JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.228.221

216.26.228.221 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.228.221

Whois 216.26.228.221

IP Abuse Reports for 216.26.228.221:

This IP address has been reported a total of 29 times from 13 distinct sources. 216.26.228.221 was first reported on September 30th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Burayot	2026-05-13 11:14:38 (1 month ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 216.26.228.221 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 216.26.228.221 (US/United States/-): 2 in the last 3600 secs show less	Web App Attack
Anonymous	2026-04-22 09:14:33 (2 months ago)	Forum/form spam	Web Spam
🇺🇸 cyfordtechnologies.com	2026-03-10 02:13:17 (3 months ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
🇨🇭 Origon	2026-02-19 04:31:20 (4 months ago)	http-sensitive-files - IP: 216.26.228.221 - time="2026-02-19T05:31:20+01:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 216.26.228.221 - time="2026-02-19T05:31:20+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 216.26.228.221 (US/200373) : 4h ban on Ip 216.26.228.221" module=db show less	Web App Attack
🇮🇹 VHosting	2025-12-24 06:40:23 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-09 15:15:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 10:15:42.741325 2025] [security2:error] [pid 30764:tid 30764] [client 216.26.228.221:56073] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "todosconlaura.com"] [uri "/.git/HEAD"] [unique_id "aTg9HrDtaoLNNnS7Xa0RpAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:42:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:42:49.162539 2025] [security2:error] [pid 31516:tid 31516] [client 216.26.228.221:23485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cabanaconstructionandpaving.com"] [uri "/.git/HEAD"] [unique_id "aTK3KRCqHKIte8OYx1_qrwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:10:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:10:55.389208 2025] [security2:error] [pid 9986:tid 9986] [client 216.26.228.221:30207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.buenasfrecuencias.com"] [uri "/.svn/wc.db"] [unique_id "aSaZ74F65qfpp1wb_lpocgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:02:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:01:58.503304 2025] [security2:error] [pid 4973:tid 4973] [client 216.26.228.221:16685] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.batw.net"] [uri "/.git/HEAD"] [unique_id "aSZtpouhKHR7v7C7N6ZrcwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:53:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:53:41.964834 2025] [security2:error] [pid 1817001:tid 1817044] [client 216.26.228.221:42477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.charteredfinancialmanager.com"] [uri "/.env"] [unique_id "aSVEZWR1ttxeyDpsCa99GAAAAYU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:05:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:05:43.431982 2025] [security2:error] [pid 30898:tid 30898] [client 216.26.228.221:16193] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nhgrange.org"] [uri "/.git/HEAD"] [unique_id "aSUrF5KAq08gfCFqpLz5agAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 ingroscart.it	2025-11-25 03:10:58 (6 months ago)	(mod_security) mod_security triggered on hostname [redacted] 216.26.228.221 (US/United States/-)	SQL Injection
🇺🇸 TPI-Abuse	2025-11-25 00:32:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.228.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:32:11.221479 2025] [security2:error] [pid 11356:tid 11356] [client 216.26.228.221:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.helpsavepets.org"] [uri "/.env"] [unique_id "aST5CyqDc0b-L15lfa52AQAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-11-17 00:08:22 (7 months ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2025-11-16 16:29:12 (7 months ago)	(From [email protected]) The Hidden Goldmine gets people in front of 5,000,000+ buyers that pa ... show more (From [email protected]) The Hidden Goldmine gets people in front of 5,000,000+ buyers that pay over and over again all while AI takes care of all of the “work”. https://bookmarket.expert/TheHiddenGoldmine to UNSUBSCRIBE: https://bookmarket.expert/unsubscribe?domain=murphychiropractic.net Address: 108 West Street Comstock Park, MI 48721 show less	Phishing Web Spam

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 216.40.75.68

🇺🇸 172.212.174.123

🇺🇸 162.243.208.127

🇳🇱 91.92.40.237

🇩🇪 78.111.67.247

🇩🇪 69.5.169.226

🇺🇸 50.217.255.171

🇳🇱 45.148.10.141

🇭🇰 43.242.203.160

🇺🇸 20.106.187.206

🇫🇮 193.142.38.116

🇺🇸 192.178.16.96

🇫🇮 185.94.35.94

🇺🇸 185.77.220.193

🇻🇳 180.93.75.229

🇩🇪 178.17.57.222

🇩🇪 142.93.165.51

🇨🇳 114.220.238.30

🇫🇷 109.199.120.253

🇻🇳 103.200.25.198