JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 155.2.215.28

155.2.215.28 was found in our database!

This IP was reported 61 times. Confidence of Abuse is 55%: ?

55%

ISP	VPN Consumer Houston, TX, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Houston, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 155.2.215.28

Whois 155.2.215.28

IP Abuse Reports for 155.2.215.28:

This IP address has been reported a total of 61 times from 29 distinct sources. 155.2.215.28 was first reported on May 24th 2025, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-07 06:02:47 (12 hours ago)	(mod_security) mod_security (id:210492) triggered by 155.2.215.28 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 155.2.215.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 02:02:39.707065 2026] [security2:error] [pid 17905:tid 17905] [client 155.2.215.28:38421] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "exners.com"] [uri "/wp-content/wp-config.php"] [unique_id "aiUJf-I940vk6Knlgps-mgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-07 05:21:27 (13 hours ago)	Restricted File Access Attempt. Matched phrase "config.php" at REQUEST_FILENAME. (930130-201)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 10:33:49 (1 day ago)	(mod_security) mod_security (id:949110) triggered by 155.2.215.28 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:949110) triggered by 155.2.215.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 06:33:45.450447 2026] [security2:error] [pid 26110:tid 26110] [client 155.2.215.28:57963] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "exorex.com"] [uri "/wp-content/wp-config.php"] [unique_id "aiP3iVlEiu5YOm16QqhwuwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 22:05:09 (1 day ago)	Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=6	Hacking
🇫🇷 Octopuce	2026-06-05 13:06:26 (2 days ago)	Aggressive web search of vulnerable pages: /log.php /wp-content/plugins/ /wp-admin/js/widgets/maint/ ... show more Aggressive web search of vulnerable pages: /log.php /wp-content/plugins/ /wp-admin/js/widgets/maint/ /simple.php /ab.php /wp-admin/images/admin ... show less	Web App Attack
🇫🇷 masterguru	2026-06-05 08:16:36 (2 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-193) show less	Bad Web Bot
🇬🇧 consul.to	2026-06-05 07:28:51 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 FeG Deutschland	2026-05-26 16:30:22 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇦🇺 screwlooseit.com.au	2026-05-21 20:56:16 (2 weeks ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN US/United States/-	Web App Attack
🇫🇷 masterguru	2026-05-13 22:26:59 (3 weeks ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-201) show less	Bad Web Bot
🇫🇮 YF	2026-05-13 16:05:46 (3 weeks ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇫🇷 Octopuce	2026-05-05 19:21:24 (1 month ago)	Aggressive web search of vulnerable pages: /wp-includes/js/tinymce/plugins/fullscreen/about.php /New ... show more Aggressive web search of vulnerable pages: /wp-includes/js/tinymce/plugins/fullscreen/about.php /NewFile.php /wp-content/uploads/index.php /err ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-05-01 17:47:44 (1 month ago)	155.2.215.28 - - [01/May/2026:20:47:43 +0300] "GET /wp-content/edit-wolf.php HTTP/1.1" 404 710 "-" " ... show more 155.2.215.28 - - [01/May/2026:20:47:43 +0300] "GET /wp-content/edit-wolf.php HTTP/1.1" 404 710 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-05-01 14:17:29 (1 month ago)	155.2.215.28 - - [01/May/2026:17:17:29 +0300] "GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1 ... show more 155.2.215.28 - - [01/May/2026:17:17:29 +0300] "GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1" 404 713 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; rv:11.0) like Gecko" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-05-01 10:19:53 (1 month ago)	155.2.215.28 - - [01/May/2026:13:19:50 +0300] "GET /wp-content/ HTTP/1.1" 404 706 "-" "Mozilla/5.0 ( ... show more 155.2.215.28 - - [01/May/2026:13:19:50 +0300] "GET /wp-content/ HTTP/1.1" 404 706 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.110 Safari/537.36" 155.2.215.28 - - [01/May/2026:13:19:51 +0300] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 404 705 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36" ... show less	Web App Attack

Showing 1 to 15 of 61 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 202.8.43.111

🇺🇸 172.203.134.70

🇺🇸 157.245.81.16

🇹🇷 185.233.245.252

🇺🇸 168.100.149.90

🇺🇸 107.172.157.247

🇺🇸 34.150.150.94

🇮🇳 34.14.161.134

🇫🇮 185.148.3.161

🇧🇷 177.130.110.182

🇨🇳 124.236.16.163

🇳🇱 77.83.39.241

🇺🇸 72.253.251.7

🇮🇩 69.5.23.222

🇮🇩 202.148.31.118

🇳🇱 195.178.110.199

🇵🇭 136.158.79.9

🇺🇸 64.227.18.56

🇨🇳 36.133.130.103

🇺🇸 152.32.233.36