JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.189.236.216

196.189.236.216 was found in our database!

This IP was reported 737 times. Confidence of Abuse is 100%: ?

100%

ISP	Ethio Telecom
Usage Type	Fixed Line ISP
ASN	AS24757
Domain Name	ethiotelecom.et
Country	🇪🇹 Ethiopia
City	Addis Ababa, Addis Ababa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.189.236.216

Whois 196.189.236.216

IP Abuse Reports for 196.189.236.216:

This IP address has been reported a total of 737 times from 410 distinct sources. 196.189.236.216 was first reported on May 27th 2026, and the most recent report was 5 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-27 17:50:12 (1 week ago)	Automatic Reporting - Brute Force Attempts	Brute-Force SSH Web App Attack
🇺🇸 yzfdude1	2026-05-27 17:44:03 (1 week ago)	May 27 11:39:04 coyote sshd[124562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eui ... show more May 27 11:39:04 coyote sshd[124562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 May 27 11:39:07 coyote sshd[124562]: Failed password for invalid user rami from 196.189.236.216 port 34554 ssh2 May 27 11:44:01 coyote sshd[124744]: Invalid user usuarioftp from 196.189.236.216 port 54586 ... show less	Brute-Force SSH
🇺🇸 z3rg	2026-05-27 17:43:19 (1 week ago)	2026-05-27T17:34:20.861295+00:00 vps-331c9132 sshd[2055706]: pam_unix(sshd:auth): authentication fai ... show more 2026-05-27T17:34:20.861295+00:00 vps-331c9132 sshd[2055706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 2026-05-27T17:34:22.467025+00:00 vps-331c9132 sshd[2055706]: Failed password for invalid user rami from 196.189.236.216 port 51072 ssh2 2026-05-27T17:43:18.161933+00:00 vps-331c9132 sshd[2055795]: Invalid user usuarioftp from 196.189.236.216 port 36126 ... show less	Brute-Force SSH
🇫🇷 Lino Project	2026-05-27 17:38:30 (1 week ago)	May 27 19:38:28 vps1 sshd[609901]: Invalid user rami from 196.189.236.216 port 40182 ...	Brute-Force SSH
🇩🇪 ghostwarriors	2026-05-27 17:20:29 (1 week ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇩🇪 david1117	2026-05-27 17:16:59 (1 week ago)	May 27 17:06:07 web sshd[640655]: Invalid user prometheus from 196.189.236.216 port 48984 May 27 17: ... show more May 27 17:06:07 web sshd[640655]: Invalid user prometheus from 196.189.236.216 port 48984 May 27 17:08:37 web sshd[641500]: Invalid user remote from 196.189.236.216 port 56036 May 27 17:10:20 web sshd[642061]: Invalid user ts2 from 196.189.236.216 port 59862 May 27 17:15:24 web sshd[643751]: Invalid user temp from 196.189.236.216 port 43120 May 27 17:16:58 web sshd[644296]: Invalid user testuser from 196.189.236.216 port 46926 ... show less	Brute-Force SSH
🇩🇪 singertc	2026-05-27 17:16:40 (1 week ago)	2026-05-27T19:03:42.321233+02:00 nospam3 sshd[2702459]: Invalid user prometheus from 196.189.236.216 ... show more 2026-05-27T19:03:42.321233+02:00 nospam3 sshd[2702459]: Invalid user prometheus from 196.189.236.216 port 46034 2026-05-27T19:08:15.463008+02:00 nospam3 sshd[2702953]: Invalid user remote from 196.189.236.216 port 35662 2026-05-27T19:09:59.914618+02:00 nospam3 sshd[2703019]: Invalid user ts2 from 196.189.236.216 port 39486 2026-05-27T19:15:03.669541+02:00 nospam3 sshd[2703830]: Invalid user temp from 196.189.236.216 port 50982 2026-05-27T19:16:39.008981+02:00 nospam3 sshd[2704007]: Invalid user testuser from 196.189.236.216 port 54788 ... show less	Brute-Force SSH
🇺🇸 oof	2026-05-27 17:14:11 (1 week ago)	May 27 12:10:47 124388 sshd[370974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eui ... show more May 27 12:10:47 124388 sshd[370974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 user=root May 27 12:10:48 124388 sshd[370974]: Failed password for root from 196.189.236.216 port 60782 ssh2 May 27 12:12:28 124388 sshd[370980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 user=root May 27 12:12:30 124388 sshd[370980]: Failed password for root from 196.189.236.216 port 36392 ssh2 May 27 12:14:10 124388 sshd[370986]: Invalid user temp from 196.189.236.216 port 40222 ... show less	Brute-Force SSH
