JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 189.89.9.21

189.89.9.21 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 97%: ?

97%

ISP	JUPITER PROVEDOR DE INTERNET LTDA
Usage Type	Fixed Line ISP
ASN	AS28182
Hostname(s)	189-89-9-21.jupiterprovedor.com.br
Domain Name	jupiterprovedor.com.br
Country	🇧🇷 Brazil
City	Imperatriz, Maranhao

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 189.89.9.21

Whois 189.89.9.21

IP Abuse Reports for 189.89.9.21:

This IP address has been reported a total of 37 times from 18 distinct sources. 189.89.9.21 was first reported on October 11th 2025, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-14 03:57:34 (6 hours ago)	Blocked by UFW on MVI [1433/tcp] \| SPT: 46205 \| TTL: 245 \| LEN: 40 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on MVI [1433/tcp] \| SPT: 46205 \| TTL: 245 \| LEN: 40 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-13 18:00:29 (16 hours ago)	Drop from IP address 189.89.9.21 to tcp-port 1433	Port Scan
🇩🇪 _ArminS_	2026-06-13 00:11:01 (1 day ago)	SP-Scan 59569:445 detected 2026.06.13 02:11:01 blocked until 2026.08.01 19:13:48	Port Scan
Anonymous	2026-06-12 16:19:12 (1 day ago)	2026-06-12 16:19:12 warning[1472368]: host 189-89-9-21.jupiterprovedor.com.br[189.89.9.21] ... show more 2026-06-12 16:19:12 warning[1472368]: host 189-89-9-21.jupiterprovedor.com.br[189.89.9.21]: unauthorized access attempted: tcp/1433 show less	Port Scan Brute-Force
🇳🇱 StopAbuse	2026-06-11 07:46:32 (3 days ago)	tcp/1433	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-10 23:39:04 (3 days ago)	Honeypot [nx-infrastructure]: SMB traffic on port 445 Reported by: Justin F.	Hacking
🇩🇪 D3RP4UL	2026-06-10 19:47:18 (3 days ago)	MSSQL traffic (on 1433) with username sa and empty password	Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-10 19:11:47 (3 days ago)	Honeypot hit: SMB traffic on port 445	IoT Targeted
🇬🇧 PeravixGroup	2026-06-10 17:20:06 (3 days ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇨🇦 DRI	2026-06-10 11:55:33 (3 days ago)	Unsolicited TCP traffic on Honeypot, srcport=53166 dstport=445	Port Scan Hacking
🇬🇧 gbzret4d	2026-06-10 11:50:50 (3 days ago)	Honeypot [uk-production01]: SMB traffic on port 445	Hacking
🇷🇸 Smel	2026-06-10 07:23:14 (4 days ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection
🇳🇱 AS213449.net	2026-06-10 06:07:04 (4 days ago)	06/10/2026-10:07:02.671267 src=189.89.9.21 dst=5.175.170.137:1433 proto=6 msg=ET SCAN Suspicious inb ... show more 06/10/2026-10:07:02.671267 src=189.89.9.21 dst=5.175.170.137:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433 show less	SQL Injection
🇳🇱 AS213449.net	2026-06-10 05:48:39 (4 days ago)	06/10/2026-09:48:37.701608 src=189.89.9.21 dst=5.175.170.153:1433 proto=6 msg=ET SCAN Suspicious inb ... show more 06/10/2026-09:48:37.701608 src=189.89.9.21 dst=5.175.170.153:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433 show less	SQL Injection
🇳🇱 AS213449.net	2026-06-10 05:28:34 (4 days ago)	06/10/2026-09:28:33.038715 src=189.89.9.21 dst=5.175.170.68:1433 proto=6 msg=ET SCAN Suspicious inbo ... show more 06/10/2026-09:28:33.038715 src=189.89.9.21 dst=5.175.170.68:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433 show less	SQL Injection

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 172.68.164.126

🇫🇮 147.185.133.74

🇧🇬 78.128.112.30

🇩🇪 69.5.169.82

🇨🇴 45.65.233.18

🇬🇧 31.14.254.103

🇧🇬 5.188.206.30

🇮🇱 2.55.75.176

🇨🇿 195.123.244.84

🇫🇷 185.194.178.66

🇧🇷 177.200.39.156

🇸🇬 172.71.82.45

🇧🇬 91.92.40.123

🇳🇱 91.92.40.15

🇺🇸 77.91.118.50

🇫🇷 51.91.76.106

🇺🇸 35.245.72.36

🇬🇧 35.203.210.216

🇬🇧 35.189.86.173

🇸🇬 34.126.115.130