196.189.225.26
IP Intelligence Briefing: 196.189.225.26/32
Date: 2026-06-13
---
**1. Risk Profile**
- Overall Risk Score: 25 (Low Risk)
- Provider Score: 0 (No provider-specific risk)
- Authority Score: 0 (No authoritative threat indicators)
- Network Classification: Residential endpoint (Ethio Telecom, Ethiopia)
- Threat Indicators: No malicious activity, spam, or known attacker associations.
---
**2. Geolocation & Ownership**
- Registered Owner: Ethio Telecom (ASN 24757, Africa)
- Geolocation:
- Primary Data: Milan, Italy (conflict with ownership data).
- Secondary Data: Addis Ababa, Ethiopia (from observation history).
- Note: Geolocation inconsistency may indicate routing anomalies or misattribution.
---
**3. Observation History (30 Days)**
- Geolocation:
- 1 observation in Addis Ababa, Ethiopia (likely residential).
- DNSBL Listing:
- Listed in 1 out of 8 DNSBLs (low severity).
- Network Behavior:
- No DNS resolution, open ports, or TLS activity detected.
---
**4. Relationships & Network Context**
- Subnet: 196.189.224.0/21 (Ethio Telecom)
- Neighbors (24-bit subnet):
- 196.189.225.79: Risk Score 0, Authority Score 50.
- 196.189.225.123: Risk Score 0, Authority Score 50.
- Subnet Abuse Density: 0% (no high-risk neighbors).
---
**5. Actionable Insights**
- Monitor Geolocation Discrepancy: Investigate routing anomalies or misconfigured DNS.
- Track DNSBL Listings: Verify if the IP is associated with low-severity spam or abuse.
- No Immediate Mitigation Needed: Low risk profile and no active threats suggest no urgent action required.
---
Conclusion: 196.189.225.26 is a residential IP owned by Ethio Telecom with no significant threat indicators. The geolocation conflict and DNSBL listing warrant further investigation, but the IP is currently deemed low risk.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Ethio Telecom |
| ASN | AS24757 |
| Network Name | 196.189.224.0 - 196.189.231.255 |
| CIDR Block | 196.189.224.0/21 |
| RIR | AFRINIC |
| Country | ET |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Residential |
| Service Purpose | Residential Endpoint |
| Network Tier | End-User โ Residential ISP endpoint |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 0% | 0 | 0 |
| routing | 0% | 0 | 0 |
| services | 0% | 0 | 0 |
| ownership | 25% | 1 | 1 |
| reputation | 0% | 0 | 0 |
| geolocation | 0% | 0 | 0 |
| Overall | 4% | 1 | 1 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-06-06 07:27:18 UTC |
| Last Seen | 2026-06-13 11:50:47 UTC |
| Profile Built | 2026-06-13 11:57:43 UTC |
| Data Freshness | Live |
| Signal Types | 14 |
| Total Observations | 14 |
Full dossier details are available via our API.