JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.189.56.132

196.189.56.132 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 10%: ?

10%

ISP	To__BRAS_DHCP_AD_10800E
Usage Type	Fixed Line ISP
ASN	AS24757
Domain Name	ethiotelecom.et
Country	🇪🇹 Ethiopia
City	Addis Ababa, Addis Ababa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.189.56.132

Whois 196.189.56.132

IP Abuse Reports for 196.189.56.132:

This IP address has been reported a total of 15 times from 10 distinct sources. 196.189.56.132 was first reported on August 5th 2021, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-12 11:07:51 (2 weeks ago)	Unauthorized VPN login attempts	Hacking Brute-Force
🇺🇸 RAP	2026-05-10 14:55:46 (1 month ago)	2026-05-10 14:55:46 UTC Unauthorized activity to TCP port 2323. Telnet	Port Scan
Anonymous	2026-04-24 14:34:44 (2 months ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in printer-friendly.asp show less	Exploited Host Bad Web Bot
🇨🇭 Origon	2026-03-17 19:43:10 (3 months ago)	http-admin-interface-probing - IP: 196.189.56.132 - time="2026-03-17T20:43:10+01:00" level=info msg ... show more http-admin-interface-probing - IP: 196.189.56.132 - time="2026-03-17T20:43:10+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-admin-interface-probing by ip 196.189.56.132 (ET/24757) : 4h ban on Ip 196.189.56.132" module=db show less	Web App Attack
Anonymous	2025-11-25 12:57:15 (7 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-21 17:39:09 (7 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-15 06:37:47 (7 months ago)	scanning http requests from known botnet	Web App Attack
🇳🇱 exxos	2025-08-01 03:48:03 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇪🇸 Global Cyber Police	2025-07-28 07:15:54 (11 months ago)	Malicious bot activity detected: Hitting honeypot page. Part of massive botnet.	DDoS Attack Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Web App Attack
🇪🇸 Global Cyber Police	2025-07-27 18:11:12 (11 months ago)	Malicious bot activity detected: Hitting honeypot page (200 OK with 258/259 bytes sent).	Port Scan Brute-Force Web App Attack
🇳🇱 Study Bitcoin 🤗	2025-04-29 22:18:56 (1 year ago)	Port probe to tcp/445 (smb) [srv134]	Port Scan Hacking
Anonymous	2025-04-29 19:35:40 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2025-04-29 07:42:58 (1 year ago)	tcp/445	Port Scan
🇺🇸 MPL	2025-04-29 07:42:58 (1 year ago)	tcp/445 (2 or more attempts)	Port Scan
🇬🇧 Steve	2021-08-05 20:21:04 (4 years ago)	Attempts against non-existent wp-login	Brute-Force Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 185.127.69.130

🇩🇪 167.94.145.24

🇺🇸 162.216.150.143

🇭🇰 103.149.26.230

🇰🇷 221.151.84.6

🇮🇳 115.178.97.58

🇨🇳 106.12.157.104

🇺🇸 40.119.29.137

🇬🇧 193.163.125.60

🇳🇱 185.223.235.20

🇧🇷 177.8.251.111

🇭🇰 165.154.40.244

🇺🇸 162.216.150.209

🇺🇸 162.216.149.67

🇻🇳 113.177.27.200

🇨🇳 61.145.190.218

🇨🇳 59.36.147.146

🇧🇷 58.68.199.44

🇺🇸 47.251.30.255

🇧🇪 34.79.16.148