JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.0.69

140.235.0.69 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 19%: ?

19%

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.0.69

Whois 140.235.0.69

IP Abuse Reports for 140.235.0.69:

This IP address has been reported a total of 11 times from 4 distinct sources. 140.235.0.69 was first reported on October 7th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-22 15:00:29 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 11:00:22.901364 2026] [security2:error] [pid 7256:tid 7256] [client 140.235.0.69:14799] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.art.mavikalem.org"] [uri "/wp-config.php.bak"] [unique_id "ahBvhuH0NXHkAlFEMFOTTQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-05-21 10:05:37 (2 weeks ago)	Scanning/Probing (24)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 18:18:09 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 14:17:59.177305 2026] [security2:error] [pid 25605:tid 25605] [client 140.235.0.69:26817] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wild-goose.net"] [uri "/wp-config.php.dist"] [unique_id "ag3613XYVkzwzu2vRpE5HAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 16:49:22 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 12:49:13.280934 2026] [security2:error] [pid 4041:tid 4063] [client 140.235.0.69:9677] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.bak" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tomithai.plumeraproductions.com"] [uri "/wp-config.bak"] [unique_id "ag3mCVyds1s1b4JiXjmSXAAAAFE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 12:25:44 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 08:25:36.374422 2026] [security2:error] [pid 25526:tid 25526] [client 140.235.0.69:14593] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mchen-arch.com"] [uri "/wp-config.php.orig"] [unique_id "ag2oQMNrPQyKxGKd-gjjoAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 12:09:55 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 08:09:46.027813 2026] [security2:error] [pid 24623:tid 24623] [client 140.235.0.69:24267] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cmcnow.com"] [uri "/.wp-config.php.swp"] [unique_id "ag2kil_VtUxgUhC_ydC5vwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 gadix	2026-04-16 22:49:03 (1 month ago)	[17/Apr/2026:00:49:02.424147 +0200] aeFnXVjoqaL2LLRL6DF3vwAAAAg 140.235.0.69 38914 127.0.0.1 7081 [1 ... show more [17/Apr/2026:00:49:02.424147 +0200] aeFnXVjoqaL2LLRL6DF3vwAAAAg 140.235.0.69 38914 127.0.0.1 7081 [17/Apr/2026:00:49:02.758119 +0200] aeFnXrib89aD_Wq5F_9pNwAAAAA 140.235.0.69 38988 127.0.0.1 7081 [17/Apr/2026:00:49:02.990170 +0200] aeFnXsaqXiPY1wVZyiT6sQAAAAU 140.235.0.69 39004 127.0.0.1 7081 ... show less	Web App Attack
🇬🇧 Apache	2026-04-16 04:34:27 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 140.235.0.69 (US/United States/-): 5 in the las ... show more (mod_security) mod_security (id:210492) triggered by 140.235.0.69 (US/United States/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-02 04:26:39 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 02 00:26:33.041002 2025] [security2:error] [pid 11327:tid 11327] [client 140.235.0.69:30225] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|dunningtons.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "dunningtons.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQbdeeQjL8TQd2xKhE5e7gAAAAU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-01 14:00:58 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 140.235.0.69 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 10:00:50.550743 2025] [security2:error] [pid 31039:tid 31039] [client 140.235.0.69:13027] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|idahouspsa.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "idahouspsa.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQYSks_lspHfptIpUAUiGgAAAAU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-07 09:40:35 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 140.235.0.69 (140-235-0-69.cloudairone.com): 1 ... show more (mod_security) mod_security (id:225170) triggered by 140.235.0.69 (140-235-0-69.cloudairone.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 07 05:40:31.495820 2025] [security2:error] [pid 8045:tid 8045] [client 140.235.0.69:22107] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|alsdepot.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "alsdepot.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aOTgD7WXWf2_WgAABJhmiAAAAAE"], referer: https://alsdepot.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.239

🇺🇸 205.210.31.41

🇺🇸 130.131.162.156

🇬🇧 92.22.60.173

🇱🇹 81.30.98.144

🇺🇸 76.89.128.40

🇩🇪 34.107.51.223

🇰🇷 34.22.75.87

🇨🇳 1.83.125.107

🇧🇷 205.210.31.235

🇬🇵 199.101.189.149

🇹🇼 198.235.24.79

🇹🇼 198.235.24.3

🇳🇱 185.223.235.30

🇩🇪 185.193.81.127

🇧🇷 177.85.138.146

🇧🇷 152.67.39.50

🇨🇳 112.103.253.145

🇮🇩 103.133.56.8

🇳🇬 102.88.137.213