JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.0.96

140.235.0.96 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 18%: ?

18%

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.0.96

Whois 140.235.0.96

IP Abuse Reports for 140.235.0.96:

This IP address has been reported a total of 26 times from 11 distinct sources. 140.235.0.96 was first reported on November 1st 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-26 11:19:35 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 140.235.0.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 140.235.0.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 07:19:28.907201 2026] [security2:error] [pid 24485:tid 24575] [client 140.235.0.96:63441] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|adultbaja.com\|F\|2"] [data ".com_db.sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "adultbaja.com"] [uri "/adultbaja.com_db.sql"] [unique_id "ahWBwODESrWuWucOvvSfIwAAAg0"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-05-22 20:18:00 (2 weeks ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇫🇷 tilellit.pro	2026-05-20 16:38:46 (2 weeks ago)	Fail2Ban banned 140.235.0.96 for security violations in jail wp-armour. Log: 2026/05/20 16:38:45 [er ... show more Fail2Ban banned 140.235.0.96 for security violations in jail wp-armour. Log: 2026/05/20 16:38:45 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 140.235.0.96 \| Target: wplogin" , client: 140.235.0.96, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://espsformacion.com/wp-login.php" ... show less	Web Spam
🇧🇪 voormedia	2026-04-01 19:20:18 (2 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇪🇸 el-brujo	2026-03-28 13:50:38 (2 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Chrome/ ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Chrome/92.2 Safari/532.52 Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-03-28T13:50:38Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2026-03-27 04:41:09 (2 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWe ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWebKit/536.36 (KHTML, like Gecko111) Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-03-27T04:41:09Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-03-17 21:38:26 (2 months ago)	XML RPC Scan Activities: "2026-03-18T04:38:26.071+07:00" "/xmlrpc.php" "140.235.0.96" "Chrome/91.1 S ... show more XML RPC Scan Activities: "2026-03-18T04:38:26.071+07:00" "/xmlrpc.php" "140.235.0.96" "Chrome/91.1 Safari/531.51" show less	Web App Attack Brute-Force
🇩🇪 MusicLibrary	2026-03-17 07:08:45 (2 months ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇮🇩 BPS-StatisticsIndonesia	2026-03-17 04:43:30 (2 months ago)	XML RPC Scan Activities: "2026-03-17T11:43:30.953+07:00" "/xmlrpc.php" "140.235.0.96" "AppleWebKit/5 ... show more XML RPC Scan Activities: "2026-03-17T11:43:30.953+07:00" "/xmlrpc.php" "140.235.0.96" "AppleWebKit/536.36 (KHTML, like Gecko111)" show less	Web App Attack Brute-Force
🇪🇸 el-brujo	2026-03-15 10:30:38 (2 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWe ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWebKit/533.33 (KHTML, like Gecko111) Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: GET Timestamp: 2026-03-15T10:30:38Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2026-03-14 09:28:22 (2 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWe ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWebKit/533.33 (KHTML, like Gecko111) Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: GET Timestamp: 2026-03-14T09:28:22Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-03-13 10:50:19 (2 months ago)	XML RPC Scan Activities: "2026-03-13T17:50:19.069+07:00" "/xmlrpc.php" "140.235.0.96" "Chrome/93.3 S ... show more XML RPC Scan Activities: "2026-03-13T17:50:19.069+07:00" "/xmlrpc.php" "140.235.0.96" "Chrome/93.3 Safari/533.53" show less	Web App Attack Brute-Force
🇪🇸 el-brujo	2026-03-09 06:02:06 (2 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Chrome/ ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Chrome/91.1 Safari/531.51 Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-03-09T06:02:06Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇧🇪 voormedia	2026-03-04 13:44:11 (3 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇧🇪 voormedia	2026-02-24 18:28:20 (3 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.95.232.154

🇫🇷 162.159.122.170

🇮🇳 116.73.240.74

🇸🇬 94.231.206.38

🇩🇪 43.228.157.234

🇩🇪 165.227.129.77

🇻🇳 116.99.175.117

🇪🇪 109.206.241.199

🇳🇱 107.189.27.179

🇩🇴 31.59.42.163

🇰🇷 222.236.155.146

🇺🇸 71.6.233.2

🇳🇱 45.156.128.56

🇸🇬 43.156.130.254

🇿🇦 41.56.209.5

🇺🇸 40.160.15.111

🇮🇳 2a02:4780:11:2047:0:3719:e7e6:1

🇨🇳 111.47.243.219

🇺🇸 100.29.192.89

🇮🇷 79.127.93.176