AbuseIPDB » 216.246.106.229
216.246.106.229 was found in our database!
This IP was reported 7 times. Confidence of
Abuse
is 3% : ?
ISP
DEFT.COM
Usage Type
Data Center/Web Hosting/Transit
ASN
AS20853
Domain Name
summithq.com
Country
๐ต๐ฑ
Poland
City
Warsaw, Mazovia
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 216.246.106.229 :
This IP address has been reported a total of
7
times from
4 distinct
sources.
216.246.106.229 was first reported on
May 28th 2025 , and the most recent report was
1 week ago .
Old Reports:
The most recent abuse report for this IP address is from
1 week ago
. It is possible that this IP is no longer involved in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-07-02 03:54:42
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 216.246.106.229 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 216.246.106.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:54:37.535777 2026] [security2:error] [pid 16218:tid 16448] [client 216.246.106.229:37881] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kettlehill.com"] [uri "/.env"] [unique_id "akXg_fz4SJtzqZlunI-UaQAAAco"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
madaello
2026-03-06 16:10:44
(4 months ago)
[Fri Mar 06 17:10:44.644237 2026] [ssl:error] [pid 2109943:tid 2109943] [client 216.246.106.229:4857 ...
show more
[Fri Mar 06 17:10:44.644237 2026] [ssl:error] [pid 2109943:tid 2109943] [client 216.246.106.229:48573] AH02032: Hostname www.imperatrice.to.it provided via SNI and hostname 93.55.83.202 provided via HTTP have no compatible SSL setup for policy 'secure'
...
show less
Brute-Force
๐ฉ๐ช
ps-center
2025-10-12 21:38:06
(8 months ago)
SS1: Web Attack GET /%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e/etc/passwd
Web Spam
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-08-05 21:58:26
(11 months ago)
(mod_security) mod_security (id:210730) triggered by 216.246.106.229 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 216.246.106.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 05 17:58:16.975764 2025] [security2:error] [pid 29710:tid 29710] [client 216.246.106.229:48839] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||nbcnewsradio.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "nbcnewsradio.com"] [uri "/admin/errors.log"] [unique_id "aJJ-eHHa_AUlGaVTEHFZOAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-07-01 07:37:31
(1 year ago)
(mod_security) mod_security (id:210730) triggered by 216.246.106.229 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 216.246.106.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 01 03:37:25.303944 2025] [security2:error] [pid 32047:tid 32118] [client 216.246.106.229:36645] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.staging.kettlehill.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.staging.kettlehill.com"] [uri "/application/logs/default.log"] [unique_id "aGOQNQF1tdoO2im1K3V-mwAAAIk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-06-06 02:00:10
(1 year ago)
| Common web attack.
Hacking
SQL Injection
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-05-28 19:04:04
(1 year ago)
(mod_security) mod_security (id:212750) triggered by 216.246.106.229 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:212750) triggered by 216.246.106.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 28 15:03:57.452640 2025] [security2:error] [pid 1751237:tid 1751237] [client 216.246.106.229:48065] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\bon(?:abort|blur|change|click|dblclick|dragdrop|error|focus|keydown|keypress|keyup|load|mouse(?:down|move|out|over|up)|move|readystatechange|reset|resize|select|submit|unload)\\\\b[^a-zA-Z0-9_]{0,}?=" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "69"] [id "212750"] [rev "3"] [msg "COMODO WAF: XSS Attack Detected||www.farmers123.com|F|2"] [data "Matched Data: onload= found within REQUEST_URI: /control/stream?contentid='\\x5c\\x22><svg/onload=alert(/xss/)>"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "www.farmers123.com"] [uri "/control/stream"] [unique_id "aDdeHflGQihyNqZk5-oZRwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: