JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.180.237.140

194.180.237.140 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 18%: ?

18%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.180.237.140

Whois 194.180.237.140

IP Abuse Reports for 194.180.237.140:

This IP address has been reported a total of 12 times from 9 distinct sources. 194.180.237.140 was first reported on August 20th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 MusicLibrary	2026-05-06 23:48:46 (1 month ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇮🇩 Burayot	2026-05-05 09:47:02 (1 month ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 194.180.237.140 (US/United States/- ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 194.180.237.140 (US/United States/-): 2 in the last 3600 secs show less	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-05-01 03:52:48 (1 month ago)	WP Login Scan Activities: "2026-05-01T10:52:48.080+07:00" "/wp-login.php" "194.180.237.140" "Mozilla ... show more WP Login Scan Activities: "2026-05-01T10:52:48.080+07:00" "/wp-login.php" "194.180.237.140" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-04-30 22:48:41 (1 month ago)	WP Login Scan Activities: "2026-05-01T05:48:41.302+07:00" "/wp-login.php" "194.180.237.140" "Mozilla ... show more WP Login Scan Activities: "2026-05-01T05:48:41.302+07:00" "/wp-login.php" "194.180.237.140" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-04-28 13:57:52 (1 month ago)	WP Login Scan Activities: "2026-04-28T20:57:52.367+07:00" "/wp-login.php" "194.180.237.140" "Mozilla ... show more WP Login Scan Activities: "2026-04-28T20:57:52.367+07:00" "/wp-login.php" "194.180.237.140" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Web App Attack
🇫🇷 Baking333	2026-04-25 19:15:48 (1 month ago)	[redacted] 194.180.237.140 - - [25/Apr/2026:20:15:44 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/37 ... show more [redacted] 194.180.237.140 - - [25/Apr/2026:20:15:44 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/37756 "https://[redacted]" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" [redacted] 194.180.237.140 - - [25/Apr/2026:20:15:47 +0100] "GET /[redacted] HTTP/1.1" 302 1518 0/39771 "https://[redacted]" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 mind5t0rm	2026-04-23 16:42:10 (1 month ago)	(WPLOGIN) WP Login Attack 194.180.237.140 (US/United States/-): 3 in the last 3600 secs; Ports: ; D ... show more (WPLOGIN) WP Login Attack 194.180.237.140 (US/United States/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 194.180.237.140 - - [23/Apr/2026:23:41:33 +0700] "GET /wp-login.php HTTP/2.0" 200 3116 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 194.180.237.140 - - [23/Apr/2026:23:41:51 +0700] "GET /wp-login.php HTTP/2.0" 200 3116 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" 194.180.237.140 - - [23/Apr/2026:23:42:07 +0700] "GET /wp-login.php/ HTTP/2.0" 200 3116 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Port Scan
🇺🇸 TPI-Abuse	2026-04-23 10:04:36 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 194.180.237.140 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 194.180.237.140 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 23 06:04:29.066229 2026] [security2:error] [pid 29575:tid 29575] [client 194.180.237.140:42933] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.player-care.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.player-care.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aenurZe3io5NslW0pzFdiwAAACY"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-21 00:42:59 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 194.180.237.140 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 194.180.237.140 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 20 20:42:56.093801 2026] [security2:error] [pid 56504:tid 56504] [client 194.180.237.140:13807] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|twccsolutions.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "twccsolutions.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aebIELv7VeOtqIKl_LyfMwAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇮🇪 Coolnagour	2026-04-17 09:17:07 (2 months ago)	http-probing: /wp-json/wp/v2/users	Web App Attack
🇫🇷 tilellit.pro	2026-03-07 02:00:03 (3 months ago)	Fail2Ban banned 194.180.237.140 for security violations in jail wp-armour. Log: 2026/03/07 02:00:02 ... show more Fail2Ban banned 194.180.237.140 for security violations in jail wp-armour. Log: 2026/03/07 02:00:02 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 194.180.237.140 \| Target: wplogin" , client: 194.180.237.140, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇨🇿 lp	2025-08-20 13:51:13 (10 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 194.180.237.140 2025-08-20T15:12:20+0 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 194.180.237.140 2025-08-20T15:12:20+02:00 vpn Access-Reject 'astorm' station: 194.180.237.140 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 202.29.225.158

🇧🇷 131.196.28.137

🇫🇮 77.105.130.18

🇺🇸 50.87.144.11

🇧🇷 45.187.57.218

🇷🇴 2.57.121.112

🇸🇪 155.4.209.51

🇺🇸 143.244.159.98

🇺🇸 137.184.128.173

🇺🇸 136.144.35.169

🇨🇳 106.75.144.150

🇷🇴 80.94.92.168

🇺🇸 50.62.182.250

🇳🇱 45.148.10.141

🇺🇸 44.252.59.115

🇺🇸 13.89.125.30

🇺🇸 216.73.217.105

🇬🇧 193.163.125.204

🇧🇷 187.111.126.145

🇱🇻 185.113.139.51