JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.3.240

140.235.3.240 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 12%: ?

12%

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.3.240

Whois 140.235.3.240

IP Abuse Reports for 140.235.3.240:

This IP address has been reported a total of 14 times from 9 distinct sources. 140.235.3.240 was first reported on December 1st 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-03 09:00:43 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 140.235.3.240 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 140.235.3.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 05:00:33.095535 2026] [security2:error] [pid 23688:tid 23688] [client 140.235.3.240:20805] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Churchill II Recliner/Double Fudge/originals/Thumbs.db"] [unique_id "ah_tMcV1Jf7k2_PLmh6O7gAAAAU"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Churchill%20II%20Recliner/Double%20Fudge/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 HandyTreff.de	2026-05-07 05:09:41 (1 month ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -33.761 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -33.761 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.15.2 S show less	Web App Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-16 02:36:50 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 140.235.3.240 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 140.235.3.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 22:36:42.853343 2026] [security2:error] [pid 2316962:tid 2316962] [client 140.235.3.240:33603] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Hudson II/Vermont Bark/Loveseat/Thumbs.db"] [unique_id "aeBLOkOhTvVo8pv5HAq27wAAAAc"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Hudson%20II/Vermont%20Bark/Loveseat/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-03-13 08:40:23 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-02-25 16:23:14 (3 months ago)	Unauthorized VPN Login Attempt	Brute-Force Web App Attack
Anonymous	2026-02-19 19:43:18 (3 months ago)	GlobalProtect Password Spraying	Brute-Force
🇨🇭 backslash	2026-02-04 02:30:21 (4 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
Anonymous	2026-01-21 13:51:00 (4 months ago)	Brute force on VPN	Brute-Force Bad Web Bot
Anonymous	2026-01-04 23:28:22 (5 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇩🇰 RhQM	2025-12-29 04:20:56 (5 months ago)		Bad Web Bot Exploited Host Web App Attack
🇵🇱 sefinek.net	2025-12-12 07:03:10 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 HandyTreff.de	2025-12-11 08:42:40 (5 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -16.317 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -16.317 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.4945.1 show less	Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-12-09 16:39:33 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇭 backslash	2025-12-01 10:05:14 (6 months ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 209.97.180.8

🇩🇪 207.154.212.47

🇳🇱 185.156.73.233

🇨🇳 180.153.236.132

🇺🇸 165.227.220.147

🇮🇹 151.60.73.23

🇺🇸 91.230.168.88

🇷🇴 80.94.92.171

🇲🇾 72.62.197.100

🇧🇷 45.205.1.246

🇨🇴 45.65.233.18

🇸🇬 8.219.166.162

🇺🇸 2001:470:1:c84::237

🇸🇩 197.254.238.254

🇳🇱 195.178.110.30

🇷🇺 188.127.251.8

🇮🇱 185.114.205.65

🇺🇸 172.203.149.63

🇩🇪 138.197.186.16

🇺🇸 104.196.43.90