JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.242.177.68

185.242.177.68 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 41%: ?

41%

ISP	Blue Shield Security GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35369
Domain Name	blue-shield.at
Country	🇦🇹 Austria
City	Linz, Upper Austria

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.242.177.68

Whois 185.242.177.68

IP Abuse Reports for 185.242.177.68:

This IP address has been reported a total of 16 times from 7 distinct sources. 185.242.177.68 was first reported on May 21st 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 diego	2026-06-17 17:04:38 (1 day ago)	[rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 221 secon ... show more [rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 221 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Jun 17 14:04:21 kernel: [10910614.237683] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=15975 DF PROTO=TCP SPT=60618 DPT=80 WINDOW=42340 RES=0x00 SYN URGP=0 Jun 17 14:04:22 kernel: [10910615.242715] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=15976 DF PROTO=TCP SPT=60618 D show less	Port Scan
Anonymous	2026-06-16 11:29:32 (2 days ago)	Malicious activity detected	Hacking Web App Attack
🇧🇷 diego	2026-06-16 06:17:01 (3 days ago)	[rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 105 secon ... show more [rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 105 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Jun 16 03:16:45 kernel: [10785361.889114] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=36442 DF PROTO=TCP SPT=40520 DPT=80 WINDOW=42340 RES=0x00 SYN URGP=0 Jun 16 03:16:46 kernel: [10785362.919716] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=36443 DF PROTO=TCP SPT=40520 D show less	Port Scan
🇧🇷 diego	2026-06-15 21:14:58 (3 days ago)	[rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 220 secon ... show more [rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 220 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Jun 15 18:14:39 kernel: [10752837.246304] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=14471 DF PROTO=TCP SPT=35832 DPT=80 WINDOW=42340 RES=0x00 SYN URGP=0 Jun 15 18:14:40 kernel: [10752838.308674] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=14472 DF PROTO=TCP SPT=35832 D show less	Port Scan
🇧🇷 diego	2026-06-12 14:01:31 (6 days ago)	[rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 35 second ... show more [rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 35 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Jun 12 11:01:09 kernel: [10467635.351633] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=52202 DF PROTO=TCP SPT=33878 DPT=80 WINDOW=42340 RES=0x00 SYN URGP=0 Jun 12 11:01:10 kernel: [10467636.377816] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=52203 DF PROTO=TCP SPT=33878 D show less	Port Scan
🇧🇷 diego	2026-06-11 19:52:05 (1 week ago)	[rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 50 second ... show more [rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 50 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Jun 11 16:51:42 kernel: [10402270.498852] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=44723 DF PROTO=TCP SPT=56898 DPT=80 WINDOW=42340 RES=0x00 SYN URGP=0 Jun 11 16:51:43 kernel: [10402271.509762] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=44724 DF PROTO=TCP SPT=56898 D show less	Port Scan
🇩🇪 updown.io	2026-06-06 13:52:35 (1 week ago)	{"level":"info","ts":1780750132.7254062,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1780750132.7254062,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"185.242.177.68","remote_port":"58884","client_ip":"185.242.177.68","proto":"HTTP/1.1","method":"GET","host":"lkupdate.cbaupdate.987654321update.dgnvuwww.www.www.www.status.quarks-erp.com","uri":"/","headers":{"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:147.0) Gecko/20100101 Firefox/147.0"],"Accept-Encoding":["gzip, compress, deflate, br"],"Connection":["keep-alive"],"Accept":["/"]}},"bytes_read":0,"user_id":"","duration":0.000071987,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://lkupdate.cbaupdate.987654321update.dgnvuwww.www.www.www.status.quarks-erp.com/"],"Content-Type":[]}} {"level":"info","ts":1780750133.6151464,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"185.242.177.68","remote_port":"58902","client_ip":"185.242.177.68","proto":"HTTP/1.1","method":"GET","h ... show less	DDoS Attack Web App Attack
🇺🇸 NXTwoThou	2026-06-04 13:46:00 (2 weeks ago)	welcome	Web App Attack
🇩🇪 HandyTreff.de	2026-06-03 11:17:41 (2 weeks ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -25.948 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -25.948 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:147.0) Gecko/20100101 Firefox/147.0 show less	Web App Attack Bad Web Bot
