JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.3.231

140.235.3.231 was found in our database!

This IP was reported 2 times. Confidence of Abuse is 2%: ?

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.3.231

Whois 140.235.3.231

IP Abuse Reports for 140.235.3.231:

This IP address has been reported a total of 2 times from 1 distinct source. 140.235.3.231 was first reported on March 24th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-17 14:21:54 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 140.235.3.231 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 140.235.3.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 10:21:45.770423 2026] [security2:error] [pid 32171:tid 32171] [client 140.235.3.231:10001] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|babylontravelone.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "babylontravelone.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agnO-cctgVlzB_wZcPlGZQAAADs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-24 10:53:19 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 140.235.3.231 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 140.235.3.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 24 06:52:56.835087 2026] [security2:error] [pid 21829:tid 21829] [client 140.235.3.231:20137] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.csm-dtc.com"] [uri "/wp-config.php.2"] [unique_id "acJtCM0KsO_Iukxpst9_PwAAACA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 2 of 2 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.181.108.167

🇺🇸 157.230.15.107

🇫🇮 147.185.133.133

🇩🇪 144.31.80.14

🇺🇸 66.132.186.218

🇫🇮 46.8.64.51

🇧🇷 200.108.174.4

🇬🇧 193.163.125.12

🇲🇽 187.136.39.253

🇺🇸 172.253.192.152

🇦🇷 170.155.12.7

🇮🇩 163.7.3.154

🇺🇸 162.216.149.57

🇺🇸 146.88.241.75

🇮🇩 103.148.100.146

🇱🇹 45.227.254.170

🇳🇱 45.148.10.157

🇳🇱 45.142.193.177

🇬🇧 35.203.210.34

🇺🇸 20.12.240.9