City: unknown
Region: unknown
Country: Hong Kong
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 165.154.0.0 - 165.154.255.255
CIDR: 165.154.0.0/16
NetName: APNIC
NetHandle: NET-165-154-0-0-1
Parent: NET165 (NET-165-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2021-02-16
Updated: 2021-02-16
Ref: https://rdap.arin.net/registry/ip/165.154.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois://whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '165.154.46.0 - 165.154.46.255'
% Abuse contact for '165.154.46.0 - 165.154.46.255' is 'hegui@ucloud.cn'
inetnum: 165.154.46.0 - 165.154.46.255
netname: UCLOUD-HK
descr: UCLOUD INFORMATION TECHNOLOGY (HK) LIMITED
country: HK
admin-c: UITH2-AP
tech-c: UITH2-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-UCLOUD-HK
mnt-irt: IRT-UCLOUD-HK
abuse-c: AU164-AP
last-modified: 2024-08-27T05:50:59Z
source: APNIC
irt: IRT-UCLOUD-HK
address: FLAT/RM 603 6/F, LAWS COMMERCIAL PLAZA, 788 CHEUNG SHA WAN ROAD, KL,, Hong Kong
e-mail: pn-wan@ucloud.cn
abuse-mailbox: hegui@ucloud.cn
admin-c: UITH2-AP
tech-c: UITH2-AP
auth: # Filtered
remarks: pn-wan@ucloud.cn was validated on 2026-02-27
remarks: hegui@ucloud.cn was validated on 2026-02-27
mnt-by: MAINT-UCLOUD-HK
last-modified: 2026-02-27T02:07:48Z
source: APNIC
role: ABUSE UCLOUDHK
country: ZZ
address: FLAT/RM 603 6/F, LAWS COMMERCIAL PLAZA, 788 CHEUNG SHA WAN ROAD, KL,, Hong Kong
phone: +000000000
e-mail: pn-wan@ucloud.cn
admin-c: UITH2-AP
tech-c: UITH2-AP
nic-hdl: AU164-AP
remarks: Generated from irt object IRT-UCLOUD-HK
remarks: pn-wan@ucloud.cn was validated on 2026-02-27
remarks: hegui@ucloud.cn was validated on 2026-02-27
abuse-mailbox: hegui@ucloud.cn
mnt-by: APNIC-ABUSE
last-modified: 2026-02-27T02:08:22Z
source: APNIC
role: UCLOUD INFORMATION TECHNOLOGY HK LIMITED
address: FLAT/RM 603 6/F, LAWS COMMERCIAL PLAZA, 788 CHEUNG SHA WAN ROAD, KL,, Hong Kong
country: HK
phone: +000000000
e-mail: u-ipnic@ucloud.cn
admin-c: UITH2-AP
tech-c: UITH2-AP
nic-hdl: UITH2-AP
notify: hegui@ucloud.cn
mnt-by: MAINT-UCLOUD-HK
last-modified: 2022-05-16T03:54:14Z
source: APNIC
% Information related to '165.154.46.0/24AS135377'
route: 165.154.46.0/24
origin: AS135377
descr: UCLOUD INFORMATION TECHNOLOGY (HK) LIMITED
FLAT/RM 603 6/F
LAWS COMMERCIAL PLAZA
788 CHEUNG SHA WAN ROAD, KL,
mnt-by: MAINT-UCLOUD-HK
last-modified: 2021-04-25T02:40:26Z
source: APNIC
% Information related to '165.154.46.0/24AS62610'
route: 165.154.46.0/24
origin: AS62610
descr: UCLOUD INFORMATION TECHNOLOGY (HK) LIMITED
FLAT/RM 603 6/F
LAWS COMMERCIAL PLAZA
788 CHEUNG SHA WAN ROAD, KL,
mnt-by: MAINT-UCLOUD-HK
last-modified: 2025-07-28T20:57:29Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 165.154.46.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33440
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;165.154.46.96. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026040800 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 08 20:22:30 CST 2026
;; MSG SIZE rcvd: 106Host 96.46.154.165.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 96.46.154.165.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 159.89.86.142 | attackspam | Aug 10 23:32:54 vpn01 sshd[22904]: Failed password for root from 159.89.86.142 port 48224 ssh2 ... |
2020-08-11 05:40:56 |
| 87.103.120.250 | attackbotsspam | Aug 10 18:20:54 firewall sshd[27232]: Failed password for root from 87.103.120.250 port 59458 ssh2 Aug 10 18:24:28 firewall sshd[27381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.103.120.250 user=root Aug 10 18:24:30 firewall sshd[27381]: Failed password for root from 87.103.120.250 port 40960 ssh2 ... |
2020-08-11 05:43:41 |
