JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 181.196.149.193

181.196.149.193 was found in our database!

This IP was reported 184 times. Confidence of Abuse is 55%: ?

55%

ISP	CORPORACION NACIONAL DE TELECOMUNICACIONES - CNT EP
Usage Type	Fixed Line ISP
ASN	AS28006
Hostname(s)	193.149.196.181.static.anycast.cnt-grms.ec
Domain Name	cnt.gob.ec
Country	🇪🇨 Ecuador
City	Quito, Pichincha

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 181.196.149.193

Whois 181.196.149.193

IP Abuse Reports for 181.196.149.193:

This IP address has been reported a total of 184 times from 44 distinct sources. 181.196.149.193 was first reported on April 4th 2024, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bellovacorp	2026-06-21 00:01:32 (7 hours ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇫🇷 sthoyer.de	2026-06-20 23:19:36 (8 hours ago)	Jun 21 01:19:35 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 21 01:19:35 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=181.196.149.193 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=7148 DF PROTO=TCP SPT=55740 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 Little Iguana	2026-06-20 17:36:04 (13 hours ago)	trying to access non-authorized port	Port Scan
🇫🇷 sthoyer.de	2026-06-20 16:20:15 (15 hours ago)	Jun 20 18:20:14 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 20 18:20:14 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=181.196.149.193 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=24025 DF PROTO=TCP SPT=55067 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 sthoyer.de	2026-06-20 15:38:52 (15 hours ago)	Jun 20 17:38:50 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 20 17:38:50 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=181.196.149.193 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=4705 DF PROTO=TCP SPT=50988 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇵🇱 nfsec.pl	2026-06-20 05:20:11 (1 day ago)	Detected: TCP scan on port: 445 with flags: SYN	Port Scan
🇫🇷 bellovacorp	2026-06-19 00:25:18 (2 days ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇫🇷 bellovacorp	2026-06-17 04:06:08 (4 days ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇫🇷 bellovacorp	2026-06-16 00:03:20 (5 days ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
Anonymous	2026-06-06 00:55:35 (2 weeks ago)	Unauthorized connection to SMB port 445	Port Scan
🇦🇺 dyln	2026-06-05 05:11:08 (2 weeks ago)	Dyls honeypot brute-force: SMB (4 total hits)	Brute-Force
🇩🇪 IP Analyzer	2026-06-04 12:00:15 (2 weeks ago)	Unauthorized connection attempt from IP address 181.196.149.193 on Port 445(SMB)	Port Scan
🇬🇧 PeravixGroup	2026-05-31 23:43:41 (2 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 IP Analyzer	2026-05-31 21:00:26 (2 weeks ago)	Unauthorized connection attempt from IP address 181.196.149.193 on Port 445(SMB)	Port Scan
🇬🇧 PeravixGroup	2026-05-28 18:34:23 (3 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 184 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 200.10.29.236

🇮🇶 185.166.25.150

🇧🇷 177.11.196.79

🇦🇹 152.53.0.56

🇺🇸 104.234.53.135

🇲🇾 49.124.152.180

🇸🇬 43.159.51.254

🇺🇸 23.98.142.191

🇺🇸 5.78.65.172

🇨🇳 180.153.236.105

🇺🇸 165.227.114.138

🇸🇬 165.22.99.172

🇨🇳 119.54.6.88

🇨🇳 111.35.225.140

🇪🇸 80.24.1.119

🇷🇺 37.78.172.122

🇺🇸 20.64.105.186

🇺🇸 216.244.66.231

🇺🇸 163.252.245.12

🇺🇸 162.216.149.48