JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 134.209.149.170

134.209.149.170 was found in our database!

This IP was reported 90 times. Confidence of Abuse is 16%: ?

16%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇮🇳 India
City	Bashettihalli, Karnataka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 134.209.149.170

Whois 134.209.149.170

IP Abuse Reports for 134.209.149.170:

This IP address has been reported a total of 90 times from 43 distinct sources. 134.209.149.170 was first reported on July 4th 2021, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 Threat.live	2026-06-16 03:00:02 (6 days ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 RAP	2026-05-21 01:40:10 (1 month ago)	2026-05-21 01:40:10 UTC Unauthorized activity to TCP port 8089. Web App	Port Scan Web App Attack
🇺🇸 RAP	2026-05-19 07:48:37 (1 month ago)	2026-05-19 07:48:37 UTC Unauthorized activity to TCP port 8089. Web App	Port Scan Web App Attack
Anonymous	2026-05-19 07:35:10 (1 month ago)	Unauthorized access (tcp/8080 - Scan for open web proxy)	Port Scan
🇩🇪 David Ferneding	2026-03-28 04:59:18 (2 months ago)	Blocked by UFW (TCP on 8080) Source port: 61011 TTL: 243 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 8080) Source port: 61011 TTL: 243 Packet length: 44 TOS: 0x00 This report (for 134.209.149.170) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 octageeks.com	2026-03-10 04:08:33 (3 months ago)	Wordpress malicious attack:[octamissingdomain]	Web App Attack
🇧🇪 cmbplf	2026-03-09 15:02:43 (3 months ago)	4.804 requests from abuseipdb.com blacklisted IP (1yr10mos1w)	Brute-Force Bad Web Bot
🇺🇸 myagent.site	2026-03-09 13:56:29 (3 months ago)	Blocking for trying to access an exploit file: /xmlrpc.php?rsd	Hacking
🇬🇧 Swiptly	2026-03-09 09:54:14 (3 months ago)	Excessive 403/404/405 PHP/CMS errors from scanning or broken bots ...	Web App Attack
🇺🇸 TPI-Abuse	2026-03-09 03:33:45 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 134.209.149.170 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 134.209.149.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 08 23:33:37.879459 2026] [security2:error] [pid 1836:tid 1836] [client 134.209.149.170:55823] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gpobiotech.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gpobiotech.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aa4_kecuBqD9Iar746FejAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-03-08 19:05:26 (3 months ago)	Too many Status 40X (11)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-03-08 08:24:31 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 134.209.149.170 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 134.209.149.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 08 04:24:23.898771 2026] [security2:error] [pid 13034:tid 13034] [client 134.209.149.170:62148] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.goseethenurse.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.goseethenurse.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aa0yN4zYbSYejkZgQBVstAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 masterguru	2026-03-08 08:13:50 (3 months ago)	WordPress: User enumeration. Pattern match "(author\\\\= (88030-185)	Hacking
🇦🇺 2000cn.com.au	2026-03-08 07:50:29 (3 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇺🇸 octageeks.com	2026-03-06 05:06:22 (3 months ago)	Wordpress malicious attack:[octaflood]	Web App Attack

Showing 1 to 15 of 90 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 74.65.241.177

🇺🇸 205.210.31.8

🇷🇺 195.209.127.161

🇧🇷 177.39.156.25

🇳🇱 176.65.139.36

🇭🇰 156.245.246.50

🇸🇨 45.194.67.26

🇩🇪 43.228.157.14

🇮🇩 31.56.56.174

🇫🇷 5.135.232.33

🇺🇸 216.73.216.195

🇧🇷 205.210.31.241

🇺🇸 205.210.31.76

🇧🇷 191.6.112.44

🇵🇱 188.125.33.54

🇧🇴 181.188.176.242

🇨🇳 124.117.194.3

🇧🇩 103.174.51.51

🇺🇸 100.53.60.67

🇮🇳 45.123.13.160