JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.43.152.252

196.43.152.252 was found in our database!

This IP was reported 386 times. Confidence of Abuse is 100%: ?

100%

ISP	Young Men's Christian Association
Usage Type	University/College/School
ASN	AS327687
Domain Name	crmetroymca.org
Country	🇺🇬 Uganda
City	Kampala, Central Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.43.152.252

Whois 196.43.152.252

IP Abuse Reports for 196.43.152.252:

This IP address has been reported a total of 386 times from 238 distinct sources. 196.43.152.252 was first reported on December 13th 2025, and the most recent report was 15 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-13 07:30:05 (15 minutes ago)	SSH abuse or brute-force attack detected by Fail2Ban in ssh jail	Brute-Force SSH
🇫🇷 Yepngo	2026-06-13 07:22:12 (22 minutes ago)	2026-06-13T09:19:17.992128+02:00 ns3006402 sshd[3383040]: Failed password for invalid user paid from ... show more 2026-06-13T09:19:17.992128+02:00 ns3006402 sshd[3383040]: Failed password for invalid user paid from 196.43.152.252 port 43486 ssh2 2026-06-13T09:22:10.474056+02:00 ns3006402 sshd[3383476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.43.152.252 user=root 2026-06-13T09:22:12.351643+02:00 ns3006402 sshd[3383476]: Failed password for root from 196.43.152.252 port 35480 ssh2 ... show less	Brute-Force SSH
🇸🇪 jonathanselea.se	2026-06-13 07:22:05 (23 minutes ago)	$f2bV_matches	SSH
🇭🇺 tokyohost.eu	2026-06-13 07:21:40 (23 minutes ago)	2026-06-13T09:16:01.035357+02:00 node1 sshd-session[1640561]: Failed password for invalid user paid ... show more 2026-06-13T09:16:01.035357+02:00 node1 sshd-session[1640561]: Failed password for invalid user paid from 196.43.152.252 port 47506 ssh2 2026-06-13T09:21:37.850981+02:00 node1 sshd-session[1814409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.43.152.252 user=root 2026-06-13T09:21:39.966825+02:00 node1 sshd-session[1814409]: Failed password for root from 196.43.152.252 port 51528 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-06-13 07:20:46 (24 minutes ago)	2026-06-13T09:10:38.076283+02:00 mail sshd[1126735]: Failed password for invalid user paid from 196. ... show more 2026-06-13T09:10:38.076283+02:00 mail sshd[1126735]: Failed password for invalid user paid from 196.43.152.252 port 37508 ssh2 2026-06-13T09:20:43.455028+02:00 mail sshd[1126972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.43.152.252 user=root 2026-06-13T09:20:45.389263+02:00 mail sshd[1126972]: Failed password for root from 196.43.152.252 port 47190 ssh2 ... show less	SSH
🇩🇪 dispaisyenterprises	2026-06-13 07:20:13 (24 minutes ago)	Honeypot [fra-de-honeypot]: Brute-force attack detected on 22/SSH • Credential used: paid:paid • Num ... show more Honeypot [fra-de-honeypot]: Brute-force attack detected on 22/SSH • Credential used: paid:paid • Number of login attempts: 1 • Client: SSH-2.0-libssh_0.9.6 Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	SSH
🇩🇪 ghostwarriors	2026-06-13 06:20:09 (1 hour ago)	Unauthorized connection to FTP port 21	FTP Brute-Force Brute-Force
🇫🇷 tecnicorioja	2026-06-13 06:00:22 (1 hour ago)	Failed password for root Jun 13 06:11:00 port 56982	Brute-Force SSH
Anonymous	2026-06-13 05:56:54 (1 hour ago)	$f2bV_matches	Brute-Force SSH
🇧🇷 hostmach	2026-06-13 04:44:44 (3 hours ago)	(sshd) Failed SSH login from 196.43.152.252 (UG/Uganda/-): 5 in the last 3600 secs; Ports: ; Direct ... show more (sshd) Failed SSH login from 196.43.152.252 (UG/Uganda/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_SSHD; Logs: Jun 13 01:23:50 juno sshd[438804]: Invalid user evan from 196.43.152.252 port 40638 Jun 13 01:33:18 juno sshd[454479]: Invalid user newuser from 196.43.152.252 port 46172 Jun 13 01:35:30 juno sshd[457957]: Invalid user proxyuser from 196.43.152.252 port 57422 Jun 13 01:42:23 juno sshd[469462]: Invalid user rajiv from 196.43.152.252 port 43580 Jun 13 01:44:39 juno sshd[472809]: Invalid user debian from 196.43.152.252 port 49332 show less	Brute-Force SSH
