JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.188.34.148

196.188.34.148 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 26%: ?

26%

ISP	Ethio Telecom
Usage Type	Fixed Line ISP
ASN	AS24757
Domain Name	ethiotelecom.et
Country	🇪🇹 Ethiopia
City	Addis Ababa, Addis Ababa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.188.34.148

Whois 196.188.34.148

IP Abuse Reports for 196.188.34.148:

This IP address has been reported a total of 27 times from 21 distinct sources. 196.188.34.148 was first reported on March 21st 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Kenshin869	2026-06-20 12:17:56 (2 days ago)	Wordpress unauthorized access attempt	Brute-Force
🇺🇸 TPI-Abuse	2026-06-20 11:30:50 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 196.188.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 196.188.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 07:30:46.031174 2026] [security2:error] [pid 31803:tid 31803] [client 196.188.34.148:7023] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|cliniquecavalancia.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cliniquecavalancia.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajZ55n11RQPiZjttQ-NrlQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-05-16 17:09:45 (1 month ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇦🇹 urnilxfgbez	2026-05-10 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇷 vtchost.com	2026-05-05 12:01:36 (1 month ago)	requested honeypot page - ignored robots.txt - scraping botnet or virus ...	Bad Web Bot Exploited Host
🇺🇸 SSP	2026-04-22 17:30:03 (1 month ago)	Automatic report from iptables firewall - detected malicious activity	DDoS Attack Brute-Force SSH Web App Attack Port Scan Hacking
🇳🇱 maxxsense	2026-02-24 19:32:03 (3 months ago)	196.188.34.148 (ET/Ethiopia/-), 12 distributed imapd attacks on account [redacted]	Brute-Force
🇮🇹 VHosting	2025-12-22 22:54:29 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-11-21 15:02:40 (7 months ago)	scanning http requests from known botnet	Web App Attack
🇳🇱 Cloud86 B.V.	2025-10-01 08:30:07 (8 months ago)	Email spam	Email Spam
🇫🇷 geeek	2025-08-22 11:33:53 (10 months ago)	Port scanning: 445 TCP Blocked	Port Scan
🇳🇱 exxos	2025-08-02 11:10:01 (10 months ago)	http-no-verb	Hacking
🇪🇸 Global Cyber Police	2025-07-27 18:29:19 (10 months ago)	Malicious bot activity detected: Hitting honeypot page (200 OK with 258/259 bytes sent).	Port Scan Brute-Force Web App Attack
🇳🇱 Study Bitcoin 🤗	2025-02-04 11:30:39 (1 year ago)	2 port probes: tcp/445 (smb), tcp/1433 (microsoft-sql-server) [srv129]	Port Scan Hacking SQL Injection
🇳🇱 Study Bitcoin 🤗	2025-02-04 10:00:24 (1 year ago)	2 port probes: tcp/445 (smb), tcp/1433 (microsoft-sql-server) [srv129]	Port Scan Hacking SQL Injection

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 182.43.235.75

🇺🇸 162.216.150.140

🇱🇹 141.98.11.59

🇻🇳 116.101.9.20

🇺🇸 100.28.153.226

🇬🇧 92.27.157.252

🇱🇾 41.254.82.78

🇬🇧 185.247.137.139

🇺🇸 165.154.163.112

🇨🇳 150.255.177.195

🇫🇷 85.217.140.25

🇩🇪 69.5.169.250

🇪🇹 213.55.96.152

🇺🇸 172.245.102.59

🇨🇳 112.86.225.148

🇳🇱 91.92.42.19

🇳🇱 91.92.40.36

🇺🇸 66.132.224.28

🇺🇸 47.145.62.32

🇦🇷 45.162.20.149