JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.0.84

140.235.0.84 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 11%: ?

11%

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.0.84

Whois 140.235.0.84

IP Abuse Reports for 140.235.0.84:

This IP address has been reported a total of 13 times from 8 distinct sources. 140.235.0.84 was first reported on October 23rd 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-26 11:27:06 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 140.235.0.84 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 140.235.0.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 07:26:55.456420 2026] [security2:error] [pid 5170:tid 5219] [client 140.235.0.84:42485] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|adultbaja.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "adultbaja.com"] [uri "/shop.db"] [unique_id "ahWDf8eBY3fjs7-CmICIAgAAAJA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 SiliSoftware	2026-05-17 09:50:30 (3 weeks ago)	/<domain>.zip	Web App Attack
🇺🇸 TPI-Abuse	2026-05-12 16:13:12 (4 weeks ago)	(mod_security) mod_security (id:210730) triggered by 140.235.0.84 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 140.235.0.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 12:13:04.836111 2026] [security2:error] [pid 15892:tid 15892] [client 140.235.0.84:50065] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|comitedelafamille.org\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "comitedelafamille.org"] [uri "/backup_2018.db"] [unique_id "agNRkK2Uo7J6_yrZQawmKgAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2026-02-28 08:39:16 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: /genshin-stella-mod \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-01-28 01:40:54 (4 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2026.01.28 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2026.01.28 is noted in report timestamp show less	Hacking Brute-Force
🇫🇷 masterguru	2025-12-23 11:13:42 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 140.235.0.84 (US/United States/-): 1 in the la ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 140.235.0.84 (US/United States/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇵🇱 sefinek.net	2025-12-16 04:00:58 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (X11; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇱🇻 garmtech.com	2025-11-30 13:07:45 (6 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇺🇸 fbarela	2025-11-28 05:00:37 (6 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇱🇻 garmtech.com	2025-11-20 10:28:27 (6 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇨🇭 backslash	2025-11-12 01:10:35 (6 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇵🇱 sefinek.net	2025-10-29 23:19:23 (7 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇱🇻 garmtech.com	2025-10-23 10:48:22 (7 months ago)	IM360 WAF: Attempt to upload malware	Hacking

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 173.234.227.219

🇷🇴 92.118.39.62

🇱🇹 81.30.98.44

🇷🇺 37.77.150.241

🇮🇳 20.197.49.178

🇧🇩 123.49.60.158

🇺🇸 85.239.249.222

🇺🇸 66.132.186.200

🇺🇸 65.49.1.240

🇨🇳 14.103.118.190

🇧🇷 205.210.31.246

🇺🇸 193.3.53.10

🇺🇸 192.241.150.69

🇺🇸 192.3.206.66

🇮🇳 182.79.86.102

🇮🇷 85.185.251.138

🇨🇳 49.77.20.221

🇺🇸 47.42.131.93

🇳🇱 45.148.10.151

🇷🇺 5.167.67.34