JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.3.206

140.235.3.206 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 13%: ?

13%

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.3.206

Whois 140.235.3.206

IP Abuse Reports for 140.235.3.206:

This IP address has been reported a total of 8 times from 8 distinct sources. 140.235.3.206 was first reported on May 9th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-19 02:01:09 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 140.235.3.206 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 140.235.3.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 22:01:00.193915 2026] [security2:error] [pid 11276:tid 11302] [client 140.235.3.206:44905] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|emehache.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "emehache.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agvEXHMQpL2FN47EQeoteAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 inlink.ltd	2026-05-18 20:49:08 (1 month ago)	Known malicious PHP file or CMS probe	Web App Attack
🇦🇹 BerndG17	2026-05-15 11:47:00 (1 month ago)	Cart parameter fuzzing (?aaboutpagecarted=2) with internal domain as referrer – automated vulnerabil ... show more Cart parameter fuzzing (?aaboutpagecarted=2) with internal domain as referrer – automated vulnerability scanner show less	Web App Attack
🇫🇷 tilellit.pro	2026-04-01 00:43:23 (2 months ago)	Fail2Ban banned 140.235.3.206 for security violations in jail wp-armour. Log: 2026/04/01 00:43:23 [e ... show more Fail2Ban banned 140.235.3.206 for security violations in jail wp-armour. Log: 2026/04/01 00:43:23 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 140.235.3.206 \| Target: wplogin" , client: 140.235.3.206, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://espsformacion.com/wp-login.php" ... show less	Web Spam
🇮🇹 VHosting	2026-03-17 20:25:03 (3 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
Anonymous	2026-01-21 13:51:00 (4 months ago)	Brute force on VPN	Brute-Force Bad Web Bot
🇨🇭 backslash	2025-11-21 01:55:02 (6 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇳🇱 BlueWire Hosting	2025-05-09 04:10:28 (1 year ago)	Probing for application vulnerabilities	Brute-Force Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.57.200.119

🇳🇱 157.245.77.45

🇮🇳 103.230.85.44

🇨🇳 101.70.108.249

🇧🇬 78.128.112.74

🇺🇸 34.58.124.191

🇺🇸 3.87.27.156

🇺🇸 216.218.206.68

🇺🇸 205.210.31.83

🇨🇳 182.204.182.134

🇺🇸 174.34.51.179

🇩🇪 138.3.243.192

🇨🇳 121.40.210.59

🇨🇳 120.192.27.54

🇵🇰 110.37.85.16

🇧🇩 103.240.4.253

🇮🇳 103.180.212.135

🇺🇸 206.135.249.20

🇩🇪 178.27.90.142

🇺🇸 162.217.103.68