JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.2.22

140.235.2.22 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.2.22

Whois 140.235.2.22

IP Abuse Reports for 140.235.2.22:

This IP address has been reported a total of 9 times from 6 distinct sources. 140.235.2.22 was first reported on September 24th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-03-14 10:13:44 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 140.235.2.22 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 140.235.2.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 06:13:33.816062 2026] [security2:error] [pid 11979:tid 11979] [client 140.235.2.22:50665] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Dalton II/Thumbs.db"] [unique_id "abU0zW_wI-ioNJgamSU7xwAAAB4"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Dalton%20II/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-02-10 02:25:11 (4 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇩🇪 HandyTreff.de	2026-01-12 13:14:25 (5 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -27.874 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -27.874 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.4518.1 show less	Bad Web Bot Web App Attack
🇩🇪 HandyTreff.de	2025-12-13 08:57:06 (6 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -20.094 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -20.094 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.806.12 show less	Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-12-01 02:14:47 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇭 backslash	2025-12-01 01:25:11 (6 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇮🇩 Burayot	2025-11-07 08:40:22 (7 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.235.2.22 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.235.2.22 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2025-10-30 03:29:20 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 140.235.2.22 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 140.235.2.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 29 23:29:10.215890 2025] [security2:error] [pid 888588:tid 888588] [client 140.235.2.22:53437] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|harvestfrc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "harvestfrc.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aQLbhgcPR3fIpr7FCESvvwAAAAc"], referer: https://harvestfrc.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-09-24 11:19:34 (8 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 216.26.239.246

🇳🇱 204.76.203.231

🇺🇸 172.245.43.228

🇩🇪 167.94.145.31

🇺🇸 146.88.240.110

🇩🇪 130.12.181.227

🇨🇳 118.196.114.236

🇹🇷 78.135.73.216

🇧🇷 77.111.101.12

🇷🇺 77.37.179.158

🇺🇸 76.124.3.157

🇺🇸 45.3.35.55

🇺🇸 45.3.32.210

🇹🇳 41.62.137.54

🇮🇪 34.249.195.141

🇧🇪 34.78.71.110

🇺🇸 20.65.194.47

🇨🇳 220.167.232.40

🇺🇸 209.50.173.222

🇺🇸 207.90.244.25