JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 189.173.145.128

189.173.145.128 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 97%: ?

97%

ISP	Gestión de direccionamiento UniNet
Usage Type	Fixed Line ISP
ASN	AS8151
Hostname(s)	dsl-128-145-173-189-dynamic.prod-infinitum.com.mx
Domain Name	uninet.net.mx
Country	🇲🇽 Mexico
City	Hermosillo, Sonora

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 189.173.145.128

Whois 189.173.145.128

IP Abuse Reports for 189.173.145.128:

This IP address has been reported a total of 33 times from 21 distinct sources. 189.173.145.128 was first reported on May 29th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-12 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2026-06-12 08:22:04 (2 days ago)	Try to connect to Port_Scan_445_stealth	Port Scan
🇫🇷 sthoyer.de	2026-06-10 17:09:10 (4 days ago)	Jun 10 19:09:09 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 10 19:09:09 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=189.173.145.128 DST=173.212.223.67 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=19145 DF PROTO=TCP SPT=46139 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇭🇰 pengpeng	2026-06-10 15:24:40 (4 days ago)	monitor: on ser162528253480 \| port: 445 \| ttl: 127 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on ser162528253480 \| port: 445 \| ttl: 127 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-10 10:02:25 (4 days ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 Birdo	2026-06-09 20:05:59 (5 days ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇫🇷 sthoyer.de	2026-06-09 12:41:39 (5 days ago)	Jun 9 14:41:38 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 9 14:41:38 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=189.173.145.128 DST=173.212.223.67 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=6299 DF PROTO=TCP SPT=59781 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 Little Iguana	2026-06-09 08:46:36 (5 days ago)	trying to access non-authorized port	Port Scan
🇫🇷 sthoyer.de	2026-06-09 06:55:06 (5 days ago)	Jun 9 08:55:04 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 9 08:55:04 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=189.173.145.128 DST=173.212.223.67 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=10379 DF PROTO=TCP SPT=52341 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇦🇹 urnilxfgbez	2026-06-07 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇷 vtchost.com	2026-06-07 21:08:38 (1 week ago)	Jun 7 23:08:37 vtchost kernel: [222624.492013] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:1 ... show more Jun 7 23:08:37 vtchost kernel: [222624.492013] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:2a:b3:08:00 SRC=189.173.145.128 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x00 TTL=118 ID=4592 DF PROTO=TCP SPT=55053 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 Birdo	2026-06-07 11:40:25 (1 week ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇫🇷 zulzeen	2026-06-07 03:25:36 (1 week ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (SMB/Possible Ransomware Attack)	Hacking Brute-Force
🇫🇷 geeek	2026-06-07 02:38:38 (1 week ago)	Port scanning: 445 TCP Blocked	Port Scan
🇬🇧 Birdo	2026-06-06 07:21:15 (1 week ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.145.18

🇸🇬 2404:6800:4003:c26::121

🇰🇷 211.115.191.153

🇱🇰 124.43.10.224

🇵🇱 91.228.33.47

🇨🇳 60.16.201.120

🇸🇬 47.84.133.201

🇳🇱 45.148.10.157

🇸🇬 35.240.174.82

🇧🇪 34.78.123.234

🇨🇭 209.99.184.143

🇧🇷 177.71.53.161

127.0.0.1

🇺🇸 107.172.174.191

🇺🇸 91.230.168.87

🇺🇸 50.46.141.125

🇮🇩 43.252.105.41

🇸🇬 212.73.148.19

🇹🇬 156.38.73.89

🇰🇷 120.29.140.140