JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.191.61.63

196.191.61.63 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 2%: ?

ISP	Dredawa_Internet
Usage Type	Mobile ISP
ASN	AS24757
Domain Name	ethiotelecom.et
Country	🇪🇹 Ethiopia
City	Addis Ababa, Addis Ababa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.191.61.63

Whois 196.191.61.63

IP Abuse Reports for 196.191.61.63:

This IP address has been reported a total of 18 times from 17 distinct sources. 196.191.61.63 was first reported on June 5th 2023, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-05 07:15:31 (2 weeks ago)	Botnet activity. Attribution: Angara Technologies Group / mikhail-smirnov-79830322 \| Attack Signatur ... show more Botnet activity. Attribution: Angara Technologies Group / mikhail-smirnov-79830322 \| Attack Signature Blocked: /wishlist/index/add/product/11197/form_key/2HrMrkzlW286Mn8M/ \| UA: Mozilla/5.0 (compatible; MSIE 8.0; Windows NT 11.0; Trident/5.1) \| (Magento... show less	Hacking Bad Web Bot Web App Attack
🇩🇪 403veli	2025-12-29 15:09:37 (5 months ago)	Confirmed malicious activity observed via T-Pot honeypot Observed 17 events on port 443 (unknown) fr ... show more Confirmed malicious activity observed via T-Pot honeypot Observed 17 events on port 443 (unknown) from 2025-12-29T15:09:37+00:00 to 2025-12-29T15:14:20.943000+00:00. Sample: {"src_ip": "196.191.61.63", "dest_port": 443, "src_port": 49673} show less	Port Scan
Anonymous	2025-11-15 19:26:13 (7 months ago)	scanning http requests from known botnet	Web App Attack
🇳🇱 exxos	2025-08-28 09:07:30 (9 months ago)	Attacks with Bad user agents	Hacking
🇫🇷 bigorre.org	2025-07-22 13:24:52 (11 months ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot
🇳🇱 Mangelot Hosting	2025-01-24 01:12:09 (1 year ago)	(RCPT) RCPT NOT ALLOWED FROM 196.191.61.63 (ET/Ethiopia/-): 1 in the last 3600 secs; Ports: ; Dire ... show more (RCPT) RCPT NOT ALLOWED FROM 196.191.61.63 (ET/Ethiopia/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
Anonymous	2024-09-03 11:57:05 (1 year ago)	196.191.61.63 - - [03/Sep/2024:13:56:45 +0200] "GET /wp-login.php HTTP/1.1" 404 66501 "-" "Mozilla/5 ... show more 196.191.61.63 - - [03/Sep/2024:13:56:45 +0200] "GET /wp-login.php HTTP/1.1" 404 66501 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 196.191.61.63 - - [03/Sep/2024:13:56:47 +0200] "GET /xmlrpc.php HTTP/1.1" 404 59078 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 196.191.61.63 - - [03/Sep/2024:13:56:49 +0200] "GET /wp-login.php HTTP/1.1" 404 59080 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 196.191.61.63 - - [03/Sep/2024:13:56:50 +0200] "GET /xmlrpc.php HTTP/1.1" 404 59078 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 196.191.61.63 - - [03/Sep/2024:13:57:01 +0200] "GET /wp-login.php HTTP/1.1" 404 43375 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 196.191.61.63 - - [03/Sep/2024:13:57:03 +0200] "GET /xmlrpc.php HTTP/1.1" 404 35947 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 196.191.61.63 - - [03/Sep/2024:13: ... show less	Brute-Force
🇬🇧 Bytemark	2024-06-27 15:48:56 (1 year ago)	196.191.61.63 - - [27/Jun/2024:16:48:55 +0100] "GET /wp-login.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 ... show more 196.191.61.63 - - [27/Jun/2024:16:48:55 +0100] "GET /wp-login.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 196.191.61.63 - - [27/Jun/2024:16:48:55 +0100] "GET /xmlrpc.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 196.191.61.63 - - [27/Jun/2024:16:48:55 +0100] "GET /wp-login.php HTTP/1.1" 404 27 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" show less	Brute-Force Web App Attack
🇺🇸 TheMadBeaker	2024-02-07 07:34:28 (2 years ago)	Fail2Ban Ban Triggered Wordpress Attack Attempt	Brute-Force Web App Attack
🇦🇺 MAGIC	2023-12-22 17:03:10 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇦 URAN Publishing Service	2023-12-22 13:20:32 (2 years ago)	196.191.61.63 - - [22/Dec/2023:15:20:31 +0200] "GET /wp-login.php HTTP/1.1" 404 4785 "-" "Mozilla/5. ... show more 196.191.61.63 - - [22/Dec/2023:15:20:31 +0200] "GET /wp-login.php HTTP/1.1" 404 4785 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 196.191.61.63 - - [22/Dec/2023:15:20:32 +0200] "GET /xmlrpc.php HTTP/1.1" 404 366 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" ... show less	Web App Attack
🇳🇿 Tripwire	2023-12-22 07:58:33 (2 years ago)	Wordpress login scanning	Brute-Force Web App Attack
Anonymous	2023-12-08 13:05:22 (2 years ago)	Malicious activity detected Trawling for 3rd-party CMS installations	Hacking Brute-Force Web App Attack
🇺🇸 ph	2023-12-05 13:28:12 (2 years ago)	Bad web bot attempting to run wp-login.php on non-WP site	Hacking Bad Web Bot Web App Attack
Anonymous	2023-12-01 05:36:00 (2 years ago)	"Illegal file type"	Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 173.255.223.89

🇨🇳 111.198.221.98

🇧🇷 45.205.1.70

🇺🇸 2620:171:fc:f0::249

🇬🇧 217.146.80.123

🇳🇱 195.178.110.30

🇳🇱 185.242.226.60

🇺🇸 162.216.150.109

🇬🇧 121.91.86.77

🇨🇴 108.174.156.122

🇲🇾 47.250.152.203

🇳🇱 45.153.34.71

🇺🇸 20.169.104.239

🇨🇦 20.63.8.55

🇺🇸 2604:a880:400:d1:0:4:9e8e:2001

🇳🇱 192.253.248.56

🇨🇳 157.0.0.10

🇧🇩 144.48.111.230

🇸🇨 45.194.67.26

🇺🇸 16.58.56.214