JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 189.123.96.1

189.123.96.1 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 32%: ?

32%

ISP	Claro NXT Telecomunicacoes Ltda
Usage Type	Fixed Line ISP
ASN	AS28573
Hostname(s)	bd7b6001.virtua.com.br
Domain Name	claro.com.br
Country	🇧🇷 Brazil
City	Ribeirao Preto, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 189.123.96.1

Whois 189.123.96.1

IP Abuse Reports for 189.123.96.1:

This IP address has been reported a total of 16 times from 12 distinct sources. 189.123.96.1 was first reported on August 30th 2023, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇪 NordhTech	2026-06-30 05:00:23 (5 hours ago)	More than 3 malicious connection attempts, trying port(s) 7338/tcp, then blocked from services ...	Port Scan Hacking
Anonymous	2026-06-29 13:07:07 (21 hours ago)	Port scan on ports 8510/UDP, 27216/UDP, 30608/UDP, 30682/UDP, 33040/UDP, 39171/UDP, 39293/UDP, 42391 ... show more Port scan on ports 8510/UDP, 27216/UDP, 30608/UDP, 30682/UDP, 33040/UDP, 39171/UDP, 39293/UDP, 42391/UDP, 43039/UDP, 43613/UDP, 49898/UDP, 51762/UDP, 53096/UDP, 60129/UDP, 61539/UDP to unused IP show less	Port Scan
🇫🇷 Duggy_Tuxy🧱	2026-06-29 00:55:09 (1 day ago)	[DS-BLKS-PROD01] Blocked by SysWarden Firewall (Traffic from Blocked Country (GeoIP))	Port Scan
🇺🇸 Cyber Crusader	2026-06-17 19:35:32 (1 week ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
Anonymous	2026-06-08 08:52:41 (3 weeks ago)	unsolicited UDP packet to port 33695 (1380 bytes)	Hacking
Anonymous	2026-05-13 11:06:12 (1 month ago)	unsolicited UDP packet to port 65133 (26 bytes)	Hacking
🇩🇪 AS213449.net	2026-04-25 21:38:02 (2 months ago)	04/25/2026-23:37:59.027342 189.123.96.1 ET SCAN Suspicious inbound to mySQL port 3306	SQL Injection
🇺🇸 Cyber Crusader	2026-04-25 00:54:38 (2 months ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
Anonymous	2026-04-20 11:44:07 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-04-19 11:13:25 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 quilla	2026-03-28 23:35:00 (3 months ago)	Botnet infected device observed in honeypot (Vector: TCP HANDSHAKE ATTACK)	DDoS Attack
🇨🇦 polycoda	2025-12-30 12:29:24 (5 months ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
🇩🇪 SMARTNET	2025-11-30 18:38:00 (6 months ago)	Aisuru(Mirai variant) DDoS	DDoS Attack
Anonymous	2025-11-25 09:56:17 (7 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-19 09:10:14 (7 months ago)	scanning http requests from known botnet	Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 2402:800:6f57:7236:53d:f959:c20f:64b0

🇩🇪 212.227.203.59

🇳🇱 204.76.203.79

🇩🇪 193.124.20.229

🇸🇪 185.189.46.67

🇮🇳 152.57.126.230

🇸🇬 84.247.151.140

🇺🇸 71.6.134.230

🇺🇸 23.95.191.250

🇬🇧 5.226.140.117

🇨🇳 223.144.195.128

🇵🇰 182.188.123.65

🇭🇰 152.32.128.204

🇹🇷 104.28.154.251

🇷🇴 81.180.93.2

🇧🇬 79.124.62.126

🇯🇵 72.63.16.216

🇱🇹 45.227.254.170

🇺🇸 24.5.244.85

🇮🇪 20.13.164.162