🇩🇪 poseidon00	2026-06-13 04:29:58 (3 hours ago)	2026-06-13T04:25:19.023327+00:00 EO-FE-01 sshd[754769]: Failed password for root from 196.43.152.252 ... show more 2026-06-13T04:25:19.023327+00:00 EO-FE-01 sshd[754769]: Failed password for root from 196.43.152.252 port 45180 ssh2 2026-06-13T04:27:34.507812+00:00 EO-FE-01 sshd[754974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.43.152.252 user=root 2026-06-13T04:27:36.547124+00:00 EO-FE-01 sshd[754974]: Failed password for root from 196.43.152.252 port 54620 ssh2 2026-06-13T04:29:55.091093+00:00 EO-FE-01 sshd[755138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.43.152.252 user=root 2026-06-13T04:29:57.486735+00:00 EO-FE-01 sshd[755138]: Failed password for root from 196.43.152.252 port 41712 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-13 04:24:00 (3 hours ago)	196.43.152.252 (UG/Uganda/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Po ... show more 196.43.152.252 (UG/Uganda/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 12 23:18:47 14239 sshd[14669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.235.194 user=root Jun 12 23:18:50 14239 sshd[14669]: Failed password for root from 125.212.235.194 port 13187 ssh2 Jun 12 23:23:42 14239 sshd[17368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.235 user=root Jun 12 23:15:28 14239 sshd[12888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.43.152.252 user=root Jun 12 23:15:30 14239 sshd[12888]: Failed password for root from 196.43.152.252 port 51600 ssh2 IP Addresses Blocked: 125.212.235.194 (VN/Vietnam/-) 200.10.29.235 (CO/Colombia/static-p4-200-10-29-235.superredes.net) show less	Brute-Force SSH
🇫🇮 FlamingMojo	2026-06-13 04:16:04 (3 hours ago)	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2026-06-13T04:16:04Z	Brute-Force SSH
🇺🇸 kipfel★	2026-06-13 03:44:40 (4 hours ago)	2026-06-12T22:32:02.680934-05:00 nocix-dedi-bf2421-mci sshd-session[1148654]: Invalid user diego fro ... show more 2026-06-12T22:32:02.680934-05:00 nocix-dedi-bf2421-mci sshd-session[1148654]: Invalid user diego from 196.43.152.252 port 40620 2026-06-12T22:40:24.616660-05:00 nocix-dedi-bf2421-mci sshd-session[1149234]: Invalid user cherry from 196.43.152.252 port 42126 2026-06-12T22:44:40.065388-05:00 nocix-dedi-bf2421-mci sshd-session[1149488]: Invalid user user from 196.43.152.252 port 37720 ... show less	Brute-Force SSH
🇨🇦 Filli Group	2026-06-13 03:32:58 (4 hours ago)	2026-06-13T05:20:48.430456+02:00 tor01-ca-pop.as202427.net sshd[13347]: User root from 196.43.152.25 ... show more 2026-06-13T05:20:48.430456+02:00 tor01-ca-pop.as202427.net sshd[13347]: User root from 196.43.152.252 not allowed because not listed in AllowUsers 2026-06-13T05:30:40.228559+02:00 tor01-ca-pop.as202427.net sshd[15135]: Invalid user diego from 196.43.152.252 port 36388 2026-06-13T05:32:57.808792+02:00 tor01-ca-pop.as202427.net sshd[15469]: User root from 196.43.152.252 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH

Showing 1 to 15 of 386 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 181.129.31.42

🇧🇷 152.32.199.112

🇺🇬 102.218.89.110

🇺🇸 102.129.223.92

🇭🇰 74.125.179.152

🇺🇸 52.161.60.225

🇷🇸 217.17.108.195

🇫🇷 194.163.174.214

🇫🇮 147.185.133.42

🇰🇷 119.205.179.217

🇨🇳 106.37.191.2

🇸🇬 95.111.199.201

🇬🇧 89.37.172.132

🇳🇱 77.83.39.81

🇩🇴 45.85.180.180

🇺🇸 2001:470:2cc:1::274

🇷🇺 185.61.92.84

🇮🇳 182.78.112.174

🇺🇸 66.132.186.219

🇺🇸 65.49.20.86