JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 134.199.174.139

134.199.174.139 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 60%: ?

60%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 134.199.174.139

Whois 134.199.174.139

IP Abuse Reports for 134.199.174.139:

This IP address has been reported a total of 15 times from 10 distinct sources. 134.199.174.139 was first reported on June 17th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 JPPO	2026-06-18 22:50:06 (2 days ago)	Multiport scan 10 ports : 80 443(x2) 2077 2078 2082 2083 2086 2087 2095 2096	Port Scan
🇦🇺 obiahmar	2026-06-17 19:51:48 (3 days ago)	This IP was detected triggering crowdsecurity/http-probing	Web App Attack Hacking
🇨🇿 Countryman	2026-06-17 15:30:46 (4 days ago)	repeated unauthorized connection attempts, host sweep, port scan	Port Scan
🇨🇿 Countryman	2026-06-17 15:30:46 (4 days ago)	repeated unauthorized connection attempts, host sweep, port scan	Port Scan
🇺🇸 TPI-Abuse	2026-06-17 11:41:53 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 134.199.174.139 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 134.199.174.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 07:41:49.865538 2026] [security2:error] [pid 8420:tid 8420] [client 134.199.174.139:50266] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.176"] [uri "/.git/HEAD"] [unique_id "ajKH_c8_DbjkozcS6U6uTgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-17 09:37:30 (4 days ago)	Honeypot hit: Empty payload (likely service probe); 2077 [1], 2087 [1], 2096 [1], 2095 [1], 2086 [1] ... show more Honeypot hit: Empty payload (likely service probe); 2077 [1], 2087 [1], 2096 [1], 2095 [1], 2086 [1], 2082 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-17 09:30:32 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 134.199.174.139 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 134.199.174.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 05:30:27.673887 2026] [security2:error] [pid 14073:tid 14073] [client 134.199.174.139:47058] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.36"] [uri "/.git/HEAD"] [unique_id "ajJpMzbZ4x86i-NDcoA5lQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Cyber Crusader	2026-06-17 08:30:18 (4 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇫🇷 polido	2026-06-17 08:13:47 (4 days ago)	Unauthorized connection attempt to port 443 from 134.199.174.139	Port Scan
🇺🇸 TPI-Abuse	2026-06-17 06:18:35 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 134.199.174.139 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 134.199.174.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 02:18:30.336677 2026] [security2:error] [pid 16476:tid 16476] [client 134.199.174.139:55428] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.192"] [uri "/.env"] [unique_id "ajI8NmgbE8vl120GpwMhzAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 05:44:24 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 134.199.174.139 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 134.199.174.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 01:44:15.733682 2026] [security2:error] [pid 29513:tid 29513] [client 134.199.174.139:49642] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.109"] [uri "/.git/HEAD"] [unique_id "ajI0L23kHGI2OaPOVnUl_AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 maviei	2026-06-17 03:06:38 (4 days ago)	2026-06-17T00:06:37.753161-03:00 srv1251771 kernel: [1432426.768185] [UFW BLOCK] IN=eth0 OUT= MAC=40 ... show more 2026-06-17T00:06:37.753161-03:00 srv1251771 kernel: [1432426.768185] [UFW BLOCK] IN=eth0 OUT= MAC=40:e8:d4:b8:29:bb:44:38:39:ff:ff:41:08:00 SRC=134.199.174.139 DST=72.61.36.27 LEN=60 TOS=0x00 PREC=0x00 TTL=45 ID=48653 DF PROTO=TCP SPT=48982 DPT=2083 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-17T00:06:37.753529-03:00 srv1251771 kernel: [1432426.768499] [UFW BLOCK] IN=eth0 OUT= MAC=40:e8:d4:b8:29:bb:44:38:39:ff:ff:41:08:00 SRC=134.199.174.139 DST=72.61.36.27 LEN=60 TOS=0x00 PREC=0x00 TTL=45 ID=3699 DF PROTO=TCP SPT=37942 DPT=2095 WINDOW=64240 RES=0x00 SYN URGP=0 2026-06-17T00:06:37.753564-03:00 srv1251771 kernel: [1432426.768574] [UFW BLOCK] IN=eth0 OUT= MAC=40:e8:d4:b8:29:bb:44:38:39:ff:ff:41:08:00 SRC=134.199.174.139 DST=72.61.36.27 LEN=60 TOS=0x00 PREC=0x00 TTL=45 ID=3968 DF PROTO=TCP SPT=55196 DPT=2087 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 JPPO	2026-06-17 02:52:39 (4 days ago)	Multiport scan 10 ports : 80 443(x2) 2077 2078 2082 2083 2086 2087 2095 2096	Port Scan
🇷🇸 Scan	2026-06-17 01:16:31 (4 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 MPL	2026-06-17 00:41:08 (4 days ago)	tcp port scan (10 or more attempts)	Port Scan

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 207.248.113.80

🇵🇱 194.165.16.162

🇷🇺 188.17.153.174

🇨🇳 180.184.86.82

🇺🇸 52.128.40.106

🇦🇪 5.31.130.162

🇺🇸 207.241.173.104

🇨🇳 183.164.240.153

🇨🇱 181.43.39.94

🇯🇵 172.253.6.149

🇫🇷 155.117.233.15

🇧🇮 154.73.41.202

🇨🇳 116.147.40.93

🇹🇭 110.77.131.229

🇿🇦 102.132.70.213

🇺🇿 93.170.168.133

🇳🇱 80.82.77.48

🇰🇷 47.80.29.108

🇺🇸 20.46.232.134

🇺🇸 2604:a880:400:d1:0:4:9e91:c001