JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.234.140.139

104.234.140.139 was found in our database!

This IP was reported 114 times. Confidence of Abuse is 32%: ?

32%

ISP	Latitude.sh
Usage Type	Data Center/Web Hosting/Transit
ASN	AS396356
Domain Name	latitude.sh
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.234.140.139

Whois 104.234.140.139

IP Abuse Reports for 104.234.140.139:

This IP address has been reported a total of 114 times from 39 distinct sources. 104.234.140.139 was first reported on June 16th 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-26 06:18:57 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-06-17 10:50:21 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-06-16 02:55:55 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-06-04 15:52:59 (3 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Site.eu	2026-05-19 15:41:13 (1 month ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇳🇱 Site.eu	2026-05-13 12:51:42 (1 month ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 Live Home Cams	2026-05-11 23:58:46 (1 month ago)	WebApp brute force attack detected. Multiple file scanning attempts from 104.234.140.139. Detected b ... show more WebApp brute force attack detected. Multiple file scanning attempts from 104.234.140.139. Detected by fail2ban. show less	Web App Attack Brute-Force
🇺🇸 TPI-Abuse	2026-05-11 14:44:31 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 104.234.140.139 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.140.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 10:44:25.264614 2026] [security2:error] [pid 31379:tid 31379] [client 104.234.140.139:36401] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.writebetweenthelines.com"] [uri "/wp-content/wp-config.php"] [unique_id "agHrSdWyV2FLdyO4ra17yQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ger-stg-sifi1	2026-05-11 06:25:45 (1 month ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-05-11 01:47:51 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 104.234.140.139 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.140.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 21:47:47.606387 2026] [security2:error] [pid 29512:tid 29512] [client 104.234.140.139:20013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.miroddi.com"] [uri "/wp-config.php"] [unique_id "agE1Q3bUf681rMq64Vk9kwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-10 20:41:05 (1 month ago)	Multiple, malicious web requests detected	Port Scan Hacking
🇳🇱 Site.eu	2026-05-10 01:48:46 (1 month ago)	Excessive multi-domain requests	Brute-Force
Anonymous	2026-05-09 20:05:05 (1 month ago)	Blocked: Reason='Vulnerability probing — PHP scan detected (353/60 min)'; Requests=353	Port Scan
🇪🇸 masterguru	2026-05-08 04:33:24 (1 month ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇺🇸 mnsf	2026-05-08 01:05:14 (1 month ago)	Scanning/Probing (34) Request Overload (394)	Brute-Force Web App Attack

Showing 1 to 15 of 114 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.44.255.126

🇺🇸 172.191.74.151

🇧🇷 170.150.252.53

🇮🇹 93.48.24.181

🇰🇭 36.37.161.15

🇩🇪 2.27.20.149

🇬🇧 193.32.209.252

🇹🇷 185.201.212.242

🇧🇷 177.72.77.224

🇺🇸 172.71.154.232

🇸🇪 155.4.245.222

🇭🇰 150.5.131.119

🇸🇬 140.245.48.133

🇺🇸 135.237.130.179

🇨🇳 124.251.110.186

🇺🇸 104.156.34.183

🇰🇪 102.210.148.92

🇧🇬 78.128.113.74

🇺🇸 67.207.93.64

🇱🇹 62.60.130.219