JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.177.139.168

192.177.139.168 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 0%: ?

ISP	EGIHosting
Usage Type	Data Center/Web Hosting/Transit
ASN	AS18779
Domain Name	egihosting.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.177.139.168

Whois 192.177.139.168

IP Abuse Reports for 192.177.139.168:

This IP address has been reported a total of 17 times from 13 distinct sources. 192.177.139.168 was first reported on March 14th 2022, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 shabi	2025-08-28 09:32:30 (9 months ago)	IP: 192.177.139.168 [Country: US] triggered WAF (l7ddos). Action: managed_challenge ASN: 18779 (EGIH ... show more IP: 192.177.139.168 [Country: US] triggered WAF (l7ddos). Action: managed_challenge ASN: 18779 (EGIHOSTING) Protocol: HTTP/2 (method GET) Endpoint: /cc.gif Time: 2025-08-28T09:23:56Z User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 --- Report generated by CFWAF2AbuseIPDB. show less	DDoS Attack Web Spam Web App Attack
🇺🇸 yangfan	2025-08-28 09:23:52 (9 months ago)	IP: 192.177.139.168 [Country: US] triggered WAF (l7ddos). Action: managed_challenge ASN: 18779 (EGIH ... show more IP: 192.177.139.168 [Country: US] triggered WAF (l7ddos). Action: managed_challenge ASN: 18779 (EGIHOSTING) Protocol: HTTP/2 (method GET) Endpoint: /cc.gif Time: 2025-08-28T09:23:09Z User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36 --- Report generated by CFWAF2AbuseIPDB. show less	DDoS Attack Web Spam Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-08-13 18:18:28 (10 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇨🇿 unhfree.net	2025-08-11 09:19:50 (10 months ago)	Aug 11 11:19:48 canopus postfix/smtpd[2648692]: NOQUEUE: reject: RCPT from unknown[192.177.139.168]: ... show more Aug 11 11:19:48 canopus postfix/smtpd[2648692]: NOQUEUE: reject: RCPT from unknown[192.177.139.168]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<node-3495.local> Aug 11 11:19:48 canopus postfix/smtpd[2648692]: NOQUEUE: reject: RCPT from unknown[192.177.139.168]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<node-3495.local> Aug 11 11:19:49 canopus postfix/smtpd[2648692]: NOQUEUE: reject: RCPT from unknown[192.177.139.168]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<node-3495.local> Aug 11 11:19:49 canopus postfix/smtpd[2648692]: NOQUEUE: reject: RCPT ... show less	Brute-Force Exploited Host
🇺🇸 COMPLEX	2025-08-09 22:41:12 (10 months ago)	SSH brute force attack detected by fail2ban - attempted unauthorized access	Brute-Force SSH
🇧🇪 dbelm	2025-08-09 19:16:09 (10 months ago)	RdpGuard detected brute-force attempt on IMAP	Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-08-09 16:43:25 (10 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇹🇷 rtbh.com.tr	2025-07-30 20:07:58 (10 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-07-30 00:07:57 (10 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-07-29 20:07:56 (10 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 ghostwarriors	2025-07-29 05:20:11 (10 months ago)	Unauthorized connection attempt detected, SSH Brute-Force	Port Scan Brute-Force SSH
🇬🇧 yvoictra	2025-07-29 04:13:01 (10 months ago)	Jul 29 06:13:01 savine sshd[83341]: Invalid user admin from 192.177.139.168 port 50923 ...	Brute-Force SSH
🇩🇪 filip2cz	2025-07-29 03:55:49 (10 months ago)	Jul 29 05:55:28 system-status sshd[1623223]: pam_unix(sshd:auth): authentication failure; logname= u ... show more Jul 29 05:55:28 system-status sshd[1623223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.177.139.168 user=root Jul 29 05:55:30 system-status sshd[1623223]: Failed password for root from 192.177.139.168 port 49787 ssh2 Jul 29 05:55:49 system-status sshd[1623659]: Invalid user admin from 192.177.139.168 port 54407 ... show less	Brute-Force SSH
🇨🇿 unhfree.net	2025-07-28 23:41:11 (10 months ago)	Jul 29 01:41:10 canopus postfix/smtpd[1392920]: NOQUEUE: reject: RCPT from unknown[192.177.139.168]: ... show more Jul 29 01:41:10 canopus postfix/smtpd[1392920]: NOQUEUE: reject: RCPT from unknown[192.177.139.168]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<192.177.139.168> Jul 29 01:41:10 canopus postfix/smtpd[1392920]: NOQUEUE: reject: RCPT from unknown[192.177.139.168]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<192.177.139.168> Jul 29 01:41:10 canopus postfix/smtpd[1392920]: NOQUEUE: reject: RCPT from unknown[192.177.139.168]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<192.177.139.168> Jul 29 01:41:10 canopus postfix/smtpd[1392920]: NOQUEUE: reject: RCPT from unknown[192.177.139 ... show less	Brute-Force Exploited Host
🇫🇷 ᴀʀᴛ	2025-07-26 11:07:33 (11 months ago)	Triggered Cloudflare WAF (l7ddos) from US. ASN: 18779 (EGIHOSTING) Protocol: HTTP/2 (GET method) UA: ... show more Triggered Cloudflare WAF (l7ddos) from US. ASN: 18779 (EGIHOSTING) Protocol: HTTP/2 (GET method) UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇾 200.71.1.83

🇪🇸 185.164.40.214

🇮🇩 103.97.101.25

🇺🇸 54.166.140.41

🇺🇸 50.6.197.105

🇻🇪 45.186.208.120

🇨🇦 216.26.236.39

🇹🇳 197.16.27.70

🇺🇸 195.184.76.28

🇨🇳 110.53.68.28

🇺🇸 91.230.168.143

🇺🇸 65.49.20.80

🇿🇦 41.13.250.69

🇺🇸 162.216.150.79

🇩🇪 150.241.113.163

🇨🇳 60.5.26.36

🇳🇱 45.128.199.112

🇳🇱 37.49.226.83

🇺🇸 173.194.103.16

🇻🇳 165.154.221.175