JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2.189.173.81

2.189.173.81 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 100%: ?

100%

ISP	Nimadd net co.
Usage Type	Fixed Line ISP
ASN	AS42337
Domain Name	ito.gov.ir
Country	🇮🇷 Iran (Islamic Republic of)
City	Tehran, Tehran

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2.189.173.81

Whois 2.189.173.81

IP Abuse Reports for 2.189.173.81:

This IP address has been reported a total of 35 times from 21 distinct sources. 2.189.173.81 was first reported on June 1st 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ShadowWhisperer	2026-06-05 22:02:54 (4 days ago)	SMB port scan / probe. SMB1 Negotiate	Port Scan Hacking
Anonymous	2026-06-05 18:36:41 (4 days ago)	Honeypot hit: SMB traffic on port 445 Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB	Hacking
🇳🇱 BIV	2026-06-05 13:53:06 (4 days ago)	Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 1433. Automated tiered (T-Pot+DSh ... show more Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 1433. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇺🇸 RAP	2026-06-05 13:10:42 (4 days ago)	2026-06-05 13:10:42 UTC Unauthorized activity to TCP port 445. SMB	Port Scan
🇺🇸 RAP	2026-06-05 10:08:53 (4 days ago)	2026-06-05 10:08:53 UTC Unauthorized activity to TCP port 445. SMB	Port Scan
🇫🇷 zulzeen	2026-06-05 08:13:07 (4 days ago)	[incypit-web] Blocked by SysWarden Firewall [GEO] (Database/Cache Attack)	Hacking Brute-Force
🇬🇧 PeravixGroup	2026-06-04 16:20:50 (5 days ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-06-04 16:02:45 (5 days ago)	Blocked by UFW (TCP on 1433) Source port: 46201 TTL: 234 Packet length: 40 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1433) Source port: 46201 TTL: 234 Packet length: 40 TOS: 0x00 This report (for 2.189.173.81) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇷 SOC Blue Team	2026-06-04 15:26:10 (5 days ago)	IPs get by Hunting on SIEM	Phishing Web Spam Port Scan Hacking
🇩🇪 Honeypot-EU-Fru	2026-06-04 10:05:25 (5 days ago)	1780567524 - 06/04/2026 12:05:24 Host: 2.189.173.81/2.189.173.81 Port: 445 TCP Blocked ...	Port Scan
🇩🇪 D3RP4UL	2026-06-04 04:46:45 (6 days ago)	MSSQL traffic (on 1433) with username sa and empty password	Brute-Force
🇺🇸 xmission.com	2026-06-04 03:53:28 (6 days ago)	Blocked by UFW (TCP on 1433) Source port: 56185 TTL: 231 Packet length: 40 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 1433) Source port: 56185 TTL: 231 Packet length: 40 TOS: 0x08 This report (for 2.189.173.81) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 Hiigara	2026-06-03 22:00:34 (6 days ago)	connection attempt : 2.189.173.81 on port : tcp/1433 (MSSQL)	Port Scan
🇺🇸 RAP	2026-06-03 19:09:07 (6 days ago)	2026-06-03 19:09:07 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇺🇸 RAP	2026-06-03 16:23:46 (6 days ago)	2026-06-03 16:23:46 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.36.71

🇮🇷 31.7.66.163

🇧🇷 179.189.87.231

🇹🇷 176.91.198.105

🇳🇱 176.65.139.231

🇮🇩 163.223.227.44

🇨🇳 110.53.234.245

🇧🇩 103.163.170.35

🇭🇰 101.36.127.85

🇸🇾 91.144.21.210

🇺🇸 45.33.52.85

🇮🇩 43.249.140.69

🇺🇸 34.174.26.94

🇺🇸 20.168.12.53

🇨🇳 14.103.113.212

🇪🇹 196.188.116.56

🇩🇪 167.94.145.28

🇺🇸 147.185.132.55

🇮🇳 106.204.228.33

🇧🇩 103.171.233.64