JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 201.65.173.178

201.65.173.178 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 17%: ?

17%

ISP	CLARO S.A.
Usage Type	Mobile ISP
ASN	AS4230
Domain Name	claro.com.br
Country	🇧🇷 Brazil
City	Brasilia, Federal District

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 201.65.173.178

Whois 201.65.173.178

IP Abuse Reports for 201.65.173.178:

This IP address has been reported a total of 15 times from 12 distinct sources. 201.65.173.178 was first reported on March 10th 2024, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇴 Fn4ticHz	2026-05-30 15:42:17 (5 days ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇫🇷 MatStef132	2026-05-22 14:04:38 (1 week ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇷🇴 Fn4ticHz	2026-05-09 14:12:47 (3 weeks ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇮🇹 VHosting	2026-04-26 08:29:52 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇮🇹 VHosting	2026-04-10 05:17:16 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇺🇸 quilla	2026-03-30 20:13:00 (2 months ago)	Botnet infected device observed in honeypot (Vector: TCP HANDSHAKE ATTACK)	DDoS Attack
🇩🇪 grassau.com	2026-03-12 04:44:44 (2 months ago)	(mod_security) mod_security triggered on hostname [redacted] 201.65.173.178 (BR/Brazil/Rio de Janeir ... show more (mod_security) mod_security triggered on hostname [redacted] 201.65.173.178 (BR/Brazil/Rio de Janeiro/Rio de Janeiro/-) show less	SQL Injection
🇺🇸 COMPLEX	2026-01-26 01:07:22 (4 months ago)	Triggered Cloudflare WAF (l7ddos) from BR. Action taken: BLOCK ASN: undefined (undefined) Protocol: ... show more Triggered Cloudflare WAF (l7ddos) from BR. Action taken: BLOCK ASN: undefined (undefined) Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Android 12; Mobile; rv:146.0) Gecko/146.0 Firefox/146.0 show less	DDoS Attack Bad Web Bot
🇨🇦 SuperEvilLuke	2026-01-24 19:58:44 (4 months ago)	Malicious activity detected from 4230 CLARO S.A. towards host embotic.xyz (GET HTTP/2) @ 2026-01-24T ... show more Malicious activity detected from 4230 CLARO S.A. towards host embotic.xyz (GET HTTP/2) @ 2026-01-24T19:58:44Z (2 occurrences) show less	DDoS Attack Exploited Host
🇪🇸 cuscusero (FlexBacks, FlexChar, FlexAve, FlexCDNM, FlexTudy, ColdHosting SL)	2026-01-16 01:06:15 (4 months ago)	[CPD ESP-BCN02-FW11-394] Suspicious connection detected on port 22. DDoS detected	DDoS Attack Brute-Force SSH
🇨🇭 Modules	2026-01-10 01:23:52 (4 months ago)	Open proxy http://201.65.173.178:8080 (RT:7839ms,Loc:Brazil,ASN:AS4230)	Open Proxy
🇺🇸 island-freaks.com	2026-01-05 21:24:43 (4 months ago)	Attack Type: WordPress Exploit Bot attempt on /wp-login.php?action=register \| DNS 201.65.173.178 \| A ... show more Attack Type: WordPress Exploit Bot attempt on /wp-login.php?action=register \| DNS 201.65.173.178 \| Agent: Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36 show less	Port Scan Hacking Bad Web Bot Exploited Host Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-24 14:49:55 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇩🇪 Packets-Decreaser.NET	2024-03-10 21:41:55 (2 years ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇩🇪 CommanderRoot	2024-03-10 13:49:16 (2 years ago)	HTTP request flood, even after hitting rate limiting	DDoS Attack Web Spam

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 220.86.115.245

🇺🇸 195.184.76.90

🇰🇷 119.205.179.217

🇰🇷 118.37.214.187

🇨🇦 85.217.149.35

🇺🇸 64.62.156.12

🇸🇳 41.214.90.202

🇺🇸 40.74.208.138

🇺🇸 20.168.124.0

🇮🇷 5.237.80.140

🇳🇱 176.65.148.147

🇺🇸 165.227.110.45

🇨🇳 163.0.71.93

🇺🇸 162.216.149.240

🇺🇸 147.185.132.103

🇺🇸 143.42.0.20

🇮🇳 122.187.229.235

🇨🇳 115.190.179.68

🇮🇩 110.137.131.190

🇩🇪 109.94.169.111