JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.169.214

140.235.169.214 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 15%: ?

15%

ISP	SharePolicy LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	sharepolicy.net
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.169.214

Whois 140.235.169.214

IP Abuse Reports for 140.235.169.214:

This IP address has been reported a total of 11 times from 8 distinct sources. 140.235.169.214 was first reported on September 13th 2025, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-06-25 11:35:05 (6 hours ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 14-35.140.235.169.214.web-spam ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 14-35.140.235.169.214.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-06-20 07:45:41 (5 days ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇪🇸 el-brujo	2026-06-19 05:27:09 (6 days ago)	Cloudflare WAF: Request Path: /register2.html Request Query: Host: foro.elhacker.net userAgent: Moz ... show more Cloudflare WAF: Request Path: /register2.html Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:143.0) Gecko/20100101 Firefox/143.0 Action: managed_challenge Source: firewallCustom ASN Description: PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-06-19T05:27:09Z ruleId: 5012d84c6d9f467499149a3cd38d0b9d. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇱🇻 garmtech.com	2026-06-18 11:56:23 (1 week ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 14-56.140.235.169.214.web-spam ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 14-56.140.235.169.214.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-06-17 09:57:05 (1 week ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇫🇷 tilellit.pro	2026-02-09 10:31:21 (4 months ago)	Fail2Ban banned 140.235.169.214 for security violations in jail wp-armour. Log: 2026/02/09 10:31:20 ... show more Fail2Ban banned 140.235.169.214 for security violations in jail wp-armour. Log: 2026/02/09 10:31:20 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 140.235.169.214 \| Target: wplogin" , client: 140.235.169.214, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇺🇸 mind5t0rm	2026-02-05 21:18:47 (4 months ago)	(XMLRPC,WPLOGIN) Login failure/trigger from 140.235.169.214 (US/United States/-): 3 in the last 3600 ... show more (XMLRPC,WPLOGIN) Login failure/trigger from 140.235.169.214 (US/United States/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 140.235.169.214 - - [06/Feb/2026:04:18:40 +0700] "POST /xmlrpc.php HTTP/2.0" 403 154 "-" "curl/8.6.0" 140.235.169.214 - - [06/Feb/2026:04:18:41 +0700] "POST /xmlrpc.php HTTP/2.0" 403 154 "-" "curl/7.88.1" 140.235.169.214 - - [06/Feb/2026:04:18:43 +0700] "POST /xmlrpc.php HTTP/2.0" 403 154 "-" "Wget/1.21.4" show less	Port Scan
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:02:19 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-11-21 21:39:07 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.21 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.21 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 [email protected]	2025-10-15 00:04:54 (8 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2025-10-15T00:04:54Z	Brute-Force
🇺🇸 TPI-Abuse	2025-09-13 21:14:43 (9 months ago)	(mod_security) mod_security (id:210350) triggered by 140.235.169.214 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 140.235.169.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 13 17:14:34.321810 2025] [security2:error] [pid 23105:tid 23105] [client 140.235.169.214:19667] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.anxo.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.anxo.org"] [uri "/erro.html"] [unique_id "aMXeut6gqpd70T4HtXE7HwAAABw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 185.247.137.196

🇰🇷 110.14.192.20

🇵🇹 109.50.185.153

🇵🇱 87.251.64.146

🇰🇷 59.21.37.60

🇺🇸 44.244.48.73

🇿🇦 196.39.163.204

🇩🇪 194.88.98.87

🇺🇸 107.151.195.176

🇮🇩 103.112.245.85

🇳🇬 102.91.78.168

🇳🇱 91.92.40.176

🇱🇻 81.30.98.144

🇱🇻 81.30.98.44

🇺🇸 44.194.156.163

🇺🇸 44.138.54.28

🇧🇷 43.164.194.33

🇨🇳 14.103.122.187

🇮🇪 4.210.68.162

🇷🇴 2.57.121.25