JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.235.3.57

140.235.3.57 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 12%: ?

12%

ISP	DirectBackup LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	directbackup.co
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.235.3.57

Whois 140.235.3.57

IP Abuse Reports for 140.235.3.57:

This IP address has been reported a total of 7 times from 4 distinct sources. 140.235.3.57 was first reported on January 24th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-28 20:46:58 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 140.235.3.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 140.235.3.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 16:46:49.601477 2026] [security2:error] [pid 15314:tid 15314] [client 140.235.3.57:61005] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mkbcbible.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mkbcbible.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afEcudFL4vMyzAI8DA-u4QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 19:57:51 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 140.235.3.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 140.235.3.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 15:57:42.678292 2026] [security2:error] [pid 5953:tid 5953] [client 140.235.3.57:55953] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|coolcustomproducts.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "coolcustomproducts.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ae5uNhyhTTiHxku9aM-1RwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 18:56:59 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 140.235.3.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 140.235.3.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 14:56:50.314848 2026] [security2:error] [pid 20989:tid 20989] [client 140.235.3.57:35573] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|comobarbershop.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "comobarbershop.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ae5f8hwjOJ0DN_l5UYXk8wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇿🇦 Tokolosh Hunters	2026-04-26 00:17:27 (1 month ago)	AutoBlockWindow-Known bad useragent query-2026-04-26 00:17:25	Bad Web Bot
🇩🇪 BlueWire Hosting	2026-04-24 04:23:06 (1 month ago)	Bad bot ignoring robot.txt	Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-07 09:02:12 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 140.235.3.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 140.235.3.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 07 04:02:04.869945 2026] [security2:error] [pid 3262058:tid 3262058] [client 140.235.3.57:63167] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jolankagroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jolankagroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aYb_jC739caU7jSJnQs9jQAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-24 20:30:53 (4 months ago)	WordPress.REST.API.Username.Enumeration.Information.Disclosure	Hacking Bad Web Bot Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 138.197.136.18

🇺🇸 40.124.186.157

🇩🇪 240b:4005:25:5600:9be0:5941:a0b2:e493

🇧🇷 201.16.238.49

🇩🇪 194.88.98.93

🇩🇪 194.88.98.85

🇳🇱 188.64.138.89

🇲🇽 187.201.161.43

🇩🇪 176.65.132.39

🇹🇭 171.7.216.115

🇩🇪 69.5.169.69

🇨🇳 42.85.210.16

🇬🇧 37.10.113.212

🇦🇪 20.203.42.204

🇨🇳 14.103.117.91

🇬🇧 185.216.145.182

🇸🇻 179.5.178.26

🇳🇱 176.65.148.229

🇪🇬 156.197.121.208

🇲🇾 103.249.84.242