JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.2.146

140.235.2.146 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.2.146

Whois 140.235.2.146

IP Abuse Reports for 140.235.2.146:

This IP address has been reported a total of 8 times from 5 distinct sources. 140.235.2.146 was first reported on August 27th 2025, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-06 19:43:28 (4 weeks ago)	"POST /xmlrpc.php HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 07:54:56 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 140.235.2.146 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 140.235.2.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 02:54:45.079085 2026] [security2:error] [pid 27275:tid 27275] [client 140.235.2.146:44315] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|brainstormer.soy\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "brainstormer.soy"] [uri "/wp-json/wp/v2/users"] [unique_id "aZlkxWy4bkvJnas8aeO26AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 06:46:08 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 140.235.2.146 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 140.235.2.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 01:46:00.741587 2026] [security2:error] [pid 29637:tid 29637] [client 140.235.2.146:65377] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bigheartskitchen.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bigheartskitchen.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZlUqDqWInEWhDL2fxptkwAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 03:40:39 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 140.235.2.146 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 140.235.2.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 22:40:29.855659 2026] [security2:error] [pid 18011:tid 18011] [client 140.235.2.146:24967] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ardath.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ardath.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aZkpLTdRXAgazp-M6D2EfwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 EchoGuard	2026-02-16 13:21:52 (3 months ago)	FortiGate SSL VPN login failures	VPN IP Brute-Force
🇺🇸 fbarela	2026-02-13 19:00:05 (3 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇨🇿 lp	2025-09-10 10:54:26 (8 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 140.235.2.146 2025-09-10T11:30:12+02: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 140.235.2.146 2025-09-10T11:30:12+02:00 vpn Access-Reject 'printmaster' station: 140.235.2.146 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇨🇿 lp	2025-08-27 21:23:34 (9 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 140.235.2.146 2025-08-27T22:59:14+02: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 140.235.2.146 2025-08-27T22:59:14+02:00 vpn Access-Reject 'tereasa' station: 140.235.2.146 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.112

🇫🇮 147.185.133.181

🇺🇸 137.184.159.183

🇷🇴 80.94.92.184

🇳🇱 45.148.10.240

🇺🇸 40.124.174.248

🇨🇦 3.99.224.12

🇲🇽 200.77.172.159

🇺🇸 198.58.117.211

🇲🇽 187.190.35.163

🇳🇱 185.226.197.33

🇮🇳 182.95.217.202

🇨🇳 124.205.0.66

🇱🇹 45.227.254.170

🇬🇧 45.74.0.237

🇰🇷 43.201.75.163

🇸🇬 18.143.107.196

🇨🇳 8.152.209.0

🇺🇸 5.78.205.169

🇱🇻 2400:cb00:151:1000:9409:2e9d:3e85:641f