AbuseIPDB » 174.138.61.220

174.138.61.220 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 40%: ?

40%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	United States of America
City	Clifton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 174.138.61.220

Whois 174.138.61.220

IP Abuse Reports for 174.138.61.220:

This IP address has been reported a total of 19 times from 14 distinct sources. 174.138.61.220 was first reported on February 27th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
ThreatBook.io	2025-06-24 23:30:01 (3 weeks ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/174.138.61.220 2 ... show moreThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/174.138.61.220 2025-06-24 00:47:07 /_profiler/phpinfo 2025-06-24 00:47:07 /.env 2025-06-24 00:47:08 /,{"body":"0x%5B%5D=androxgh0st","content_type":"application/x-www-form-urlencoded","header":{"Accept":["*/*"],"Accept-Encoding":["gzip, deflate"],"Connection":["keep-alive"],"Content-Length":["20"],"Content-Type":["application/x-www-form-urlencoded"],"User-Agent":["Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"]},"host":"47.93.33.30","method":"POST","proto":"HTTP/1.1","remote_addr":"174.138.61.220:58176","status_code":200,"url":"/","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"} show less	Web App Attack
ThreatBook.io	2025-06-23 23:31:18 (3 weeks ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/174.138.61.220 2 ... show moreThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/174.138.61.220 2025-06-23 12:07:31 /_profiler/phpinfo 2025-06-23 12:07:31 /,{"body":"0x%5B%5D=androxgh0st","content_type":"application/x-www-form-urlencoded","header":{"Accept":["*/*"],"Accept-Encoding":["gzip, deflate"],"Connection":["keep-alive"],"Content-Length":["20"],"Content-Type":["application/x-www-form-urlencoded"],"User-Agent":["Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"]},"host":"47.101.128.182","method":"POST","proto":"HTTP/1.1","remote_addr":"174.138.61.220:49444","status_code":200,"url":"/","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"} 2025-06-23 12:07:30 /.env show less	Web App Attack
Study Bitcoin 🤗	2025-06-23 14:56:19 (3 weeks ago)	Port probe to tcp/80 (http) [srv124]	Port Scan Bad Web Bot Web App Attack
vexhost.pl	2025-06-23 13:46:03 (3 weeks ago)	Suspicous activity [srv-R9-1] | 2025-06-23 13:46:03 UTC	Brute-Force
ingroscart.it	2025-06-23 06:24:55 (3 weeks ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 174.138.61.220 (US/Unite ... show more(apache-scanners) Failed apache-scanners trigger with match [redacted] from 174.138.61.220 (US/United States/-) show less	Port Scan
ingroscart.it	2025-06-23 06:24:55 (3 weeks ago)	(mod_security) mod_security triggered on hostname [redacted] 174.138.61.220 (US/United States/-)	SQL Injection
iRaphi05	2025-06-21 05:13:21 (4 weeks ago)	Honeypot log: Request on path /.env Method: GET User-Agent: Mozilla/5.0 (X11; Linux x86_ ... show moreHoneypot log: Request on path /.env Method: GET User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 show less	Hacking Brute-Force Bad Web Bot Web App Attack
ScanThe.Net	2025-06-21 04:43:12 (4 weeks ago)	ID: 2665749720 | PORT: 80 | https://174-138-61-220.scanthe.net	Port Scan
joecalibre	2025-06-21 03:40:01 (4 weeks ago)	Malicious activity detected by monitoring system. Attack types observed: LFI.	Web App Attack
Vieira Filho	2025-06-20 22:49:20 (4 weeks ago)	174.138.61.220 - - [20/Jun/2025:19:49:20 -0300] [35.198.31.82] "35.198.31.82" "GET /.env HTTP/1.1" ... show more174.138.61.220 - - [20/Jun/2025:19:49:20 -0300] [35.198.31.82] "35.198.31.82" "GET /.env HTTP/1.1" 404 571 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 0.000 ... show less	Brute-Force Exploited Host Web App Attack
ThreatBook.io	2025-06-18 23:47:13 (1 month ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/174.138.61.220 2 ... show moreThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/174.138.61.220 2025-06-18 01:53:17 /.env 2025-06-18 01:53:17 /_profiler/phpinfo 2025-06-18 01:53:18 /,{"body":"0x%5B%5D=androxgh0st","content_type":"application/x-www-form-urlencoded","header":{"Accept":["*/*"],"Accept-Encoding":["gzip, deflate"],"Connection":["keep-alive"],"Content-Length":["20"],"Content-Type":["application/x-www-form-urlencoded"],"User-Agent":["Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"]},"host":"43.133.146.120","method":"POST","proto":"HTTP/1.1","remote_addr":"174.138.61.220:59478","status_code":200,"url":"/","user_agent":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"} show less	Web App Attack
service Informatique	2025-06-18 04:00:37 (1 month ago)	GET /_profiler/phpinfo	Web App Attack
service Informatique	2025-06-18 04:00:37 (1 month ago)	GET /_profiler/phpinfo	Web App Attack
gurnip	2025-06-17 23:07:36 (1 month ago)	Vulnerability probe of page /.env, not found on server.	Brute-Force Web App Attack
aks4226	2025-06-17 21:29:23 (1 month ago)	Attacking common web apps.	Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