JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.1.147

140.235.1.147 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 15%: ?

15%

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.1.147

Whois 140.235.1.147

IP Abuse Reports for 140.235.1.147:

This IP address has been reported a total of 22 times from 15 distinct sources. 140.235.1.147 was first reported on April 30th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-17 04:00:26 (1 month ago)	XMLRPC BRUTEFORCE - HTTP (Request)	Hacking
🇩🇪 F242	2026-05-15 06:33:18 (1 month ago)	Wordpress Login or XMLRPC abuse	Web App Attack
Anonymous	2026-05-02 14:49:49 (1 month ago)	Aggressive web scan	Web App Attack
🇬🇧 Oakley	2026-04-24 04:55:31 (1 month ago)	(mod_security) mod_security (id:949110) triggered by 140.235.1.147 (US/United States/-): 5 in the la ... show more (mod_security) mod_security (id:949110) triggered by 140.235.1.147 (US/United States/-): 5 in the last 900 secs show less	Web App Attack Hacking
🇪🇸 el-brujo	2026-04-22 14:28:44 (2 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: warzone.elhacker.net userAgent: Mozi ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: warzone.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:144.0) Gecko/20100101 Firefox/144.0 Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-04-22T14:28:44Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇩🇪 MusicLibrary	2026-04-05 03:22:53 (2 months ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇩🇪 MusicLibrary	2026-03-25 14:51:16 (2 months ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇧🇪 voormedia	2026-03-24 16:28:07 (2 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇧🇪 voormedia	2026-03-21 06:50:48 (3 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇩🇪 MusicLibrary	2026-03-20 12:27:47 (3 months ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇮🇩 BPS-StatisticsIndonesia	2026-03-15 21:18:29 (3 months ago)	XML RPC Scan Activities: "2026-03-16T04:18:29.703+07:00" "/xmlrpc.php" "140.235.1.147" "AppleWebKit/ ... show more XML RPC Scan Activities: "2026-03-16T04:18:29.703+07:00" "/xmlrpc.php" "140.235.1.147" "AppleWebKit/532.32 (KHTML, like Gecko111)" show less	Web App Attack Brute-Force
🇪🇸 el-brujo	2026-03-04 08:18:49 (3 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWe ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: AppleWebKit/537.37 (KHTML, like Gecko111) Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-03-04T08:18:49Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2026-02-24 12:10:47 (3 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: foro.elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:145.0) Gecko/20100101 Firefox/145.0 Action: managed_challenge Source: firewallManaged ASN Description: PUREVOLTAGE-INC - PureVoltage Hosting Inc. Country: US Method: POST Timestamp: 2026-02-24T12:10:47Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 02:54:41 (4 months ago)	(mod_security) mod_security (id:210350) triggered by 140.235.1.147 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 140.235.1.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 21:54:28.079335 2026] [security2:error] [pid 30512:tid 30512] [client 140.235.1.147:46993] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|coalminer.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "coalminer.com"] [uri "/"] [unique_id "aZpv5AjNQrQUIFh17FG_6AAAAAM"], referer: https://www.facebook.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-02-20 11:18:12 (4 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:400:d1:0:4:9e96:4001

🇺🇸 188.241.177.236

🇨🇦 4.204.184.210

🇳🇱 176.65.139.218

🇺🇸 165.154.172.10

🇺🇸 162.216.149.221

🇨🇳 120.229.104.218

🇰🇷 119.207.63.208

🇧🇷 118.26.105.116

🇺🇸 100.48.9.57

🇺🇸 66.132.224.232

🇨🇳 14.103.117.85

🇰🇷 1.250.67.190

🇮🇩 2404:c0:c202:e615:c5c4:56c5:e197:418b

🇨🇳 218.70.9.114

🇺🇸 216.25.89.86

🇺🇬 196.0.117.10

🇳🇱 193.176.31.205

🇩🇪 193.23.220.17

🇭🇰 152.32.189.59