JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2.189.173.85

2.189.173.85 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 77%: ?

77%

ISP	Nimadd net co.
Usage Type	Fixed Line ISP
ASN	AS42337
Domain Name	ito.gov.ir
Country	🇮🇷 Iran (Islamic Republic of)
City	Tehran, Tehran

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2.189.173.85

Whois 2.189.173.85

IP Abuse Reports for 2.189.173.85:

This IP address has been reported a total of 19 times from 15 distinct sources. 2.189.173.85 was first reported on June 6th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇾 StatsMe	2026-06-09 21:49:22 (6 days ago)	2026-06-09T04:26:00.485633+0300 ET SCAN Suspicious inbound to MSSQL port 1433	Port Scan
🇧🇷 SOC Blue Team	2026-06-09 05:25:54 (1 week ago)	IPs get by Hunting on SIEM	Phishing Web Spam Port Scan Hacking
🇺🇸 MPL	2026-06-08 23:20:45 (1 week ago)	tcp/445 (2 or more attempts)	Port Scan
🇳🇴 tmiland	2026-06-08 13:08:55 (1 week ago)	Suricata Detected 735 attacks from 2.189.173.85.; ET SCAN Suspicious inbound to MSSQL port 1433; IP: ... show more Suricata Detected 735 attacks from 2.189.173.85.; ET SCAN Suspicious inbound to MSSQL port 1433; IP: 2.189.173.85; Ports: 56273; Direction: to_server; Trigger: SCAN; Category: Potentially Bad Traffic; Severity: 2 show less	Port Scan
🇷🇸 Smel	2026-06-08 10:38:26 (1 week ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection
🇩🇪 Justin F. \| AS204464	2026-06-08 10:29:49 (1 week ago)	Honeypot [nx-infrastructure]: SMB traffic on port 445 Reported by: Justin F.	Hacking
🇺🇸 donarev419	2026-06-08 05:01:31 (1 week ago)	Connection to port 445 with data transfer. Data preview:	Port Scan Hacking
🇺🇸 RAP	2026-06-07 22:09:17 (1 week ago)	2026-06-07 22:09:17 UTC Unauthorized activity to TCP port 445. SMB	Port Scan
🇫🇷 GoodOldTOS	2026-06-07 21:18:37 (1 week ago)	Connection to MSSQL honeypot	Hacking
🇺🇸 RAP	2026-06-07 19:49:40 (1 week ago)	2026-06-07 19:49:40 UTC Unauthorized activity to TCP port 445. SMB	Port Scan
🇩🇪 AS213449.net	2026-06-07 03:59:29 (1 week ago)	06/07/2026-05:59:25.641859 src=2.189.173.85 dst=5.175.170.246:1433 proto=6 msg=ET SCAN Suspicious in ... show more 06/07/2026-05:59:25.641859 src=2.189.173.85 dst=5.175.170.246:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433 show less	SQL Injection
🇩🇪 AS213449.net	2026-06-07 03:37:56 (1 week ago)	06/07/2026-05:37:52.841173 src=2.189.173.85 dst=5.175.170.239:1433 proto=6 msg=ET SCAN Suspicious in ... show more 06/07/2026-05:37:52.841173 src=2.189.173.85 dst=5.175.170.239:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433 show less	SQL Injection
🇩🇪 AS213449.net	2026-06-07 02:54:20 (1 week ago)	06/07/2026-04:54:14.252799 src=2.189.173.85 dst=5.175.170.232:1433 proto=6 msg=ET SCAN Suspicious in ... show more 06/07/2026-04:54:14.252799 src=2.189.173.85 dst=5.175.170.232:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433 show less	SQL Injection
🇩🇪 HoneyPot-FrPri	2026-06-07 00:34:26 (1 week ago)	1780792465 - 06/07/2026 02:34:25 Host: 2.189.173.85/2.189.173.85 Port: 1088 TCP Blocked ...	Port Scan
Anonymous	2026-06-06 23:41:23 (1 week ago)	unsolicited connect TCP dport 445 (sport 46236)	Hacking

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 193.202.11.112

🇩🇪 167.86.72.151

🇺🇸 162.216.149.136

🇺🇸 162.216.149.93

🇧🇬 78.128.112.30

🇺🇸 20.161.47.115

🇩🇪 213.209.159.242

🇳🇱 193.176.31.208

🇳🇱 172.94.9.55

🇺🇸 162.216.149.138

🇲🇴 125.31.4.70

🇨🇳 121.229.156.114

🇨🇳 112.46.212.53

🇵🇱 95.214.53.157

🇹🇷 78.182.158.235

🇺🇸 66.228.62.150

🇮🇳 66.116.205.19

🇹🇭 58.10.107.246

🇮🇪 54.78.14.204

🇮🇪 52.209.165.67