196.188.126.5
IP Intelligence Briefing: 196.188.126.5
Date: 2026-06-13
**Profile Summary**
- Risk Score: Low (0/100)
- Geolocation: Milan, Italy (Europe/Rome timezone)
- Network Allocation: Prefix `196.188.126.0/24` registered to Ethio Telecom (Ethiopia, allocated 2015-10-12).
- Threat Indicators: No active malicious indicators, spam, or known attacker associations.
**Observation History**
- Recent Activity:
- DNS records validated (DNSSEC valid).
- Listed in 8 threat feeds (3 high-severity listings).
- BGP prefix `196.188.126.0/24` associated with Ethio Telecom.
- Trends: No persistent malicious behavior detected.
**Network Relationships**
- Connected Entities: No direct relationships (subnets, hostnames, organizations, or certificates) linked to this IP.
- Subnet Context:
- /24 Subnet: `196.188.126.0/24` (no active neighbors or abuse density reported).
- Provider: Ethio Telecom (Ethiopia).
**Behavioral Insights**
- Services: No open ports, TLS certs, or HTTP services detected.
- Network Role: Firewalled / no services (likely infrastructure or non-public IP).
- Mobility: Not a mobile carrier IP, residential, or Tor node.
**Actionable Intelligence**
1. Monitor for Anomalies: Despite low risk, the IPโs geolocation (Italy) conflicts with its registration (Ethiopia). Verify if this is a misconfiguration or spoofed traffic.
2. Check Threat Feeds: Investigate the 3 high-severity listings in threat feeds (specific feeds omitted).
3. Subnet Analysis: Expand monitoring to the `196.188.126.0/24` subnet, though no abuse density or active neighbors were detected.
Conclusion: Low-risk IP with no immediate threats, but anomalies in geolocation and network registration warrant further investigation.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Ethio Telecom |
| ASN | AS24757 |
| Network Name | 196.188.96.0 - 196.188.127.255 |
| CIDR Block | 196.188.96.0/19 |
| RIR | AFRINIC |
| Country | ET |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 0% | 0 | 0 |
| routing | 0% | 0 | 0 |
| services | 0% | 0 | 0 |
| ownership | 0% | 0 | 0 |
| reputation | 0% | 0 | 0 |
| geolocation | 0% | 0 | 0 |
| Overall | 0% | 0 | 0 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-06-07 01:46:34 UTC |
| Last Seen | 2026-06-13 17:24:16 UTC |
| Profile Built | 2026-06-13 17:29:35 UTC |
| Data Freshness | Live |
| Signal Types | 14 |
| Total Observations | 14 |
Full dossier details are available via our API.