AbuseIPDB » 140.235.0.71
140.235.0.71
This IP was reported 7 times. Confidence of
Abuse
is 0% : ?
ISP
DirectBackup LLC
Usage Type
Data Center/Web Hosting/Transit
ASN
AS26548
Domain Name
directbackup.co
Country
๐บ๐ธ
United States of America
City
Seattle, Washington
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 140.235.0.71 :
This IP address has been reported a total of
7
times from
6 distinct
sources.
140.235.0.71 was first reported on
January 4th 2026 , and the most recent report was
2 months ago
Old Reports:
The most recent abuse report for this IP address is from
2 months ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฌ๐ง
Bytemark
2026-03-22 10:47:51
(2 months ago)
140.235.0.71 - - [22/Mar/2026:10:47:47 +0000] "GET /wp-login.php HTTP/1.1" 301 5132 "https://www.goo ...
show more
140.235.0.71 - - [22/Mar/2026:10:47:47 +0000] "GET /wp-login.php HTTP/1.1" 301 5132 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
140.235.0.71 - - [22/Mar/2026:10:47:49 +0000] "GET /wp-login.php HTTP/1.1" 404 4929 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
140.235.0.71 - - [22/Mar/2026:10:47:50 +0000] "GET /wp-login.php HTTP/1.1" 301 5132 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36"
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-14 10:09:23
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 140.235.0.71 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 140.235.0.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 06:09:12.604436 2026] [security2:error] [pid 6629:tid 6629] [client 140.235.0.71:17099] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||vitalitywebb.com|F|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Churchill 4440/Thumbs.db"] [unique_id "abUzyDqfXhN59dOwlECHUAAAAAg"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Churchill%204440/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐ฉ
Burayot
2026-03-12 00:08:31
(2 months ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.235.0.71 (US/United States/-): ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.235.0.71 (US/United States/-): 2 in the last 3600 secs
show less
Web App Attack
๐ง๐ช
voormedia
2026-03-11 14:55:21
(2 months ago)
Accessed trap at '/wp-login.php'
Web App Attack
๐จ๐ญ
backslash
2026-03-11 14:21:06
(2 months ago)
block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE
Bad Web Bot
๐จ๐ญ
backslash
2026-01-12 08:30:21
(4 months ago)
block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE
Bad Web Bot
2026-01-04 23:26:19
(5 months ago)
This IP was involved in a brute force and password spray attack.
Brute-Force
Web App Attack
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: