JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.40.74.252

216.40.74.252 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 23%: ?

23%

ISP	PureKernel LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213954
Domain Name	purekernel.net
Country	🇺🇸 United States of America
City	Louisville, Kentucky

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.40.74.252

Whois 216.40.74.252

IP Abuse Reports for 216.40.74.252:

This IP address has been reported a total of 7 times from 4 distinct sources. 216.40.74.252 was first reported on April 17th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 LotPhantom	2026-06-11 18:35:33 (2 days ago)	2026/06/11 18:35:32 [error] 594837#594837: 13274 connect() failed (111: Connection refused) while c ... show more 2026/06/11 18:35:32 [error] 594837#594837: 13274 connect() failed (111: Connection refused) while connecting to upstream, client: 216.40.74.252, server: staging-api.bridginggaps.tech, request: "GET / HTTP/1.1", upstream: "http://127.0.0.1:5000/", host: "staging-api.bridginggaps.tech" ... show less	Web App Attack
🇩🇪 Vegascosmetics	2026-05-29 05:48:04 (2 weeks ago)	Kingcopy(AI-IDS):IP is Probing for Multiple vulnerabilities WTF:Banned	Hacking Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-20 15:23:50 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 216.40.74.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.40.74.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 11:23:44.684254 2026] [security2:error] [pid 24181:tid 24181] [client 216.40.74.252:57485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "briannalls.com"] [uri "/wp-config.php.orig"] [unique_id "ag3SAAJTRV11_91aFQkszgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 13:04:02 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 216.40.74.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 216.40.74.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 09:03:57.746974 2026] [security2:error] [pid 31919:tid 31919] [client 216.40.74.252:19059] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|natickvillagerentals.com\|F\|2"] [data ".inc"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "natickvillagerentals.com"] [uri "/wp-config.inc"] [unique_id "ag2xPTHXgrrKHSGZq0qwmgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-05-18 12:03:01 (3 weeks ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-16 22:07:20 (4 weeks ago)	(mod_security) mod_security (id:210730) triggered by 216.40.74.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 216.40.74.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 16 18:07:17.516237 2026] [security2:error] [pid 24045:tid 24045] [client 216.40.74.252:40825] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Detrick/Thumbs.db"] [unique_id "agjqlVL0_GFZ-cMICFg_DQAAABs"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Detrick/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-04-17 07:51:03 (1 month ago)	block ruleset 798ECF92F12ADC636D3520C2890AF17ADEFDE3BE	Bad Web Bot

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 199.193.96.189

🇸🇬 193.37.32.65

🇮🇩 182.9.36.14

🇦🇪 153.75.90.123

🇸🇬 152.32.220.188

🇺🇸 147.185.132.137

🇻🇳 125.212.244.35

🇹🇭 110.77.137.236

🇻🇳 103.98.152.181

🇺🇸 98.159.37.117

🇷🇴 92.118.39.32

🇺🇸 66.132.172.48

🇮🇳 61.95.198.138

🇳🇱 45.148.10.183

🇩🇪 45.135.193.193

🇬🇧 35.203.210.41

🇺🇸 34.186.84.25

🇧🇪 34.140.154.167

🇺🇸 207.90.244.17

🇬🇧 195.96.139.193