JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 181.214.206.138

181.214.206.138 was found in our database!

This IP was reported 166 times. Confidence of Abuse is 10%: ?

10%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Fixed Line ISP
ASN	AS3257
Domain Name	netutils.io
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 181.214.206.138

Whois 181.214.206.138

IP Abuse Reports for 181.214.206.138:

This IP address has been reported a total of 166 times from 120 distinct sources. 181.214.206.138 was first reported on July 14th 2021, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-06-15 07:26:17 (6 days ago)	Fail2Ban banned 181.214.206.138 for security violations in jail wp-armour. Log: 2026/06/15 07:26:17 ... show more Fail2Ban banned 181.214.206.138 for security violations in jail wp-armour. Log: 2026/06/15 07:26:17 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 181.214.206.138 \| Target: wplogin" , client: 181.214.206.138, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Web Spam
Anonymous	2026-04-29 04:02:29 (1 month ago)	Try to connect to Port_Scan_8888_stealth	Port Scan
🇫🇷 UM3	2026-02-08 16:29:07 (4 months ago)	Exim Auth Failed	Brute-Force
Anonymous	2025-12-06 13:34:31 (6 months ago)	Ports: 25,2525,110,143,993,995; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇦🇹 René Hickersberger	2025-06-07 11:12:24 (1 year ago)	[2025-05-07T12:51:50Z] Malicious request to /.env	Hacking Bad Web Bot Web App Attack
🇦🇹 René Hickersberger	2025-06-01 23:16:17 (1 year ago)	[2025-05-07T12:51:50Z] Malicious request to /.env	Hacking Bad Web Bot Web App Attack
🇬🇧 Buster	2025-05-13 09:00:00 (1 year ago)	Childish DDOS attack attempts from:2.57.217.229, 2a00:5da0:1000:1::2ee9, 2a0b:4142:d08::2, 2a01:4f8: ... show more Childish DDOS attack attempts from:2.57.217.229, 2a00:5da0:1000:1::2ee9, 2a0b:4142:d08::2, 2a01:4f8:2220:11c7::2, 2a02:4780:a:c0de::84, 2a02:c204:2153:3036::1, 2a02:c207:2055:597::1, 2a02:c207:2258:6132::1, 2a03:2880:3ff:1::, 2a03:2880:3ff:2::, 2a03:2880:3ff:7::, 2a03:2880:13ff:7d::, 2a03:2880:f800:10::, 2a03:2880:f800:f::, 2a03:ac60:2001:3037::1, 2a05:d018:1d9d:e701:c3df:92ec:18d8:a172, 3.109.22.239, 8.26.21.36, 13.232.235.245, 14.225.2.125, 18.158.27.155, 18.198.77.8, 23.27.190.185, 23.81.49.72, 34.106.158.2, 34.125.111.154, 34.141.212.115, 34.204.88.4, 35.189.241.61, 35.221.49.203, 36.37.73.242, 40.127.68.180, 41.185.97.199, 43.153.54.138, 43.153.67.21, 44.246.251.176, 45.94.31.111, 45.130.253.170, 45.137.52.110, 46.17.174.192, 47.254.135.29, 49.50.76.104, 52.2.12.170, 52.47.53.251, 52.169.84.147, 52.169.115.141, 52.220.225.176, 54.36.148.10, 54.36.148.50, 64.226.91.65, 64.227.103.231, 70.37.89.177, 79.137.39.190, 80.85.247.231, 82.65.239.74, 82.148.28.41, 82.223.30.60, 84.21.171.131, 85.204.70.102, 89.110 show less	DDoS Attack Open Proxy VPN IP Hacking Web App Attack
🇪🇸 tecnicorioja	2025-05-11 00:00:27 (1 year ago)	(Mod_security) [10/May/2025:07:07:35.753516	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-05-10 09:33:38 (1 year ago)	[09/May/2025:18:56:21 -0400] "GET /.env HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv: ... show more [09/May/2025:18:56:21 -0400] "GET /.env HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Hacking
🇳🇱 JCB	2025-05-10 07:11:00 (1 year ago)	181.214.206.138 - - [10/May/2025:06:22:58 +0300] "GET /.env HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Maci ... show more 181.214.206.138 - - [10/May/2025:06:22:58 +0300] "GET /.env HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 181.214.206.138 - - [10/May/2025:06:23:05 +0300] "GET /.env HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Hacking Web App Attack
🇺🇸 lnklnx	2025-05-10 07:01:50 (1 year ago)	www.lnklnx.com:80 181.214.206.138 - - [10/May/2025:02:01:48 -0500] "GET /.env HTTP/1.1" 301 578 "-" ... show more www.lnklnx.com:80 181.214.206.138 - - [10/May/2025:02:01:48 -0500] "GET /.env HTTP/1.1" 301 578 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	Web App Attack
🇮🇩 Burayot	2025-05-10 07:01:23 (1 year ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 181.214.206.138 (NL/The Netherlands/ ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 181.214.206.138 (NL/The Netherlands/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 rdpguard.com	2025-05-10 06:22:50 (1 year ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇩🇪 tinect	2025-05-10 06:04:38 (1 year ago)	tries to find malicious content	Hacking Web App Attack
🇧🇪 voormedia	2025-05-10 05:51:09 (1 year ago)	Accessed trap at '/.env'	Web App Attack

Showing 1 to 15 of 166 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.191

🇧🇪 198.235.24.217

🇮🇩 36.82.37.177

🇺🇸 20.29.90.34

🇺🇸 198.46.168.51

🇿🇼 196.43.115.198

🇵🇱 195.116.145.127

🇫🇷 194.59.30.239

🇺🇸 172.173.67.22

🇵🇭 124.105.218.149

🇰🇷 118.37.214.187

🇸🇬 98.159.43.29

🇱🇹 81.30.98.62

🇫🇮 77.105.130.18

🇳🇱 45.148.10.230

🇺🇸 34.63.117.220

🇸🇪 213.66.197.199

🇧🇪 198.235.24.196

🇧🇷 187.62.87.27

🇭🇰 152.32.214.226