JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.230.160

216.26.230.160 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.230.160

Whois 216.26.230.160

IP Abuse Reports for 216.26.230.160:

This IP address has been reported a total of 27 times from 15 distinct sources. 216.26.230.160 was first reported on September 28th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cyfordtechnologies.com	2026-03-24 17:53:48 (3 months ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
Anonymous	2026-03-23 08:52:27 (3 months ago)	Forum/form spam	Web Spam
🇫🇷 mrcrassi	2026-01-23 02:21:28 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (POST meth ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (POST method) Endpoint: /wp-login.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 Edg/115.0.1901.203 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 ISPLtd	2025-12-20 07:37:40 (6 months ago)	Dec 20 03:37:37 216.26.230.160 TCP SPT=53445 DPT=2083 SYN Dec 20 03:37:38 216.26.230.160 TCP SPT=534 ... show more Dec 20 03:37:37 216.26.230.160 TCP SPT=53445 DPT=2083 SYN Dec 20 03:37:38 216.26.230.160 TCP SPT=53445 DPT=2083 SYN Dec 20 03:37:39 216.26.230.160 TCP SPT=53445 DPT=2083 ... show less	Port Scan
🇬🇧 openstrike.co.uk	2025-12-11 09:16:30 (6 months ago)	9 packets to port 2083	Port Scan
Anonymous	2025-12-11 02:04:21 (6 months ago)	botnet	DDoS Attack
🇨🇭 backslash	2025-12-08 01:05:04 (6 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-24 09:47:19 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:47:12.313419 2025] [security2:error] [pid 25914:tid 25914] [client 216.26.230.160:31213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "loriarsenault.com.arsenaultartistmanagement.com"] [uri "/.git/HEAD"] [unique_id "aSQpoO8oUCh3Fsh1WfIwmAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:09:53 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:09:44.979604 2025] [security2:error] [pid 4637:tid 4637] [client 216.26.230.160:56707] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bikiniadvice.com"] [uri "/.git/HEAD"] [unique_id "aSQg2INXUdaZMm_BSOBargAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 kumiko	2025-11-24 09:08:03 (7 months ago)	[2025-11-24 11:08:02] Probing for dotfiles "GET /.svn/wc.db HTTP/1.1" 301	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:52:06 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:51:57.892569 2025] [security2:error] [pid 29747:tid 29747] [client 216.26.230.160:16029] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.trhs70.com"] [uri "/.env"] [unique_id "aSQcrS-SZrNGhlHe3anjdAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:42:59 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:42:51.421916 2025] [security2:error] [pid 13414:tid 13414] [client 216.26.230.160:34147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.oceanrich.biz"] [uri "/.env"] [unique_id "aSPwW7Vs6u9fFTCL_gO47gAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:53:14 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:53:02.079541 2025] [security2:error] [pid 9714:tid 9714] [client 216.26.230.160:42459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.streamlinenz.com"] [uri "/.env"] [unique_id "aSPkrqcBREOJJtiw8i0RqwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:21:52 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:21:35.773675 2025] [security2:error] [pid 3285515:tid 3285515] [client 216.26.230.160:49809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.rodeeinsurance.com"] [uri "/.env"] [unique_id "aSPdTx0DdfFJgqjC_10ZVgAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:29:26 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:29:19.727102 2025] [security2:error] [pid 18558:tid 18558] [client 216.26.230.160:15635] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.amrtactical.com"] [uri "/.svn/wc.db"] [unique_id "aSPRD_KBI1-sR7FaF2w6RQAAABg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a01:4f8:150:13a5::100:3d

🇺🇸 205.210.31.14

🇨🇳 183.236.130.182

🇺🇸 172.56.162.162

🇺🇸 3.236.186.67

🇺🇸 3.236.156.9

🇫🇷 170.168.241.207

🇹🇼 114.34.106.146

🇳🇱 45.156.87.127

🇨🇳 39.104.50.26

🇺🇸 32.197.166.114

🇺🇸 3.235.249.26

🇺🇸 3.235.247.158

🇺🇸 3.235.51.93

🇺🇸 205.210.31.104

🇺🇸 172.206.6.168

🇺🇸 143.42.0.97

🇸🇪 130.49.79.205

🇨🇳 111.9.47.89

🇵🇱 95.214.53.157