JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.229.223

216.26.229.223 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 15%: ?

15%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.229.223

Whois 216.26.229.223

IP Abuse Reports for 216.26.229.223:

This IP address has been reported a total of 26 times from 14 distinct sources. 216.26.229.223 was first reported on September 26th 2025, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 relianoid.com	2026-05-08 16:30:06 (4 weeks ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇨🇳 ThreatBook.io	2026-05-02 23:45:54 (1 month ago)	ThreatBook Intelligence: http_proxy,Spam more details on https://threatbook.io/ip/216.26.229.223 202 ... show more ThreatBook Intelligence: http_proxy,Spam more details on https://threatbook.io/ip/216.26.229.223 2026-05-02 02:14:16 / 2026-05-02 02:14:18 / show less	Web App Attack
🇱🇻 garmtech.com	2026-04-14 01:04:01 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 04-04.216.26.229.223.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 04-04.216.26.229.223.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
Anonymous	2026-04-09 11:53:20 (1 month ago)	Forum/form spam	Web Spam
🇺🇸 cyfordtechnologies.com	2026-03-29 15:55:08 (2 months ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
Anonymous	2026-02-21 23:50:02 (3 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2026-01-06 18:02:50 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.223 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 06 13:02:46.411174 2026] [security2:error] [pid 3033556:tid 3033556] [client 216.26.229.223:19379] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blacktieokc.com"] [uri "/.env"] [unique_id "aV1ORockPxA7ar2vjwBtPQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 10:21:43 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.223 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 05:21:35.901349 2025] [security2:error] [pid 7150:tid 7150] [client 216.26.229.223:30975] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lazymanvegan.com"] [uri "/.env"] [unique_id "aVOnr1R45Qqd9VD2v9U2hgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:38:33 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.223 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:38:27.317829 2025] [security2:error] [pid 25677:tid 25677] [client 216.26.229.223:43215] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dreamingofatlantis.com"] [uri "/.env"] [unique_id "aVIh4x4-eXGJA73N2OWX6gAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-29 05:34:36 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇵🇱 sefinek.net	2025-12-26 20:41:04 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 relianoid.com	2025-12-24 22:26:21 (5 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇱🇻 garmtech.com	2025-12-20 03:01:40 (5 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 05-01.216.26.229.223.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 05-01.216.26.229.223.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇬🇧 relianoid.com	2025-11-30 18:56:23 (6 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇵🇱 sefinek.net	2025-11-23 12:09:52 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.151

🇮🇷 2.180.235.94

🇬🇧 2a02:4780:a:1835:0:1b8e:d447:1

🇳🇱 195.178.110.31

🇮🇶 185.166.25.150

🇭🇰 139.198.113.29

🇻🇳 113.161.248.156

🇮🇳 68.233.116.124

🇳🇱 45.148.10.217

🇺🇸 44.204.27.202

🇺🇸 216.180.246.28

🇲🇽 186.96.151.198

🇻🇳 123.21.207.253

🇻🇳 123.20.153.94

🇫🇷 80.124.54.14

🇫🇷 46.105.252.11

🇬🇧 18.175.212.92

🇮🇳 167.71.239.213

🇩🇪 165.227.129.77

🇺🇸 165.227.120.82