| 197.248.16.118 | attackbots | Banned for a week because repeated abuses, for example SSH, but not only |
2020-08-11 05:41:46 |
| 1.55.254.114 | attackspambots | 1597091470 - 08/10/2020 22:31:10 Host: 1.55.254.114/1.55.254.114 Port: 445 TCP Blocked |
2020-08-11 05:32:47 |
| 192.200.215.91 | attackbotsspam | WordPress vulnerability sniffing (looking for /wp-content/plugins/videowhisper-video-presentation/vp/translation.php) |
2020-08-11 05:31:19 |
| 13.68.193.165 | attackbots | Aug 10 23:51:43 server sshd[17340]: Failed password for root from 13.68.193.165 port 51008 ssh2 Aug 10 23:59:06 server sshd[28360]: Failed password for root from 13.68.193.165 port 43454 ssh2 Aug 11 00:02:53 server sshd[16258]: Failed password for root from 13.68.193.165 port 54234 ssh2 |
2020-08-11 06:06:17 |
| 188.6.146.36 | attackspambots | Unauthorized connection attempt from IP address 188.6.146.36 on Port 445(SMB) |
2020-08-11 06:07:37 |
| 192.223.65.111 | attack | Unauthorized connection attempt from IP address 192.223.65.111 on Port 445(SMB) |
2020-08-11 05:42:05 |
| 27.74.244.91 | attackbots | Unauthorized connection attempt from IP address 27.74.244.91 on Port 445(SMB) |
2020-08-11 05:37:53 |
| 220.247.242.7 | attackspam | Unauthorized connection attempt from IP address 220.247.242.7 on Port 445(SMB) |
2020-08-11 06:05:52 |
| 41.66.244.86 | attackspam | Aug 11 00:06:58 journals sshd\[104858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.66.244.86 user=root Aug 11 00:07:00 journals sshd\[104858\]: Failed password for root from 41.66.244.86 port 41300 ssh2 Aug 11 00:11:31 journals sshd\[105163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.66.244.86 user=root Aug 11 00:11:33 journals sshd\[105163\]: Failed password for root from 41.66.244.86 port 55384 ssh2 Aug 11 00:16:11 journals sshd\[105407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.66.244.86 user=root ... |
2020-08-11 05:37:37 |
| 212.70.149.82 | attackbots | Aug 10 23:59:14 galaxy event: galaxy/lswi: smtp: giulietta@uni-potsdam.de [212.70.149.82] authentication failure using internet password Aug 10 23:59:43 galaxy event: galaxy/lswi: smtp: giuseppe@uni-potsdam.de [212.70.149.82] authentication failure using internet password Aug 11 00:00:11 galaxy event: galaxy/lswi: smtp: giustina@uni-potsdam.de [212.70.149.82] authentication failure using internet password Aug 11 00:00:39 galaxy event: galaxy/lswi: smtp: gizela@uni-potsdam.de [212.70.149.82] authentication failure using internet password Aug 11 00:01:07 galaxy event: galaxy/lswi: smtp: glad@uni-potsdam.de [212.70.149.82] authentication failure using internet password ... |
2020-08-11 06:01:32 |
| 189.6.16.14 | attack | Unauthorized connection attempt from IP address 189.6.16.14 on Port 445(SMB) |
2020-08-11 05:40:10 |
| 152.231.107.54 | attackspambots | Aug 10 23:49:24 rancher-0 sshd[987690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.231.107.54 user=root Aug 10 23:49:27 rancher-0 sshd[987690]: Failed password for root from 152.231.107.54 port 39278 ssh2 ... |
2020-08-11 05:52:02 |
| 51.210.102.246 | attackbotsspam | Aug 10 23:14:38 abendstille sshd\[1161\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.210.102.246 user=root Aug 10 23:14:40 abendstille sshd\[1161\]: Failed password for root from 51.210.102.246 port 36440 ssh2 Aug 10 23:16:43 abendstille sshd\[3515\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.210.102.246 user=root Aug 10 23:16:45 abendstille sshd\[3515\]: Failed password for root from 51.210.102.246 port 41244 ssh2 Aug 10 23:18:44 abendstille sshd\[5394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.210.102.246 user=root ... |
2020-08-11 05:28:42 |