JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.189.236.216

196.189.236.216 was found in our database!

This IP was reported 742 times. Confidence of Abuse is 100%: ?

100%

ISP	Ethio Telecom
Usage Type	Fixed Line ISP
ASN	AS24757
Domain Name	ethiotelecom.et
Country	🇪🇹 Ethiopia
City	Addis Ababa, Addis Ababa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.189.236.216

Whois 196.189.236.216

IP Abuse Reports for 196.189.236.216:

This IP address has been reported a total of 742 times from 413 distinct sources. 196.189.236.216 was first reported on May 27th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 danirod	2026-05-27 17:08:19 (1 week ago)	May 27 17:04:02 vps324820 sshd[3260745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more May 27 17:04:02 vps324820 sshd[3260745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 May 27 17:04:04 vps324820 sshd[3260745]: Failed password for invalid user prometheus from 196.189.236.216 port 35690 ssh2 May 27 17:08:18 vps324820 sshd[3265331]: Invalid user remote from 196.189.236.216 port 52056 ... show less	Brute-Force SSH
🇺🇸 Tect.host	2026-05-27 16:25:29 (1 week ago)	Brute-force SSH server detected by Fail2ban	Brute-Force SSH
🇩🇪 ipcop.net	2026-05-27 16:20:52 (1 week ago)	2026-05-27T18:14:53.647329+02:00 gw-de19-01.guestgw.net sshd[2011762]: Invalid user testuser from 19 ... show more 2026-05-27T18:14:53.647329+02:00 gw-de19-01.guestgw.net sshd[2011762]: Invalid user testuser from 196.189.236.216 port 48390 2026-05-27T18:14:53.790891+02:00 gw-de19-01.guestgw.net sshd[2011762]: Disconnected from invalid user testuser 196.189.236.216 port 48390 [preauth] 2026-05-27T18:18:24.358648+02:00 gw-de19-01.guestgw.net sshd[2012851]: Disconnected from authenticating user root 196.189.236.216 port 37240 [preauth] 2026-05-27T18:20:51.071895+02:00 gw-de19-01.guestgw.net sshd[2013576]: Invalid user wireguard from 196.189.236.216 port 48196 2026-05-27T18:20:51.247409+02:00 gw-de19-01.guestgw.net sshd[2013576]: Disconnected from invalid user wireguard 196.189.236.216 port 48196 [preauth] show less	Brute-Force
🇬🇧 retrokitty.net	2026-05-27 16:19:36 (1 week ago)	2026-05-27T16:17:10.063460+00:00 pendulum.gravecat.net sshd[3192533]: pam_unix(sshd:auth): authentic ... show more 2026-05-27T16:17:10.063460+00:00 pendulum.gravecat.net sshd[3192533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 user=root 2026-05-27T16:17:12.582669+00:00 pendulum.gravecat.net sshd[3192533]: Failed password for root from 196.189.236.216 port 48348 ssh2 2026-05-27T16:19:33.467098+00:00 pendulum.gravecat.net sshd[3192600]: Invalid user wireguard from 196.189.236.216 port 59314 2026-05-27T16:19:33.471910+00:00 pendulum.gravecat.net sshd[3192600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 2026-05-27T16:19:35.425366+00:00 pendulum.gravecat.net sshd[3192600]: Failed password for invalid user wireguard from 196.189.236.216 port 59314 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-27 16:19:15 (1 week ago)	(sshd) Failed SSH login from 196.189.236.216 (ET/Ethiopia/-): 5 in the last 3600 secs; Ports: ; Dir ... show more (sshd) Failed SSH login from 196.189.236.216 (ET/Ethiopia/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: May 27 11:06:36 15553 sshd[25167]: Invalid user testuser from 196.189.236.216 port 60032 May 27 11:06:38 15553 sshd[25167]: Failed password for invalid user testuser from 196.189.236.216 port 60032 ssh2 May 27 11:16:32 15553 sshd[26317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 user=root May 27 11:16:34 15553 sshd[26317]: Failed password for root from 196.189.236.216 port 56548 ssh2 May 27 11:18:53 15553 sshd[26550]: Invalid user wireguard from 196.189.236.216 port 39540 show less	Brute-Force SSH
🇫🇮 licen777	2026-05-27 16:14:37 (1 week ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-05-27T16:12:32Z and 2026-05-2 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-05-27T16:12:32Z and 2026-05-27T16:14:37Z show less	Brute-Force SSH
Anonymous	2026-05-27 16:10:37 (1 week ago)	May 27 16:10:34 scw-6657dc sshd[9805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 e ... show more May 27 16:10:34 scw-6657dc sshd[9805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 May 27 16:10:34 scw-6657dc sshd[9805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.189.236.216 May 27 16:10:36 scw-6657dc sshd[9805]: Failed password for invalid user testuser from 196.189.236.216 port 42882 ssh2 ... show less	Brute-Force SSH

Showing 736 to 742 of 742 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.108

🇬🇧 193.163.125.114

🇺🇸 67.207.84.8

🇨🇳 175.174.141.5

🇹🇼 165.154.227.8

🇺🇸 162.216.149.85

🇱🇾 156.38.40.109

🇧🇷 138.255.157.62

🇸🇬 103.250.11.63

🇮🇩 103.234.208.154

🇮🇩 103.160.56.142

🇿🇦 102.182.54.48

🇺🇸 47.77.229.244

🇮🇳 36.255.18.89

🇷🇼 196.12.128.158

🇨🇳 171.111.218.2

🇮🇷 171.22.27.209

🇫🇮 147.185.133.217

🇺🇸 138.113.23.170

🇸🇬 114.119.130.3