JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 189.140.76.172

189.140.76.172 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 58%: ?

58%

ISP	Gestión de direccionamiento UniNet
Usage Type	Fixed Line ISP
ASN	AS8151
Hostname(s)	dsl-172-76-140-189-dynamic.prod-infinitum.com.mx
Domain Name	uninet.net.mx
Country	🇲🇽 Mexico
City	Reynosa, Tamaulipas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 189.140.76.172

Whois 189.140.76.172

IP Abuse Reports for 189.140.76.172:

This IP address has been reported a total of 12 times from 10 distinct sources. 189.140.76.172 was first reported on August 24th 2024, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bellovacorp	2026-06-23 00:04:36 (3 hours ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇩🇪 guldkage	2026-06-22 22:21:06 (4 hours ago)	Unauthorized connection attempt detected from IP address 189.140.76.172 to port 445 (ger-03) [j]	Brute-Force Exploited Host
🇬🇧 Birdo	2026-06-22 16:40:00 (10 hours ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇩🇪 check-the-sum.fr	2026-06-22 02:48:39 (1 day ago)	Port Scanning	Port Scan
🇵🇱 nfsec.pl	2026-06-21 13:18:27 (1 day ago)	Detected: TCP scan on port: 445 with flags: SYN	Port Scan
🇫🇷 bellovacorp	2026-06-20 00:09:20 (3 days ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇦🇹 urnilxfgbez	2026-06-19 22:45:00 (3 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇷 vtchost.com	2026-06-19 14:04:46 (3 days ago)	Jun 19 16:04:45 vtchost kernel: [24201.640978] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11 ... show more Jun 19 16:04:45 vtchost kernel: [24201.640978] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:47:2d:08:00 SRC=189.140.76.172 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x00 TTL=114 ID=714 DF PROTO=TCP SPT=30925 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 cwytech	2026-06-19 11:25:39 (3 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/global-exclusion-high.	Hacking
🇩🇪 IP Analyzer	2026-06-18 22:00:16 (4 days ago)	Unauthorized connection attempt from IP address 189.140.76.172 on Port 445(SMB)	Port Scan
🇬🇧 Birdo	2026-06-18 02:19:54 (5 days ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
Anonymous	2024-08-24 13:00:35 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.202.112.240

🇳🇱 5.255.98.168

🇰🇷 119.196.213.196

🇮🇩 103.99.214.16

🇧🇬 79.124.62.230

🇬🇧 35.203.211.125

🇺🇸 34.230.221.101

🇨🇳 221.227.68.138

🇬🇧 185.247.137.245

🇳🇱 176.65.139.102

🇮🇹 172.253.228.155

🇺🇸 135.237.126.84

🇵🇰 110.36.89.2

🇺🇸 88.216.35.127

🇺🇸 66.132.172.230

🇳🇱 45.148.10.151

🇸🇬 45.78.198.199

🇩🇪 213.209.159.175

🇨🇳 180.153.91.15

🇺🇸 135.237.123.160