 request on 8181 GET / User-Agent: Mozilla/5.0 (SS; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 Accept-Encoding: gzip; 8181 [10] TCP show less	Hacking Bad Web Bot
🇯🇵 mkaraki	2026-05-15 13:59:09 (3 weeks ago)	1778853548 # Service_probe # SIGNATURE_SEND # source_ip:165.154.134.233 # dst_port:19 ...	Port Scan
🇩🇪 Justin F. \| AS204464	2026-05-15 10:05:06 (3 weeks ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 8181 GET / User-Agent: Mozilla/5.0 (Macintosh; In ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 8181 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36 Accept-Encoding: gzip; 8181 [1] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-09 01:54:12 (4 weeks ago)	Honeypot hit: HTTP/1.1 request on 4433 GET / User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv ... show more Honeypot hit: HTTP/1.1 request on 4433 GET / User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:140.0) Gecko/20100101 Firefox/140.0 Accept-Encoding: gzip; 4433 [6] TCP show less	Web App Attack
🇩🇪 Lazentis	2026-05-08 01:20:39 (4 weeks ago)	Unauthorized access attempt to port 8080 (tcp)	Brute-Force SSH

Showing 1 to 15 of 1595 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.102

🇨🇴 190.60.242.28

🇫🇷 173.249.0.223

🇬🇧 134.122.96.10

🇺🇸 20.168.107.40

🇭🇰 223.197.153.143

🇮🇳 183.82.196.160

🇮🇹 158.173.77.205

🇮🇹 158.173.77.201

🇮🇹 158.173.77.78

🇮🇩 103.154.231.122

🇺🇸 100.49.117.77

🇷🇴 92.118.39.236

🇷🇺 85.95.166.40

🇺🇸 34.197.70.90

🇺🇸 20.190.157.0

🇭🇰 8.210.123.17

🇨🇳 219.151.48.202

🇹🇼 198.235.24.99

🇬🇧 178.62.121.150