AbuseIPDB » 196.189.19.164
196.189.19.164 was found in our database!
This IP was reported 12 times. Confidence of
Abuse
is 11% : ?
ISP
Ethio Telecom
Usage Type
Fixed Line ISP
ASN
AS24757
Domain Name
ethiotelecom.et
Country
πͺπΉ
Ethiopia
City
Addis Ababa, Addis Ababa
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 196.189.19.164 :
This IP address has been reported a total of
12
times from
8 distinct
sources.
196.189.19.164 was first reported on
February 2nd 2024 , and the most recent report was
3 days ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
πΊπΈ
TPI-Abuse
2026-07-14 09:53:37
(3 days ago)
(mod_security) mod_security (id:210730) triggered by 196.189.19.164 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210730) triggered by 196.189.19.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 05:53:32.033688 2026] [security2:error] [pid 23597:tid 23597] [client 196.189.19.164:23456] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||gamepart.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gamepart.com"] [uri "/home/tancedi1/gamepart.com"] [unique_id "alYHHJyZ-Rp2lBgFZaawAgAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
SMARTNET
2026-05-27 06:03:53
(1 month ago)
Aisuru(Mirai variant) DDoS | Incident ID: 1175168a-7e6d-467e-bb9a-dd1cdfa3fb9e
DDoS Attack
π¨π
backslash
2026-02-09 03:20:11
(5 months ago)
block ruleset 333FBABBA6DC06D7D20EDF60700DF5D9612E6F09
Bad Web Bot
πΊπΈ
TPI-Abuse
2025-12-10 14:52:11
(7 months ago)
"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ...
show more
"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access"
show less
DDoS Attack
SQL Injection
Exploited Host
Anonymous
2025-11-25 18:44:50
(7 months ago)
scanning http requests from known botnet
Web App Attack
Anonymous
2025-11-15 05:51:43
(8 months ago)
scanning http requests from known botnet
Web App Attack
π³π±
Cloud86 B.V.
2025-08-16 12:15:02
(11 months ago)
Email spam
Email Spam
π³π±
exxos
2025-07-31 02:59:00
(11 months ago)
HTTP1.x attacks
DDoS Attack
π³π±
exxos
2025-07-30 01:53:01
(11 months ago)
http-no-verb
Hacking
π¨π
zynex
2024-06-06 08:13:04
(2 years ago)
URL Probing: /xmlrpc.php
Web App Attack
πΊπΈ
TheMadBeaker
2024-04-01 08:59:21
(2 years ago)
Fail2Ban Ban Triggered
Wordpress Attack Attempt
Brute-Force
Web App Attack
πΊπΈ
TPI-Abuse
2024-02-02 08:14:40
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 196.189.19.164 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:225170) triggered by 196.189.19.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 02 03:14:35.981721 2024] [security2:error] [pid 30688] [client 196.189.19.164:52919] [client 196.189.19.164] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||salernospizza.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "salernospizza.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "ZbykawNdqbUUzpuhslkmXgAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
12
of 12 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: