JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.11.134.87

196.11.134.87 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 32%: ?

32%

ISP	First Rand Bank Limited
Usage Type	Commercial
ASN	AS37028
Domain Name	fnbconnect.co.za
Country	🇿🇦 South Africa
City	Johannesburg, Gauteng

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.11.134.87

Whois 196.11.134.87

IP Abuse Reports for 196.11.134.87:

This IP address has been reported a total of 14 times from 7 distinct sources. 196.11.134.87 was first reported on March 18th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 BirdCo Telecom	2026-06-24 20:34:12 (2 days ago)		Brute-Force Fraud VoIP
🇺🇸 multitel.net	2026-06-19 09:58:30 (1 week ago)	VoIP brute-force attack on port 5060, with User-Agent Cisco-CP7960G/8.0 (0015.62A4.D2C1)	Fraud VoIP Brute-Force
🇩🇪 femboy.cat	2026-06-17 15:26:10 (1 week ago)	Port scan to tcp/5061 from 196.11.134.87	Brute-Force
🇩🇪 dispaisyenterprises	2026-06-15 19:27:48 (1 week ago)	Honeypot [fra-de-honeypot]: Large payload (1410 bytes); 5071 [2] TCP Reported by DisPaisy Enterprise ... show more Honeypot [fra-de-honeypot]: Large payload (1410 bytes); 5071 [2] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 multitel.net	2026-06-06 14:55:49 (2 weeks ago)	VoIP brute-force attack on port 5060, with User-Agent Cisco-CP7960G/8.0 (0015.62A4.D2C1)	Fraud VoIP Brute-Force
🇺🇸 knock	2026-05-28 17:41:51 (4 weeks ago)	Knock-Knock honeypot brute-force: SIP (2 total hits)	Hacking Brute-Force
🇺🇸 multitel.net	2026-05-27 04:43:27 (4 weeks ago)	VoIP brute-force attack on port 5060, with User-Agent Cisco-CP8841/12.5.1 G Dynamic Engine	Fraud VoIP Brute-Force
🇬🇧 PeravixGroup	2026-05-16 10:14:46 (1 month ago)	Honeypot detection: DNS tunneling / covert C2 communication on port 5060. Severity: MEDIUM. Aaran.cl ... show more Honeypot detection: DNS tunneling / covert C2 communication on port 5060. Severity: MEDIUM. Aaran.cloud show less	Hacking
🇬🇧 PeravixGroup	2026-05-15 09:33:20 (1 month ago)	Honeypot detection: DNS tunneling / covert C2 communication on port 5060. Severity: MEDIUM. Aaran.cl ... show more Honeypot detection: DNS tunneling / covert C2 communication on port 5060. Severity: MEDIUM. Aaran.cloud show less	Hacking
🇨🇦 Aleigo Abuse	2026-04-11 14:09:15 (2 months ago)	SIP auth challenge (INVITE) fraud attempt detected.	Web App Attack Brute-Force Fraud VoIP Hacking
🇺🇸 knock	2026-03-28 16:54:52 (2 months ago)	Knock-Knock honeypot brute-force: SIP (1 total hits)	Hacking Brute-Force
🇩🇪 femboy.cat	2026-03-25 05:12:09 (3 months ago)	Port scan to tcp/5060 from 196.11.134.87	Brute-Force
🇺🇸 knock	2026-03-24 12:50:54 (3 months ago)	Knock-Knock honeypot brute-force: SIP (1 total hits)	Hacking Brute-Force
🇺🇸 multitel.net	2026-03-18 01:53:09 (3 months ago)	VoIP brute-force attack on port 5060, with User-Agent Cisco-CP7960G/8.0 (0015.62A4.D2C1)	Fraud VoIP Brute-Force

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 158.69.215.39

🇺🇸 107.175.69.109

🇺🇸 43.135.135.17

🇺🇾 190.135.0.129

🇫🇮 88.214.2.87

🇫🇷 85.217.140.52

🇪🇸 85.208.191.254

🇺🇸 74.128.240.109

🇳🇱 45.148.10.152

🇮🇩 202.46.68.249

🇺🇾 186.55.31.55

🇮🇩 182.3.71.222

🇵🇰 154.192.135.48

🇦🇴 105.168.176.163

🇺🇸 104.12.19.114

🇮🇩 103.187.165.26

🇦🇴 102.213.34.99

🇺🇸 85.208.96.196

🇸🇬 192.161.171.70

🇵🇦 190.140.114.5