JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.236.250.159

45.236.250.159 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 19%: ?

19%

ISP	Nossanet Fibra Eireli
Usage Type	Fixed Line ISP
ASN	AS268253
Domain Name	nossanetfibra.com.br
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.236.250.159

Whois 45.236.250.159

IP Abuse Reports for 45.236.250.159:

This IP address has been reported a total of 15 times from 8 distinct sources. 45.236.250.159 was first reported on July 27th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 pltcldvlpr	2026-06-11 00:19:09 (1 week ago)	Bogus Useragent: 45.236.250.159 - - [11/Jun/2026:02:19:08 +0200] "GET /protocol?id=th_5_120&offset=1 ... show more Bogus Useragent: 45.236.250.159 - - [11/Jun/2026:02:19:08 +0200] "GET /protocol?id=th_5_120&offset=1450&seq=1458 HTTP/1.1" 444 0 "-" "Opera/9.65.(X11; Linux x86_64; yue-HK) Presto/2.9.174 Version/11.00" asn=268253 org="Nossanet Fibra Eireli" country=BR ... show less	Bad Web Bot
🇮🇩 hermawan	2026-06-06 17:17:02 (1 week ago)	[Sun Jun 07 00:16:59.120834 2026] [security2:error] [pid 158625:tid 140594128041664] [client 45.236. ... show more [Sun Jun 07 00:16:59.120834 2026] [security2:error] [pid 158625:tid 140594128041664] [client 45.236.250.159:42298] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.google.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.google.go.id found within REQUEST_HEADERS:Referer: https://www.google.go.id/ request_line = GET /index.php/analisis-iklim/analisis-musim/perbandingan-musim-kemarau/perbandingan-awal-musim-kemarau-dengan-normalnya HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/analisis-iklim/analisis-musim/perbandingan-musim-kemarau/perbandingan-awal-musim-kemarau-dengan-normalnya"] [unique_id "aiRWCyRZZz3MI_8zGa6h4gAAzAw"], referer https://www.google.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[158638] [RDTU8Ri257U] [aiRWCyRZZz3MI_8zGa6h4gAAzAw] keep_alive=[1] ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-04 15:15:58 (1 week ago)	[Thu Jun 04 22:15:54.139439 2026] [security2:error] [pid 308599:tid 139764799895232] [client 45.236. ... show more [Thu Jun 04 22:15:54.139439 2026] [security2:error] [pid 308599:tid 139764799895232] [client 45.236.250.159:43758] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.yahoo.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.yahoo.go.id found within REQUEST_HEADERS:Referer: https://www.yahoo.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561495-infografis-waspada-cuaca-ekstrem-di-masa-pancaroba HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561495-infografis-waspada-cuaca-ekstrem-di-masa-pancaroba"] [unique_id "aiGWquKZNx4SIoYcTAKXxgAARgA"], referer https://www.yahoo.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[308600] [i2EnBW9XFZU] [aiGWquKZNx4SIoYcTAKXxgAA ... show less	Email Spam Hacking
🇩🇪 EGP Abuse Dept	2026-05-27 01:45:04 (3 weeks ago)	Scraping webshop URLs (www.creall.com), likely botnet drone	Bad Web Bot Exploited Host
🇮🇩 hermawan	2026-04-29 09:22:03 (1 month ago)	04/29/2026-11:31:02.357384 [Drop] [] [1:2100001417:0] Suricata match TLS JA4 scan Uniq Zeek no 14 ... show more 04/29/2026-11:31:02.357384 [Drop] [] [1:2100001417:0] Suricata match TLS JA4 scan Uniq Zeek no 1417 with hash_t13d1516h3_8daaf6152771_d8a2da3f94cd [**] [Classification: (null)] [Priority: 3] {TCP} 45.236.250.159:33832 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇺🇸 kosada.com	2026-03-27 07:23:35 (2 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
Anonymous	2026-03-26 01:18:42 (2 months ago)	2026-03-26 02:18:42 ERROR util.AccessViolations - 45.236.250.159 report to fail2ban - action: block ... show more 2026-03-26 02:18:42 ERROR util.AccessViolations - 45.236.250.159 report to fail2ban - action: block ... show less	Hacking Brute-Force Bad Web Bot
🇩🇪 EGP Abuse Dept	2026-03-20 00:22:05 (2 months ago)	Scraping webshop URLs (www.badgehouder.nl), likely botnet drone	Bad Web Bot Exploited Host
🇮🇹 VHosting	2026-03-01 13:39:25 (3 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇳🇱 exxos	2025-07-30 02:30:06 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇳🇱 exxos	2025-07-29 02:00:53 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇪🇸 Global Cyber Police	2025-07-28 06:20:02 (10 months ago)	Malicious bot activity detected: Hitting honeypot page. Part of massive botnet.	DDoS Attack Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Web App Attack
🇪🇸 Global Cyber Police	2025-07-28 06:20:02 (10 months ago)	Malicious bot activity detected: Hitting honeypot page. Part of massive botnet.	DDoS Attack Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Web App Attack
🇳🇱 exxos	2025-07-28 02:59:26 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇳🇱 exxos	2025-07-27 23:39:46 (10 months ago)	HTTP1.x attacks	DDoS Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2409:40c4:30c8:25ae:f9b2:9e86:66f:1c91

🇨🇳 180.76.240.68

🇺🇸 167.172.21.198

🇳🇬 165.154.11.225

🇺🇸 162.216.150.153

🇺🇸 64.62.156.124

🇳🇱 45.198.224.145

🇮🇳 223.185.54.158

🇮🇩 182.253.64.11

🇺🇸 172.191.239.155

🇲🇽 158.23.60.175

🇮🇳 122.184.118.126

🇻🇳 103.200.22.154

🇺🇸 194.62.107.215

🇨🇳 180.76.146.178

🇺🇸 104.243.133.18

🇺🇸 104.234.53.62

🇫🇷 51.75.247.232

🇨🇦 45.88.190.11

🇺🇸 23.95.129.26