JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 201.148.3.130

201.148.3.130 was found in our database!

This IP was reported 429 times. Confidence of Abuse is 55%: ?

55%

ISP	Operbes, S.A. de C.V.
Usage Type	Fixed Line ISP
ASN	AS18734
Hostname(s)	130.201-148-3.bestelclientes.com.mx
Domain Name	izzi.mx
Country	🇲🇽 Mexico
City	Ebano, San Luis Potosi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 201.148.3.130

Whois 201.148.3.130

IP Abuse Reports for 201.148.3.130:

This IP address has been reported a total of 429 times from 70 distinct sources. 201.148.3.130 was first reported on January 16th 2021, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 RAP	2026-06-04 08:35:36 (1 hour ago)	2026-06-04 08:35:36 UTC Unauthorized activity to TCP port 445. SMB	Port Scan
🇺🇸 drewf.ink	2026-06-04 06:19:12 (3 hours ago)	[06:19] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [06:19] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
Anonymous	2026-05-29 12:18:28 (5 days ago)	Unauthorized connection to SMB port 445	Port Scan
🇺🇸 drewf.ink	2026-05-25 01:10:08 (1 week ago)	[01:10] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [01:10] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
🇦🇹 urnilxfgbez	2026-05-19 22:45:00 (2 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇪🇸 DXC-0	2026-05-18 03:00:44 (2 weeks ago)	Multiple attacks on Honeypot servers	Web Spam Brute-Force Web App Attack Hacking
🇵🇱 nfsec.pl	2026-05-17 02:54:45 (2 weeks ago)	Detected: TCP scan on port: 445 with flags: SYN	Port Scan
🇫🇷 vtchost.com	2026-05-15 01:28:40 (2 weeks ago)	May 15 03:28:40 vtchost kernel: [202923.098086] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:1 ... show more May 15 03:28:40 vtchost kernel: [202923.098086] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:2a:b3:08:00 SRC=201.148.3.130 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x20 TTL=112 ID=14686 DF PROTO=TCP SPT=50208 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇹🇷 Threat.live	2026-05-14 15:55:03 (2 weeks ago)	Suspicious Connection Attempts	Brute-Force
🇬🇧 PeravixGroup	2026-05-14 15:45:19 (2 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 BULLSEYE	2026-05-13 10:38:59 (3 weeks ago)	Automated detection from Windows Firewall. Observed patterns: Top: TCP/445=3 (possible SMB scan/exp ... show more Automated detection from Windows Firewall. Observed patterns: Top: TCP/445=3 (possible SMB scan/exploit attempt). Traffic characteristics strongly indicate automated scanning activity. show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-11 15:18:30 (3 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 geeek	2026-05-03 03:28:06 (1 month ago)	Port scanning: 445 TCP Blocked	Port Scan
🇦🇺 LiftUp Hosting	2026-05-01 16:14:12 (1 month ago)	Honeypot hit: SMB traffic on port 445	Hacking
🇩🇪 Silly Development	2026-04-24 23:12:48 (1 month ago)	SMB Unauthorized Attempt	Brute-Force Port Scan Hacking

Showing 1 to 15 of 429 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 193.176.31.236

🇦🇷 181.47.9.103

🇩🇪 178.16.52.253

🇳🇱 176.65.139.216

🇧🇩 103.213.238.91

🇩🇪 51.116.246.105

🇷🇴 2.57.122.103

🇰🇷 221.159.119.6

🇪🇬 197.199.224.52

🇳🇱 195.178.110.30

🇬🇧 194.61.3.48

🇦🇺 139.99.194.30

🇺🇿 95.214.211.220

🇷🇴 92.118.39.196

🇳🇱 91.124.209.201

🇨🇭 85.5.148.125

🇺🇸 75.90.20.40

🇹🇼 45.133.176.93

🇺🇸 2607:f8b0:4864:20::1145

🇨🇳 219.142.251.122