JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.168.153

140.235.168.153 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 3%: ?

ISP	SharePolicy LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	sharepolicy.net
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.168.153

Whois 140.235.168.153

IP Abuse Reports for 140.235.168.153:

This IP address has been reported a total of 9 times from 4 distinct sources. 140.235.168.153 was first reported on October 13th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-14 21:14:57 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 140.235.168.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 140.235.168.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 17:14:50.365589 2026] [security2:error] [pid 1446:tid 1446] [client 140.235.168.153:29445] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|paulbihn.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "paulbihn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai8ZymMjcXdyuPtXs2giGgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 20:40:28 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 140.235.168.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 140.235.168.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 16:40:23.884834 2026] [security2:error] [pid 17870:tid 17870] [client 140.235.168.153:51767] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|oxygenfarm.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "oxygenfarm.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai8Rt33MzFBbramTuvLOZQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 19:49:13 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 140.235.168.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 140.235.168.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 15:49:05.801638 2026] [security2:error] [pid 3579:tid 3594] [client 140.235.168.153:51719] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|oftv.xyz\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "oftv.xyz"] [uri "/wp-json/wp/v2/users"] [unique_id "ai8FsVayIHCpkXHkXfZ5IAAAAU0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 18:55:37 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 140.235.168.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 140.235.168.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 14:55:33.965562 2026] [security2:error] [pid 9756:tid 9756] [client 140.235.168.153:29009] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|heavenly-creatures.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "heavenly-creatures.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aisEpZ2fPi4jJ7ELc3HmrAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-16 02:19:30 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 140.235.168.153 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 140.235.168.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 22:19:21.946492 2026] [security2:error] [pid 2296221:tid 2296221] [client 140.235.168.153:17265] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Briarwood II/Stetson Bordeaux/Thumbs.db"] [unique_id "aeBHKQbh-rEBBbVsP3mkmwAAAA8"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Briarwood%20II/Stetson%20Bordeaux/ show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-03-11 16:52:28 (3 months ago)	Accessed trap at '/wp-login.php'	Web App Attack
🇩🇪 HandyTreff.de	2026-01-19 10:11:54 (5 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -30.54 (Bad < -10 / Very Bad < -20 / ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -30.54 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.1763.1 show less	Bad Web Bot Web App Attack
🇨🇭 backslash	2025-12-13 01:25:12 (6 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇨🇭 backslash	2025-10-13 11:35:11 (8 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.155.80

🇮🇷 185.112.151.218

🇧🇷 177.76.134.52

🇮🇩 103.97.101.25

🇺🇸 184.105.139.86

🇨🇳 121.204.171.142

🇺🇦 91.209.54.1

🇺🇸 74.114.29.211

🇨🇳 61.142.115.207

🇩🇪 45.135.194.113

🇺🇸 23.129.64.161

🇫🇷 5.196.78.175

🇹🇼 198.235.24.6

🇲🇽 187.175.9.225

🇺🇸 107.145.13.164

🇺🇸 162.216.150.172

🇺🇸 152.32.183.236

🇻🇳 123.30.97.105

🇨🇳 106.117.104.110

🇹🇷 89.252.157.42