JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.0.209

140.235.0.209 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.0.209

Whois 140.235.0.209

IP Abuse Reports for 140.235.0.209:

This IP address has been reported a total of 10 times from 6 distinct sources. 140.235.0.209 was first reported on May 11th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 jjnxpct	2026-04-29 03:47:34 (1 month ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: / (Rule ID: 911100) - Method is not allowed by policy show less	Web App Attack
🇷🇴 INTEQ	2026-02-28 23:45:41 (3 months ago)	Brute force attack from 140.235.0.209	Brute-Force
Anonymous	2026-01-21 22:55:43 (4 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.21 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2026-01-19 05:11:38 (4 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2026.01.19 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2026.01.19 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-14 09:02:23 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.14 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.14 is noted in report timestamp show less	Hacking Brute-Force
🇩🇪 hbrks	2025-11-06 22:16:38 (6 months ago)	1 attack(s) detected, such as these: {"event":"nginx_block","ip":"140.235.0.209","host":"marche-be.c ... show more 1 attack(s) detected, such as these: {"event":"nginx_block","ip":"140.235.0.209","host":"marche-be.com","request":"GET /wp-login.php HTTP/1.1","user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.198 Safari/537.36","reason":"service:unknow","timestamp":"2025-11-06T22:16:38 00:00","logentry":"marche-be.com 140.235.0.209 - - [06/Nov/2025:22:16:38 0000] GET /wp-login.php HTTP/1.1 444 0 http://marche-be.com/wp-login.php Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.198 Safari/537.36 - matched:service:unknow"} * Report Details : https://p4u.xyz/0GW51A1MBOF/1 IP Details *: https://p4u.xyz/0GW51A1MBOF/2 show less	Web Spam Hacking Bad Web Bot
🇩🇪 hbrks	2025-11-03 00:28:28 (7 months ago)	1 attack(s) detected, such as these: {"event":"nginx_block","ip":"140.235.0.209","host":"marche-be.c ... show more 1 attack(s) detected, such as these: {"event":"nginx_block","ip":"140.235.0.209","host":"marche-be.com","request":"GET /wp-login.php HTTP/1.1","user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.198 Safari/537.36","reason":"service:unknow","timestamp":"2025-11-03T00:28:28 00:00","logentry":"marche-be.com 140.235.0.209 - - [03/Nov/2025:00:28:28 0000] GET /wp-login.php HTTP/1.1 444 0 http://marche-be.com/wp-login.php Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.198 Safari/537.36 - matched:service:unknow"} * Report Details : https://p4u.xyz/CU16RDG7T0R/1 IP Details *: https://p4u.xyz/CU16RDG7T0R/2 show less	Web Spam Hacking Bad Web Bot
🇺🇸 [email protected]	2025-10-28 01:02:35 (7 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2025-10-28T01:02:35Z	Brute-Force
🇺🇸 [email protected]	2025-10-28 00:03:36 (7 months ago)	Fail2Ban jail apache-json-scanners detected activity on 2025-10-28T00:03:36Z	Brute-Force
🇺🇸 TPI-Abuse	2025-05-11 03:31:41 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 140.235.0.209 (pojpwzmibnwb.ramenpride.com): 1 ... show more (mod_security) mod_security (id:225170) triggered by 140.235.0.209 (pojpwzmibnwb.ramenpride.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 10 23:31:36.697333 2025] [security2:error] [pid 3360061:tid 3360061] [client 140.235.0.209:48747] [client 140.235.0.209] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|apbb.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "apbb.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aCAaGKeL3W2Nxj40fln6pgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 185.245.184.230

🇨🇳 123.13.41.128

🇳🇱 188.166.68.252

🇰🇿 185.233.3.95

🇷🇺 185.208.195.210

🇬🇧 185.183.103.121

🇲🇾 183.171.4.138

🇸🇪 138.124.71.25

🇵🇭 126.209.47.76

🇹🇼 49.216.120.60

🇸🇬 43.98.194.213

🇺🇸 20.46.228.84

🇦🇿 5.191.135.160

🇺🇸 195.184.76.204

🇺🇸 192.3.218.12

🇧🇷 177.152.143.101

🇫🇮 147.185.133.179

🇮🇳 122.187.226.71

🇸🇬 118.26.111.107

🇵🇭 112.209.19.11