JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 195.140.214.22

195.140.214.22 was found in our database!

This IP was reported 3,790 times. Confidence of Abuse is 100%: ?

100%

ISP	Infrawatch Limited
Usage Type	Fixed Line ISP
ASN	AS25369
Hostname(s)	195-140-214-22.infrawat.ch
Domain Name	infrawat.ch
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 195.140.214.22

Whois 195.140.214.22

IP Abuse Reports for 195.140.214.22:

This IP address has been reported a total of 3,790 times from 343 distinct sources. 195.140.214.22 was first reported on April 1st 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Phenix Info	2026-04-03 03:55:19 (2 months ago)	SmallGuard.fr/Prestashop Empty User Agent	Web App Attack
🇩🇪 Admins@FBN	2026-04-03 03:55:03 (2 months ago)	FW-PortScan: Traffic Blocked srcport=14729 dstport=80	Port Scan
🇺🇸 MPL	2026-04-03 03:53:57 (2 months ago)	tcp/80 (4 or more attempts)	Port Scan
🇩🇪 Admins@FBN	2026-04-03 03:12:01 (2 months ago)	FW-PortScan: Traffic Blocked srcport=40727 dstport=80	Port Scan
🇺🇸 MPL	2026-04-03 03:11:01 (2 months ago)	tcp/80 (11 or more attempts)	Port Scan
🇩🇪 entspannt	2026-04-03 02:55:18 (2 months ago)	Detected empty referer, indicating web scraping / abusive scanning with UA: "-" and uri: "/index.htm ... show more Detected empty referer, indicating web scraping / abusive scanning with UA: "-" and uri: "/index.html" show less	IoT Targeted
🇺🇸 kosada.com	2026-04-03 02:55:12 (2 months ago)	Web vulnerability probing: /	Web App Attack
🇫🇷 EDSL	2026-04-03 02:54:45 (2 months ago)	[SRV-REVERSEPROXY] Blocked by SysWarden Firewall (Web Attack Port 80)	Hacking Web App Attack Port Scan
🇺🇸 xmission.com	2026-04-03 02:53:50 (2 months ago)	Blocked by UFW (TCP on 80) Source port: 5008 TTL: 240 Packet length: 40 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 5008 TTL: 240 Packet length: 40 TOS: 0x08 This report (for 195.140.214.22) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 MPL	2026-04-03 02:53:05 (2 months ago)	tcp/80 (2 or more attempts)	Port Scan
🇩🇪 ValtonTahiri	2026-04-03 02:51:59 (2 months ago)	Honeypot hit: HTTP GET http://[SOME-IP]/ URL: http://[SOME-IP]/ Method: GET Status: 200 Host: [SOME- ... show more Honeypot hit: HTTP GET http://[SOME-IP]/ URL: http://[SOME-IP]/ Method: GET Status: 200 Host: [SOME-IP] Accept: / Other Headers: connection: close show less	Hacking Bad Web Bot
🇫🇷 Security_Whaller	2026-04-03 02:51:38 (2 months ago)	Malicious activity detected on Honeypot.	Brute-Force Hacking Web App Attack
🇺🇸 technash	2026-04-03 02:07:40 (2 months ago)	Unauthorized network connection attempt(s) via TCP port(s) from TI-mapped IP entity detected [Fortin ... show more Unauthorized network connection attempt(s) via TCP port(s) from TI-mapped IP entity detected [Fortinet/Sentinel]. Deny/drop traffic. show less	Port Scan
🇩🇪 KPS	2026-04-03 01:48:39 (2 months ago)	PortscanM	Port Scan
🇩🇪 Admins@FBN	2026-04-03 01:20:01 (2 months ago)	FW-PortScan: Traffic Blocked srcport=17646 dstport=80	Port Scan

Showing 3676 to 3690 of 3790 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.122

🇹🇼 198.235.24.107

🇺🇸 185.191.171.1

🇱🇧 185.160.227.166

🇨🇳 117.160.217.188

🇫🇷 91.196.152.126

🇺🇸 45.33.89.53

🇬🇧 35.203.211.130

🇬🇧 35.203.210.240

🇺🇸 20.65.194.112

🇷🇺 5.141.100.135

🇰🇷 222.239.251.12

🇧🇷 205.210.31.237

🇬🇧 193.163.125.157

🇮🇱 185.46.77.99

🇳🇱 176.65.139.31

🇻🇳 171.237.176.209

🇺🇸 164.92.106.15

🇻🇳 160.191.54.27

🇹🇭 152.32.247.23