JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 134.122.40.96

134.122.40.96 was found in our database!

This IP was reported 69 times. Confidence of Abuse is 88%: ?

88%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 134.122.40.96

Whois 134.122.40.96

IP Abuse Reports for 134.122.40.96:

This IP address has been reported a total of 69 times from 58 distinct sources. 134.122.40.96 was first reported on January 7th 2025, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 SOC-BR	2026-06-18 07:25:18 (3 hours ago)	Attack detected by Fortinet - web_server: HTPasswd.Access - 2026-06-17 03:58:32 - Source Port 43182	Port Scan Hacking
🇹🇷 SeczarSecureOps	2026-06-17 10:19:19 (1 day ago)	Seczar SecureOps — Port Scan Detection (8 events) — quarantined 43200m on fwofis	Port Scan
🇺🇸 MPL	2026-06-17 07:53:09 (1 day ago)	tcp port scan (10 or more attempts)	Port Scan
🇮🇪 AutosOnShow	2026-06-17 07:15:06 (1 day ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-06-17 07:14:20.505 \|	Web App Attack
🇺🇸 xmission.com	2026-06-17 05:45:49 (1 day ago)	Blocked by UFW (TCP on 2078) Source port: 54080 TTL: 50 Packet length: 60 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 2078) Source port: 54080 TTL: 50 Packet length: 60 TOS: 0x08 This report (for 134.122.40.96) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇺 PetePK	2026-06-17 05:29:02 (1 day ago)	Probed 10 time(s): TCP/2086, TCP/2078, TCP/2096, TCP/2087, TCP/2077, TCP/443, TCP/80, TCP/2083, TCP/ ... show more Probed 10 time(s): TCP/2086, TCP/2078, TCP/2096, TCP/2087, TCP/2077, TCP/443, TCP/80, TCP/2083, TCP/2082, TCP/2095 show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-17 04:36:48 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 134.122.40.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 134.122.40.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 00:36:40.651913 2026] [security2:error] [pid 19294:tid 19294] [client 134.122.40.96:34784] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.151.6"] [uri "/.git/config"] [unique_id "ajIkWLoZdR148f6by5aYZgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 SOC PR	2026-06-17 03:00:30 (1 day ago)	IPS: Web Server Enforcement Violation.	Hacking
🇯🇵 www.winos.me	2026-06-17 02:39:15 (1 day ago)	Shield: Layer4 Port 9 Trap	Port Scan Hacking
🇺🇸 Axel	2026-06-17 02:31:32 (1 day ago)	Blocked by UFW on MVI [2078/tcp] \| SPT: 48148 \| TTL: 50 \| LEN: 60 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [2078/tcp] \| SPT: 48148 \| TTL: 50 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇷 diego	2026-06-17 02:20:27 (1 day ago)	[rede-188] 2026-06-17 02:01:14, Client: 134.122.40.96, Protocol: 6, Unauthorized activity to HTTP: P ... show more [rede-188] 2026-06-17 02:01:14, Client: 134.122.40.96, Protocol: 6, Unauthorized activity to HTTP: POST /___proxy_subdomain_whm/login/ show less	Web App Attack
🇩🇪 pigro	2026-06-17 01:35:07 (1 day ago)	134.122.40.96 - - [17/Jun/2026:03:34:32 +0200] "GET /.git/HEAD HTTP/1.1" 404 188 "-" "Mozilla/5.0 (W ... show more 134.122.40.96 - - [17/Jun/2026:03:34:32 +0200] "GET /.git/HEAD HTTP/1.1" 404 188 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 134.122.40.96 - - [17/Jun/2026:03:35:07 +0200] "GET /config/database.yml HTTP/1.1" 404 125 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" ... show less	Web App Attack
🇷🇸 Scan	2026-06-17 00:25:46 (1 day ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇳🇱 soverin	2026-06-17 00:22:58 (1 day ago)	Network scan on port 80	Email Spam
🇺🇸 TPI-Abuse	2026-06-16 23:58:48 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 134.122.40.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 134.122.40.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 19:58:40.176278 2026] [security2:error] [pid 23299:tid 23299] [client 134.122.40.96:33300] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.64"] [uri "/.git/HEAD"] [unique_id "ajHjMEuoibL7yxyh6gO8gwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 69 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4003:c1e::12e

🇪🇪 85.29.246.199

🇩🇪 64.89.163.93

🇮🇪 54.216.172.33

🇳🇱 176.65.139.183

🇺🇸 173.197.14.231

🇺🇸 154.83.197.126

🇹🇼 123.58.205.100

🇨🇳 116.179.32.213

🇮🇹 46.16.90.98

🇳🇱 45.140.222.164

🇸🇳 41.82.50.218

🇺🇸 20.84.144.113

🇫🇷 2a10:4646:190::8dc7:169

🇺🇸 165.154.163.113

🇺🇸 164.92.82.91

🇻🇳 160.191.165.249

🇦🇷 131.161.184.46

🇷🇴 80.94.92.130

🇺🇸 2607:f8b0:4003:c16::125