🇧🇷 alertalicitacao.com.br	2026-05-27 17:13:40 (1 week ago)	2026-05-27T17:10:14.403836+00:00 alertalicitacao sshd[583841]: Invalid user ts2 from 196.189.236.216 ... show more 2026-05-27T17:10:14.403836+00:00 alertalicitacao sshd[583841]: Invalid user ts2 from 196.189.236.216 port 48084 2026-05-27T17:11:52.604638+00:00 alertalicitacao sshd[583993]: Connection from 196.189.236.216 port 51912 on 192.168.100.167 port 22 rdomain "" 2026-05-27T17:11:54.183500+00:00 alertalicitacao sshd[583993]: User root from 196.189.236.216 not allowed because not listed in AllowUsers 2026-05-27T17:13:38.495049+00:00 alertalicitacao sshd[584224]: Connection from 196.189.236.216 port 55760 on 192.168.100.167 port 22 rdomain "" 2026-05-27T17:13:40.037141+00:00 alertalicitacao sshd[584224]: User root from 196.189.236.216 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇫🇷 paradoxnetworks	2026-05-27 17:09:41 (1 week ago)	2026-05-27T17:01:22.263497+00:00 edge-thn-par02.int.pdx.net.uk sshd[3355049]: Invalid user prometheu ... show more 2026-05-27T17:01:22.263497+00:00 edge-thn-par02.int.pdx.net.uk sshd[3355049]: Invalid user prometheus from 196.189.236.216 port 49324 2026-05-27T17:07:54.872820+00:00 edge-thn-par02.int.pdx.net.uk sshd[3355542]: Invalid user remote from 196.189.236.216 port 49482 2026-05-27T17:09:40.020168+00:00 edge-thn-par02.int.pdx.net.uk sshd[3355681]: Invalid user ts2 from 196.189.236.216 port 53312 ... show less	Brute-Force SSH
🇫🇷 danirod	2026-05-27 17:08:19 (1 week ago)	May 27 17:04:02 vps324820 sshd[3260745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more May 27 17:04:02 vps324820 sshd[3260745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 May 27 17:04:04 vps324820 sshd[3260745]: Failed password for invalid user prometheus from 196.189.236.216 port 35690 ssh2 May 27 17:08:18 vps324820 sshd[3265331]: Invalid user remote from 196.189.236.216 port 52056 ... show less	Brute-Force SSH
🇺🇸 Tect.host	2026-05-27 16:25:29 (1 week ago)	Brute-force SSH server detected by Fail2ban	Brute-Force SSH
🇩🇪 ipcop.net	2026-05-27 16:20:52 (1 week ago)	2026-05-27T18:14:53.647329+02:00 gw-de19-01.guestgw.net sshd[2011762]: Invalid user testuser from 19 ... show more 2026-05-27T18:14:53.647329+02:00 gw-de19-01.guestgw.net sshd[2011762]: Invalid user testuser from 196.189.236.216 port 48390 2026-05-27T18:14:53.790891+02:00 gw-de19-01.guestgw.net sshd[2011762]: Disconnected from invalid user testuser 196.189.236.216 port 48390 [preauth] 2026-05-27T18:18:24.358648+02:00 gw-de19-01.guestgw.net sshd[2012851]: Disconnected from authenticating user root 196.189.236.216 port 37240 [preauth] 2026-05-27T18:20:51.071895+02:00 gw-de19-01.guestgw.net sshd[2013576]: Invalid user wireguard from 196.189.236.216 port 48196 2026-05-27T18:20:51.247409+02:00 gw-de19-01.guestgw.net sshd[2013576]: Disconnected from invalid user wireguard 196.189.236.216 port 48196 [preauth] show less	Brute-Force
🇬🇧 retrokitty.net	2026-05-27 16:19:36 (1 week ago)	2026-05-27T16:17:10.063460+00:00 pendulum.gravecat.net sshd[3192533]: pam_unix(sshd:auth): authentic ... show more 2026-05-27T16:17:10.063460+00:00 pendulum.gravecat.net sshd[3192533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 user=root 2026-05-27T16:17:12.582669+00:00 pendulum.gravecat.net sshd[3192533]: Failed password for root from 196.189.236.216 port 48348 ssh2 2026-05-27T16:19:33.467098+00:00 pendulum.gravecat.net sshd[3192600]: Invalid user wireguard from 196.189.236.216 port 59314 2026-05-27T16:19:33.471910+00:00 pendulum.gravecat.net sshd[3192600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 2026-05-27T16:19:35.425366+00:00 pendulum.gravecat.net sshd[3192600]: Failed password for invalid user wireguard from 196.189.236.216 port 59314 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-27 16:19:15 (1 week ago)	(sshd) Failed SSH login from 196.189.236.216 (ET/Ethiopia/-): 5 in the last 3600 secs; Ports: ; Dir ... show more (sshd) Failed SSH login from 196.189.236.216 (ET/Ethiopia/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: May 27 11:06:36 15553 sshd[25167]: Invalid user testuser from 196.189.236.216 port 60032 May 27 11:06:38 15553 sshd[25167]: Failed password for invalid user testuser from 196.189.236.216 port 60032 ssh2 May 27 11:16:32 15553 sshd[26317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 user=root May 27 11:16:34 15553 sshd[26317]: Failed password for root from 196.189.236.216 port 56548 ssh2 May 27 11:18:53 15553 sshd[26550]: Invalid user wireguard from 196.189.236.216 port 39540 show less	Brute-Force SSH

Showing 721 to 735 of 737 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c19::12e

🇧🇪 198.235.24.181

🇮🇳 182.78.64.150

🇮🇳 168.144.127.154

🇺🇸 216.25.89.112

🇮🇩 202.6.193.21

🇮🇳 182.76.228.234

🇮🇳 182.76.107.16

🇨🇳 175.43.163.197

🇺🇸 157.230.221.99

🇨🇳 47.104.231.53

🇨🇳 39.153.247.75

🇺🇸 2604:a940:300:5b6:0:27::

🇨🇦 142.114.187.46

🇨🇳 115.190.156.119

🇨🇳 111.39.167.59

🇨🇳 106.112.194.160

🇳🇬 105.116.1.52

🇷🇴 92.118.39.236

🇺🇸 74.82.47.44