JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.230.231

216.26.230.231 was found in our database!

This IP was reported 49 times. Confidence of Abuse is 55%: ?

55%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.230.231

Whois 216.26.230.231

IP Abuse Reports for 216.26.230.231:

This IP address has been reported a total of 49 times from 22 distinct sources. 216.26.230.231 was first reported on September 27th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-20 05:06:12 (1 day ago)	Web App Attack	Web App Attack
🇲🇽 octageeks.com	2026-06-20 04:23:37 (1 day ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇫🇷 ELYAZ	2026-06-19 14:43:54 (2 days ago)	(y4) Failed scan -byebye- from 216.26.230.231 (US/United States/-): (CF_ENABLE)	Hacking
🇲🇽 octageeks.com	2026-06-19 04:14:51 (2 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇩🇪 FeG Deutschland	2026-06-17 10:35:05 (4 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 ELYAZ	2026-06-17 09:43:06 (4 days ago)	(y4) Failed scan -byebye- from 216.26.230.231 (US/United States/-): (CF_ENABLE)	Hacking
🇫🇷 Sklurk	2026-06-17 00:47:37 (4 days ago)	Web App Attack	Web App Attack
🇫🇷 pm33	2026-06-16 19:36:35 (4 days ago)	Wordpress login attempts	Brute-Force
🇺🇸 lostswordfish.com	2026-06-16 18:56:04 (4 days ago)	Wordfence waf block on 1105merrystreet	Web App Attack
🇬🇷 setupgr	2026-06-15 22:14:30 (5 days ago)	(mod_security) mod_security (id:900001) triggered by 216.26.230.231: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:900001) triggered by 216.26.230.231: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Tue Jun 16 01:14:25.808777 2026] [security2:error] [pid 1917012:tid 1917147] [client 216.26.230.231:62191] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.ions.gr"] [severity "CRITICAL"] [tag "security"] [hostname "mail.ions.gr"] [uri "/wp-login.php"] [unique_id "ajB5QUCXHuxGK7C8F7o8KQAAAFA"], referer: https://mail.ions.gr/wp-login.php show less	Port Scan
🇩🇪 todix	2026-06-14 19:30:00 (6 days ago)	Web App Attack Exploid from 216.26.230.231	Web App Attack
🇬🇷 setupgr	2026-06-13 04:11:18 (1 week ago)	(mod_security) mod_security (id:900001) triggered by 216.26.230.231: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:900001) triggered by 216.26.230.231: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 07:11:17.881995 2026] [security2:error] [pid 617818:tid 617850] [client 216.26.230.231:26411] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.asteriassantorini.com"] [severity "CRITICAL"] [tag "security"] [hostname "mail.asteriassantorini.com"] [uri "/wp-login.php"] [unique_id "aizYZbW1jJCSQWbpQzaaIQAAAEI"], referer: https://mail.asteriassantorini.com/wp-login.php show less	Port Scan
🇬🇷 setupgr	2026-06-12 14:31:13 (1 week ago)	(mod_security) mod_security (id:900001) triggered by 216.26.230.231: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:900001) triggered by 216.26.230.231: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 12 17:31:10.609821 2026] [security2:error] [pid 326673:tid 326853] [client 216.26.230.231:45461] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.doityourself.gr"] [severity "CRITICAL"] [tag "security"] [hostname "mail.doityourself.gr"] [uri "/wp-login.php"] [unique_id "aiwYLo3XoGur1n4mJeRM2gAAAZA"], referer: https://mail.doityourself.gr/wp-login.php show less	Port Scan
🇮🇩 zam	2026-06-11 20:08:17 (1 week ago)	216.26.230.231 - - [11/Jun/2026:20:07:52 +0000] "POST /wp-login.php HTTP/1.1" 301 277	Web App Attack
🇦🇺 HJ5Ss4Ju	2026-06-10 03:10:27 (1 week ago)	Blocked by Wordfence (SID 6)	Web App Attack

Showing 1 to 15 of 49 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 219.151.190.164

🇨🇳 119.134.47.179

10.10.11.1

🇧🇷 200.196.40.149

🇩🇪 185.242.3.173

🇹🇼 111.70.14.135

🇷🇴 92.118.39.62

🇳🇱 45.142.193.164

🇺🇸 45.33.14.5

🇨🇳 14.212.135.67

🇬🇧 2a06:4880:6000::7e

🇺🇸 207.90.244.3

🇧🇪 198.235.24.213

🇩🇪 195.201.16.70

🇨🇳 183.212.13.95

🇺🇸 143.110.239.2

🇹🇭 106.0.165.219

🇨🇳 101.126.4.215

🇬🇧 89.34.96.151

🇺🇸 66.132.172.114