JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.0.45

140.235.0.45 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 11%: ?

11%

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.0.45

Whois 140.235.0.45

IP Abuse Reports for 140.235.0.45:

This IP address has been reported a total of 6 times from 5 distinct sources. 140.235.0.45 was first reported on August 18th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-04-30 04:56:05 (1 month ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 140.235.0.45 (US/United States/-): 1 ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 140.235.0.45 (US/United States/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 TPI-Abuse	2026-04-28 08:39:13 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 140.235.0.45 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 140.235.0.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 04:39:03.019134 2026] [security2:error] [pid 22267:tid 22267] [client 140.235.0.45:11333] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|solcargomiami.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "solcargomiami.com"] [uri "/s3cmd.ini"] [unique_id "afByJ1FPXfTIicnzsx8zdQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-28 06:33:53 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 140.235.0.45 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 140.235.0.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 02:33:46.795220 2026] [security2:error] [pid 4135:tid 4135] [client 140.235.0.45:61559] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.alejandrogorsse.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.alejandrogorsse.com"] [uri "/s3cmd.ini"] [unique_id "afBUygZMFqVuh8YafB70aQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Carsten	2026-04-27 09:51:11 (1 month ago)	GET [s3cmd.ini]	Port Scan
🇺🇸 octageeks.com	2025-11-05 05:07:36 (7 months ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇩🇪 CELOS-SOC	2025-08-18 20:30:08 (10 months ago)	Multiple Unauthorized SSLVPN Login Attempts	Hacking Brute-Force

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.236

🇮🇳 182.95.111.170

🇳🇱 176.65.139.253

🇫🇮 147.185.133.111

🇨🇳 113.123.147.107

🇮🇹 2a00:1450:4025:1803::12b

🇺🇸 54.151.95.177

🇺🇸 38.148.249.2

🇬🇧 35.203.211.90

🇮🇪 4.207.145.86

🇧🇷 189.15.10.179

🇹🇷 188.59.182.213

🇭🇰 152.32.214.226

🇨🇳 117.88.237.3

🇮🇳 103.213.194.250

🇨🇳 101.26.28.140

🇺🇸 100.7.57.181

🇺🇿 82.215.109.75

🇺🇸 74.192.225.229

🇰🇷 59.24.133.197