JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.1.57

140.235.1.57 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.1.57

Whois 140.235.1.57

IP Abuse Reports for 140.235.1.57:

This IP address has been reported a total of 10 times from 7 distinct sources. 140.235.1.57 was first reported on May 14th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 sefinek.net	2026-04-14 09:05:19 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: /genshin-stella-mod \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12.5; rv:114.0) Gecko/20100101 Firefox/114.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-01-26 10:00:00 (4 months ago)	Vpn Brute Force	Brute-Force Bad Web Bot
🇵🇱 sefinek.net	2026-01-23 16:48:45 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1264.71 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇪🇸 el-brujo	2025-12-23 05:10:00 (5 months ago)	DDoS Attack Layer 7	DDoS Attack
🇪🇸 el-brujo	2025-12-18 04:44:24 (5 months ago)	Cloudflare WAF: Request Path: /ptbt_apdos Request Query: Host: elhacker.net userAgent: Mozilla/5.0 ... show more Cloudflare WAF: Request Path: /ptbt_apdos Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: PUREVOLTAGE-INC Country: US Method: GET Timestamp: 2025-12-18T04:44:24Z ruleId: 12b9aecf1f6245b29d7e842bf35a42a0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇨🇭 Zeprax	2025-12-17 19:43:38 (5 months ago)	Layer 7 Flood Detected	DDoS Attack
🇪🇸 el-brujo	2025-12-17 15:47:08 (5 months ago)	Cloudflare WAF: Request Path: /ptbttest Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (W ... show more Cloudflare WAF: Request Path: /ptbttest Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: PUREVOLTAGE-INC Country: US Method: GET Timestamp: 2025-12-17T15:47:08Z ruleId: 12b9aecf1f6245b29d7e842bf35a42a0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-11 19:18:10 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-09-13 03:28:21 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 140.235.1.57 (140-235-1-57.cloudairone.com): 1 ... show more (mod_security) mod_security (id:210350) triggered by 140.235.1.57 (140-235-1-57.cloudairone.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 12 23:28:16.648308 2025] [security2:error] [pid 7486:tid 7534] [client 140.235.1.57:9203] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|skillcert.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "skillcert.org"] [uri "/"] [unique_id "aMTk0CXRHamUyzSmEN95RwAAAQw"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-05-14 05:29:22 (1 year ago)	WP probing for vulnerabilities	Hacking Exploited Host

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 2a02:4780:a:490:0:3129:ee4f:1

🇺🇸 2604:a880:400:d1:0:4:8bf1:a001

🇧🇷 209.14.88.118

🇺🇸 154.83.197.102

🇱🇹 81.30.98.144

🇫🇮 37.27.6.236

🇺🇸 2602:80d:1007::c5

🇩🇪 213.209.159.56

🇩🇪 147.45.199.80

🇸🇬 139.59.100.37

🇺🇸 138.197.36.15

🇻🇳 118.70.178.158

🇫🇷 91.196.152.165

🇲🇾 47.254.200.103

🇺🇸 45.33.94.76

🇺🇸 3.145.25.51

🇩🇪 85.208.139.110

🇫🇷 72.60.93.205

🇺🇸 65.49.1.71

🇰🇷 59.26.193.177