JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.154.42.254

165.154.42.254 was found in our database!

This IP was reported 78 times. Confidence of Abuse is 100%: ?

100%

ISP	UCLOUD INFORMATION TECHNOLOGY (HK) LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS135377
Domain Name	ucloud.cn
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.154.42.254

Whois 165.154.42.254

IP Abuse Reports for 165.154.42.254:

This IP address has been reported a total of 78 times from 67 distinct sources. 165.154.42.254 was first reported on March 23rd 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-06-06 10:28:25 (6 days ago)	Brute force	Brute-Force
🇬🇧 openstrike.co.uk	2026-06-06 05:13:06 (1 week ago)	1 attack on shell probes: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTT ... show more 1 attack on shell probes: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1 show less	Hacking
🇩🇪 Hugopvigo	2026-06-05 20:39:46 (1 week ago)	"2026-06-05 20:39:46+00:00 165.154.42.254 IP con score alto (100) detectada en el log."	Brute-Force SSH
🇫🇷 pm33	2026-06-05 12:47:34 (1 week ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇩🇪 sbajic	2026-06-05 12:22:12 (1 week ago)	2026-06-05T14:20:18.841978+02:00 gaia sshd[1396445]: Failed password for invalid user admin from 165 ... show more 2026-06-05T14:20:18.841978+02:00 gaia sshd[1396445]: Failed password for invalid user admin from 165.154.42.254 port 57792 ssh2 2026-06-05T14:22:10.420708+02:00 gaia sshd[1397163]: Connection from 165.154.42.254 port 41010 on 23.88.28.109 port 22 rdomain "" 2026-06-05T14:22:11.800037+02:00 gaia sshd[1397163]: Invalid user orangepi from 165.154.42.254 port 41010 ... show less	Brute-Force SSH
🇺🇸 MPL	2026-06-05 12:14:32 (1 week ago)	tcp/23 (4 or more attempts)	Port Scan
🇹🇷 Threat.live	2026-06-05 12:05:02 (1 week ago)	Suspicious Connection Attempts	Brute-Force
🇬🇧 blik2108	2026-06-05 11:52:55 (1 week ago)	2026-06-05T12:52:52.953678+01:00 jumphost sshd-session[4748]: Connection from 165.154.42.254 port 47 ... show more 2026-06-05T12:52:52.953678+01:00 jumphost sshd-session[4748]: Connection from 165.154.42.254 port 47732 on 192.168.40.4 port 22 rdomain "" 2026-06-05T12:52:54.739606+01:00 jumphost sshd-session[4748]: Invalid user orangepi from 165.154.42.254 port 47732 ... show less	Brute-Force SSH
🇩🇪 formality	2026-06-05 11:33:01 (1 week ago)	Invalid user admin from 165.154.42.254 port 36914	Brute-Force SSH
🇧🇷 ItsClairton	2026-06-05 11:08:22 (1 week ago)	Jun 5 08:06:31 game-db sshd[370567]: Invalid user orangepi from 165.154.42.254 port 49576 Jun 5 08 ... show more Jun 5 08:06:31 game-db sshd[370567]: Invalid user orangepi from 165.154.42.254 port 49576 Jun 5 08:06:31 game-db sshd[370567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.154.42.254 Jun 5 08:06:34 game-db sshd[370567]: Failed password for invalid user orangepi from 165.154.42.254 port 49576 ssh2 Jun 5 08:08:18 game-db sshd[372096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.154.42.254 user=root Jun 5 08:08:20 game-db sshd[372096]: Failed password for root from 165.154.42.254 port 42756 ssh2 ... show less	Brute-Force SSH
🇫🇷 John Doe	2026-06-05 11:01:29 (1 week ago)	$f2bV_matches	Brute-Force SSH
🇨🇿 Countryman	2026-06-05 09:59:07 (1 week ago)	IPS detection: Apache.HTTP.Server.cgi-bin.Path.Traversal	Hacking
🇺🇸 sh97	2026-06-05 09:55:07 (1 week ago)	ip-208-84-101-77: SSH Brute Force from 165.154.42.254 at 2026-06-05 15:25:07 IST	Brute-Force SSH
🇫🇮 Kimmo Rieskaniemi	2026-06-05 09:38:57 (1 week ago)	CrowdSec triggered crowdsecurity/http-cve-2021-41773	Web App Attack Hacking
Anonymous	2026-06-05 09:31:12 (1 week ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host

Showing 1 to 15 of 78 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 203.202.232.160

🇩🇪 167.94.145.30

🇦🇫 149.54.40.222

🇺🇸 148.153.56.174

🇷🇺 135.106.137.162

🇮🇳 125.16.27.190

🇸🇬 114.119.155.22

🇳🇱 84.21.190.140

🇲🇦 81.192.46.45

🇷🇴 80.94.92.165

🇮🇹 5.99.196.202

🇺🇸 198.199.106.159

🇺🇸 146.190.37.241

🇺🇸 136.49.53.226

🇰🇷 122.35.192.61

🇸🇬 118.139.164.171

🇹🇷 91.151.88.48

🇳🇱 5.61.209.43

🇵🇰 202.142.151.6

🇨🇳 183.154.169.75