JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.0.143

140.235.0.143 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 0%: ?

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.0.143

Whois 140.235.0.143

IP Abuse Reports for 140.235.0.143:

This IP address has been reported a total of 21 times from 14 distinct sources. 140.235.0.143 was first reported on April 23rd 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 SiliSoftware	2026-05-17 11:06:50 (1 month ago)	/2022.rar	Web App Attack
🇺🇸 TPI-Abuse	2026-04-16 01:37:23 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 140.235.0.143 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 140.235.0.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 21:37:14.512209 2026] [security2:error] [pid 2246977:tid 2246977] [client 140.235.0.143:21907] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Steelcase/pics/Amia/Thumbs.db"] [unique_id "aeA9SoeElR4OvqlNm6VzfgAAAAY"], referer: https://vitalitywebb.com/backstore/Steelcase/pics/Amia/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-03-11 11:42:45 (3 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
Anonymous	2026-02-01 15:54:04 (4 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.02.01 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.02.01 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-24 05:14:13 (5 months ago)	Forum/form spam	Web Spam
🇩🇪 HandyTreff.de	2025-12-08 08:03:55 (6 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -21.872 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -21.872 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.2827.1 show less	Bad Web Bot Web App Attack
🇨🇭 backslash	2025-12-01 01:35:13 (6 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇺🇸 octageeks.com	2025-11-22 05:06:16 (6 months ago)	Wordpress malicious attack:[octaflood]	Web App Attack
Anonymous	2025-11-21 10:03:00 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-11-19 19:12:04 (7 months ago)	Forum/form spam	Web Spam
🇩🇪 hbrks	2025-10-22 01:48:22 (7 months ago)	1 attack(s) detected, such as these: {"event":"nginx_block","ip":"140.235.0.143","host":"marche-be.c ... show more 1 attack(s) detected, such as these: {"event":"nginx_block","ip":"140.235.0.143","host":"marche-be.com","request":"GET /index.php/home/about-marche-be HTTP/1.1","user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36","reason":"service:unknow","timestamp":"2025-10-22T01:48:22 00:00","logentry":"marche-be.com 140.235.0.143 - - [22/Oct/2025:01:48:22 0000] GET /index.php/home/about-marche-be HTTP/1.1 444 0 http://marche-be.com/ Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 - matched:service:unknow"… * Report Details : https://p4u.xyz/3HL5ORSIPQT/1 IP Details *: https://p4u.xyz/3HL5ORSIPQT/2 show less	Web Spam Hacking Bad Web Bot
🇨🇿 lp	2025-09-11 12:25:46 (9 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 140.235.0.143 2025-09-11T14:02:00+02: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 140.235.0.143 2025-09-11T14:02:00+02:00 vpn Access-Reject 'sql' station: 140.235.0.143 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-09-11 00:24:24 (9 months ago)	Unauthorized VPN login attempts: 5 attempts were recorded from 140.235.0.143 2025-09-11T01:49:32+02: ... show more Unauthorized VPN login attempts: 5 attempts were recorded from 140.235.0.143 2025-09-11T01:49:32+02:00 vpn Access-Reject 'admin' station: 140.235.0.143 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-09-11T01:51:19+02:00 vpn Access-Reject 'administrator' station: 140.235.0.143 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-09-11T01:51:51+02:00 vpn Access-Reject 'administrator' station: 140.235.0.143 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-09-11T01:52:20+02:00 vpn Access-Reject 'admin' station: 140.235.0.143 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-09-11T01:52:35+02:00 vpn Access-Reject 'administrator' station: 140.235.0.143 auth-type: - realm: vse show less	Brute-Force Web App Attack
🇨🇿 lp	2025-09-09 18:24:01 (9 months ago)	Unauthorized VPN login attempts: 2 attempts were recorded from 140.235.0.143 2025-09-09T18:49:12+02: ... show more Unauthorized VPN login attempts: 2 attempts were recorded from 140.235.0.143 2025-09-09T18:49:12+02:00 vpn Access-Reject 'administration' station: 140.235.0.143 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-09-09T18:50:03+02:00 vpn Access-Reject 'operator' station: 140.235.0.143 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-09-04 16:51:35 (9 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 140.235.0.143 2025-09-04T17:30:43+02: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 140.235.0.143 2025-09-04T17:30:43+02:00 vpn Access-Reject 'Kathryn' station: 140.235.0.143 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 44.202.58.169

🇺🇸 216.55.146.56

🇺🇸 143.42.1.53

🇨🇳 125.72.100.110

🇨🇳 120.48.124.81

🇱🇹 81.30.98.44

🇫🇷 62.169.20.98

🇨🇳 221.229.218.50

🇸🇬 209.42.27.89

🇨🇳 180.153.197.24

🇩🇪 167.94.146.75

🇳🇱 91.92.40.237

🇸🇬 47.128.109.43

🇧🇷 45.205.1.245

🇺🇸 44.240.251.161

🇺🇸 44.4.131.197

🇺🇸 208.109.191.140

🇳🇱 203.159.90.205

🇺🇸 198.46.200.132

🇧🇷 189.18.147.4