AbuseIPDB » 216.40.75.155
216.40.75.155
This IP was reported 6 times. Confidence of
Abuse
is 16% : ?
ISP
PureKernel LLC
Usage Type
Fixed Line ISP
ASN
AS213954
Domain Name
purekernel.net
Country
๐บ๐ธ
United States of America
City
Edina, Minnesota
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 216.40.75.155 :
This IP address has been reported a total of
6
times from
5 distinct
sources.
216.40.75.155 was first reported on
February 5th 2026 , and the most recent report was
1 month ago
Old Reports:
The most recent abuse report for this IP address is from
1 month ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-05-01 06:06:03
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 216.40.75.155 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.40.75.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 01 02:05:58.014584 2026] [security2:error] [pid 6392:tid 6392] [client 216.40.75.155:28471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sguard.co"] [uri "/.env"] [unique_id "afRCxuAlw1Gqzw-BRWwwqwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-04-29 16:27:47
(1 month ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 216.40.75.155 (FI/Finland/-): 1 in th ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 216.40.75.155 (FI/Finland/-): 1 in the last 3600 secs (0-195)
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-04-29 06:15:58
(1 month ago)
(mod_security) mod_security (id:210730) triggered by 216.40.75.155 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 216.40.75.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 02:15:50.641923 2026] [security2:error] [pid 32761:tid 365] [client 216.40.75.155:43977] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||stoborough.aafm.us|F|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "stoborough.aafm.us"] [uri "/s3cmd.ini"] [unique_id "afGiFlgFz2D-cE7TzMOJLwAAAYE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Tripwire
2026-04-29 04:12:13
(1 month ago)
Scanning for exploits - /.aws/credentials
Hacking
Web App Attack
๐ณ๐ฑ
jjnxpct
2026-04-27 03:49:35
(1 month ago)
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ...
show more
Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /s3cmd.ini (Rule ID: 920440) - URL file extension is restricted by policy
show less
Web App Attack
SQL Injection
Hacking
๐ฆ๐บ
screwlooseit.com.au
2026-02-05 02:56:00
(4 months ago)
Blocked by CSF 13 firewall - Rule: WPLOGIN
US/United States/-
Web App Attack
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: