JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.214.77.67

178.214.77.67 was found in our database!

This IP was reported 154 times. Confidence of Abuse is 100%: ?

100%

ISP	Gemzo information technology Private Joint-Stock company
Usage Type	Fixed Line ISP
ASN	AS51336
Hostname(s)	67net178-214-77.gemzo.net
Domain Name	gemzo.net
Country	🇵🇸 Palestine, State of
City	Ramallah, West Bank

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.214.77.67

Whois 178.214.77.67

IP Abuse Reports for 178.214.77.67:

This IP address has been reported a total of 154 times from 48 distinct sources. 178.214.77.67 was first reported on May 27th 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 sockominfo	2026-05-27 23:00:20 (1 week ago)	Suspicious user agent detected ivre-masscan/1.3 https://github.com/robertdavidgraham/. Threat Score: ... show more Suspicious user agent detected ivre-masscan/1.3 https://github.com/robertdavidgraham/. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
Anonymous	2026-05-27 22:47:30 (1 week ago)	2026/05/27 22:47:29 [info] 168825#0: 85256 client sent plain HTTP request to HTTPS port while readi ... show more 2026/05/27 22:47:29 [info] 168825#0: 85256 client sent plain HTTP request to HTTPS port while reading client request headers, client: 178.214.77.67, server: m.nims.edu.gh, request: "GET / HTTP/1.0" ... show less	Brute-Force Web App Attack
🇺🇸 en0	2026-05-27 22:28:20 (1 week ago)	178.214.77.67 was recorded 3 times by 1 hosts attempting to connect to 3 unique ports. Incident coun ... show more 178.214.77.67 was recorded 3 times by 1 hosts attempting to connect to 3 unique ports. Incident counter (4h, 24h, all-time): 3, 4, 4 show less	Port Scan
🇺🇸 EricTheRedFL	2026-05-27 21:32:04 (1 week ago)	web.ab-data.us:80 178.214.77.67 - - [27/May/2026:10:26:25 -0400] "GET / HTTP/1.0" 301 578 "-" "ivre- ... show more web.ab-data.us:80 178.214.77.67 - - [27/May/2026:10:26:25 -0400] "GET / HTTP/1.0" 301 578 "-" "ivre-masscan/1.3 https://github.com/robertdavidgraham/" web.ab-data.us:80 178.214.77.67 - - [27/May/2026:10:52:40 -0400] "\x16\x03\x01\x02" 301 653 "-" "-" web.ab-data.us:80 178.214.77.67 - - [27/May/2026:10:57:26 -0400] "GET /robots.txt HTTP/1.1" 301 634 "-" "python-requests/2.27.1" web.ab-data.us:80 178.214.77.67 - - [27/May/2026:11:32:54 -0400] "GET /robots.txt HTTP/1.1" 301 578 "-" "Mozilla/5.0" web.ab-data.us:80 178.214.77.67 - - [27/May/2026:17:32:02 -0400] "GET / HTTP/1.0" 301 578 "-" "ivre-masscan/1.3 https://github.com/robertdavidgraham/" ... show less	Hacking Brute-Force Web App Attack
🇿🇦 slartybartfast69420blazit	2026-05-27 20:26:43 (1 week ago)	Fail2ban picked up 178.214.77.67 attacking nginx	Web App Attack
🇨🇳 Peter Yu	2026-05-27 18:49:05 (1 week ago)		Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-05-27 18:18:25 (1 week ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 178.214.77.67 (PS/Palestine/67net178 ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 178.214.77.67 (PS/Palestine/67net178-214-77.gemzo.net): 1 in the last 3600 secs show less	Web App Attack
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-27 18:16:37 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 5038 [1] TCP	Port Scan
🇮🇩 Diskominfo Lumajang	2026-05-27 18:10:04 (1 week ago)	Security Event Detected by SOC Diskominfo Lumajang: event=alert, hits=4	Brute-Force
🇹🇭 Sawasdee	2026-05-27 18:09:04 (1 week ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇯🇵 mkaraki	2026-05-27 18:08:22 (1 week ago)	1779905299 # Service_probe # SIGNATURE_SEND # source_ip:178.214.77.67 # dst_port:443 ...	Port Scan
🇫🇷 Elysium Security	2026-05-27 18:06:54 (1 week ago)	Mass port scanning on a whole network	Port Scan
🇧🇷 chronos	2026-05-27 18:01:40 (1 week ago)	Web traffic. Possible probing or exploitation attempts. \| Port: 443 \| Proto: TCP \| Location: Palesti ... show more Web traffic. Possible probing or exploitation attempts. \| Port: 443 \| Proto: TCP \| Location: Palestine, Gaza show less	Hacking Web App Attack Exploited Host
Anonymous	2026-05-27 17:50:24 (1 week ago)	Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy ... show more Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy — zero tolerance for exploit scanning. Banned May 27, 17:50 UTC. Origin: PS, Ramallah. show less	Hacking Bad Web Bot Web App Attack
🇸🇬 securejdprop	2026-05-27 17:26:27 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(🐾 - 🚨 Network 🕵 sc ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(🐾 - 🚨 Network 🕵 scan 🎩 MASSCAN 👨‍💻 (HTTP)). Ip 178.214.77.67 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-05-27 17:26:26.202253269 +0000 UTC show less	Hacking Web App Attack

Showing 136 to 150 of 154 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.95.181.26

🇰🇷 175.207.239.222

🇺🇸 96.127.152.236

🇺🇸 74.7.228.184

🇺🇸 65.49.1.76

🇺🇸 3.81.76.12

🇺🇸 209.222.101.194

🇺🇦 178.136.46.33

🇩🇪 162.19.243.145

🇻🇳 160.191.244.158

🇺🇸 136.117.227.152

🇨🇳 111.228.13.226

🇿🇦 41.198.141.67

🇺🇸 192.81.210.247

🇳🇱 185.156.73.233

🇵🇭 150.228.225.201

🇨🇳 117.145.69.222

🇷🇴 92.118.39.236

🇱🇹 81.30.98.142

🇺🇸 64.95.14.238