JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 154.72.201.206

154.72.201.206 was found in our database!

This IP was reported 1,802 times. Confidence of Abuse is 100%: ?

100%

ISP	NITA-U
Usage Type	Fixed Line ISP
ASN	AS327724
Hostname(s)	hce.gou.go.ug
Domain Name	nita.go.ug
Country	🇺🇬 Uganda
City	Jinja, Eastern Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 154.72.201.206

Whois 154.72.201.206

IP Abuse Reports for 154.72.201.206:

This IP address has been reported a total of 1,802 times from 183 distinct sources. 154.72.201.206 was first reported on November 18th 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-03 20:31:13 (2 days ago)	Blocked by UFW (TCP on 5985) Source port: 53550 TTL: 232 Packet length: 40 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 5985) Source port: 53550 TTL: 232 Packet length: 40 TOS: 0x00 This report (for 154.72.201.206) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 micropedro	2026-05-30 09:30:53 (6 days ago)	3 incidents: malicious activity. First: 2026-05-16 04:04, Last: 2026-05-30 05:30 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-05-16 04:04, Last: 2026-05-30 05:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-05-30 09:30:53 (6 days ago)	4 incidents: malicious activity. First: 2026-05-23 04:30, Last: 2026-05-30 05:30 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-05-23 04:30, Last: 2026-05-30 05:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇮🇳 evicky2002	2026-05-29 06:52:29 (1 week ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇪🇸 librebit	2026-05-28 05:31:30 (1 week ago)	Brute force	Brute-Force
🇺🇸 withfallback.com	2026-05-26 14:31:54 (1 week ago)	Attempted WinRM call from non-Windows client	Port Scan
🇩🇪 zupan	2026-05-26 07:12:14 (1 week ago)	Blocked by UFW on vps [5985/tcp] \| SPT: 53839 \| TTL: 237 \| LEN: 40 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on vps [5985/tcp] \| SPT: 53839 \| TTL: 237 \| LEN: 40 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 IP Analyzer	2026-05-26 07:00:43 (1 week ago)	Unauthorized connection attempt from IP address 154.72.201.206 on Port 5985	Port Scan
🇺🇸 [email protected]	2026-05-24 23:20:04 (1 week ago)	Ports: 5985. Proto: TCP. Observations: 1	Port Scan
🇧🇾 StatsMe	2026-05-24 21:51:58 (1 week ago)	2026-05-24T06:17:42.396568+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇺🇸 Cyber Crusader	2026-05-24 21:48:12 (1 week ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇩🇪 Admins@FBN	2026-05-24 07:14:36 (1 week ago)	FW-PortScan: Traffic Blocked srcport=2969 dstport=5985	Port Scan
🇩🇪 iNetWorker	2026-05-24 06:51:16 (1 week ago)	firewall-block, port(s): 5985/tcp	Port Scan
🇩🇪 Admins@FBN	2026-05-24 06:31:10 (1 week ago)	FW-PortScan: Traffic Blocked srcport=12122 dstport=5985	Port Scan
🇺🇸 donarev419	2026-05-24 00:41:56 (1 week ago)	Connection to port 5985 with data transfer. Data preview: POST /wsman HTTP/1.1 Host: 167.253.66.144 ... show more Connection to port 5985 with data transfer. Data preview: POST /wsman HTTP/1.1 Host: 167.253.66.144:5985 User-Agent: Python WinRM client Accept-Encoding: g show less	Port Scan Hacking

Showing 1 to 15 of 1802 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 107.150.111.70

🇱🇹 45.227.254.170

🇧🇷 45.205.1.71

🇳🇱 45.198.224.23

🇲🇽 38.22.170.10

🇿🇦 4.222.232.83

🇸🇬 2404:6800:4003:c20::12d

🇺🇸 199.195.248.228

🇵🇭 122.52.57.141

🇮🇳 103.70.40.36

🇬🇧 87.236.176.82

🇳🇱 81.19.216.106

🇳🇱 45.148.10.147

🇪🇸 31.24.155.180

🇺🇸 18.97.5.70

🇪🇪 196.196.253.20

🇺🇸 162.216.149.82

🇺🇸 138.113.23.170

🇫🇷 89.117.50.75

🇵🇱 81.210.53.105