🇺🇸 xmission.com	2026-06-02 18:19:26 (2 weeks ago)	Blocked by UFW (TCP on 443) Source port: 35288 TTL: 46 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 443) Source port: 35288 TTL: 46 Packet length: 60 TOS: 0x00 This report (for 185.242.177.68) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇩🇪 updown.io	2026-05-28 15:03:36 (3 weeks ago)	{"level":"info","ts":1779980136.0108972,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1779980136.0108972,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"185.242.177.68","remote_port":"49420","client_ip":"185.242.177.68","proto":"HTTP/1.1","method":"GET","host":"whm.update.dev.www.www.www.status.quarks-erp.com","uri":"/","headers":{"Connection":["keep-alive"],"Accept":["/"],"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:147.0) Gecko/20100101 Firefox/147.0"],"Accept-Encoding":["gzip, compress, deflate, br"]}},"bytes_read":0,"user_id":"","duration":0.000050527,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://whm.update.dev.www.www.www.status.quarks-erp.com/"],"Content-Type":[]}} {"level":"info","ts":1779980151.0215268,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"185.242.177.68","remote_port":"39654","client_ip":"185.242.177.68","proto":"HTTP/1.1","method":"GET","host":"whm.update.dev.www.www.www.status.quarks-erp.com","u ... show less	DDoS Attack Web App Attack
🇦🇱 router.al	2026-05-26 00:21:37 (3 weeks ago)	05/26/2026-00:21:36.703879 185.242.177.68 Protocol: 6 GPL WEB_SERVER 403 Forbidden	Port Scan
🇧🇷 diego	2026-05-25 04:09:44 (3 weeks ago)	[rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 270 secon ... show more [rede-164-29] Port Scan detected from 185.242.177.68 (AT/Austria/-). 11 hits in the last 270 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: May 25 01:09:28 kernel: [8876981.147631] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=1381 DF PROTO=TCP SPT=56894 DPT=80 WINDOW=42340 RES=0x00 SYN URGP=0 May 25 01:09:29 kernel: [8876982.164692] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.242.177.68 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=1382 DF PROTO=TCP SPT=56894 DPT=8 show less	Port Scan
🇩🇪 updown.io	2026-05-24 14:55:29 (3 weeks ago)	{"level":"info","ts":1779633634.8771565,"logger":"http.log.access.log1","msg":"handled request","req ... show more {"level":"info","ts":1779633634.8771565,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"185.242.177.68","remote_port":"35422","client_ip":"185.242.177.68","proto":"HTTP/1.1","method":"GET","host":"www.www.www.update.dev.status.quarks-erp.com","uri":"/","headers":{"Connection":["keep-alive"],"Accept":["/"],"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:147.0) Gecko/20100101 Firefox/147.0"],"Accept-Encoding":["gzip, compress, deflate, br"]}},"bytes_read":0,"user_id":"","duration":0.000089591,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://www.www.www.update.dev.status.quarks-erp.com/"],"Content-Type":[]}} {"level":"info","ts":1779633649.8338084,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"185.242.177.68","remote_port":"34644","client_ip":"185.242.177.68","proto":"HTTP/1.1","method":"GET","host":"www.www.www.update.dev.status.quarks-erp.com","uri":"/","hea ... show less	DDoS Attack Web App Attack
🇩🇪 updown.io	2026-05-22 14:39:17 (3 weeks ago)	{"level":"info","ts":1779459783.517142,"logger":"http.log.access.log1","msg":"handled request","requ ... show more {"level":"info","ts":1779459783.517142,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"185.242.177.68","remote_port":"57542","client_ip":"185.242.177.68","proto":"HTTP/1.1","method":"GET","host":"whm.whm.update.whm.sd60x47z4p5ynhbp.www.status.quarks-erp.com","uri":"/","headers":{"Connection":["keep-alive"],"Accept":["/"],"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:147.0) Gecko/20100101 Firefox/147.0"],"Accept-Encoding":["gzip, compress, deflate, br"]}},"bytes_read":0,"user_id":"","duration":0.000063581,"size":0,"status":308,"resp_headers":{"Connection":["close"],"Location":["https://whm.whm.update.whm.sd60x47z4p5ynhbp.www.status.quarks-erp.com/"],"Content-Type":[],"Server":["Caddy"]}} {"level":"info","ts":1779459798.5225582,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"185.242.177.68","remote_port":"54886","client_ip":"185.242.177.68","proto":"HTTP/1.1","method":"GET","host":"whm.whm.update.whm.sd60x47z ... show less	DDoS Attack Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 122.160.59.87

🇺🇸 209.90.232.71

🇧🇷 185.100.215.213

🇵🇱 178.219.104.100

🇺🇸 156.232.13.161

🇧🇷 152.67.46.203

🇭🇰 152.32.129.236

🇪🇪 140.99.201.173

🇮🇳 128.185.212.178

🇹🇷 85.110.201.187

🇺🇸 66.132.186.200

🇨🇳 58.241.95.250

🇭🇰 49.213.3.154

🇮🇩 43.248.27.115

🇬🇧 2a06:4880:c000::da

🇫🇷 2001:41d0:33d:9200::405

🇺🇸 107.172.219.221

🇸🇬 103.138.189.25

🇨🇿 46.135.109.64

🇰🇷 42.82.237.140