JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.230.52

216.26.230.52 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.230.52

Whois 216.26.230.52

IP Abuse Reports for 216.26.230.52:

This IP address has been reported a total of 29 times from 16 distinct sources. 216.26.230.52 was first reported on September 4th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cyfordtechnologies.com	2026-03-25 15:08:24 (2 months ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
Anonymous	2026-02-19 16:48:34 (3 months ago)	Forum/form spam	Web Spam
🇬🇧 poundawebsiteltd	2026-02-19 02:10:13 (3 months ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 216.26.230.52 - - [19/Feb/2026:0 ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 216.26.230.52 - - [19/Feb/2026:02:10:12 +0000] GET /.env.local HTTP/1.1 403 236 - Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 show less	Web App Attack
🇺🇸 mnsf	2026-02-18 22:06:24 (3 months ago)	Too many Status 40X (11) Scanning/Probing (12)	Brute-Force Web App Attack
🇫🇷 dynamix	2026-02-18 21:14:18 (3 months ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-01-22 04:25:57 (4 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2026-01-21 10:27:49 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 05:27:41.042586 2026] [security2:error] [pid 23703:tid 23703] [client 216.26.230.52:16115] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arofish.us"] [uri "/.svn/wc.db"] [unique_id "aXCqHX3YKsUsHHTW43nEhAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2026-01-12 19:24:25 (4 months ago)	(From [email protected]) Looking for better search rankings for Stein ... show more (From [email protected]) Looking for better search rankings for Steinbergchiro Com? We provide high-impact marketing tools built to boost your online presence. We specialize in Organic Website Traffic and high-quality link building such as Web 2.0, Wiki, and Blog Comments. Our services are optimized to provide stable growth at the best prices. Get started today: https://rb.gy/t7gc5i Regards, Juanita To unsubscribe, please reply with subject: Unsubscribe !steinbergchiro.com show less	Phishing Web Spam
🇬🇧 oncord	2025-12-30 21:12:55 (5 months ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2025-12-13 10:09:51 (5 months ago)	(From [email protected]) Want to increase arizonachiropractic.com’s online ... show more (From [email protected]) Want to increase arizonachiropractic.com’s online audience? Launch today: https://rb.gy/p82gvr show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-12-04 00:28:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 19:28:00.719965 2025] [security2:error] [pid 29240:tid 29240] [client 216.26.230.52:38237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brainstormer.soy"] [uri "/.svn/wc.db"] [unique_id "aTDVkKfzRF4nPECbwNdp8wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-03 12:12:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 07:12:25.050341 2025] [security2:error] [pid 31824:tid 31824] [client 216.26.230.52:16849] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bees.properties"] [uri "/.git/HEAD"] [unique_id "aTApKfAGyTAX8Z6POcA-ZQAAADM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-12-01 13:25:39 (6 months ago)	(From [email protected]) Curious how adirondackchiropractic.com can boost traf ... show more (From [email protected]) Curious how adirondackchiropractic.com can boost traffic fast? Launch now: https://rb.gy/p82gvr show less	Phishing Web Spam
🇵🇱 sefinek.net	2025-11-17 14:40:15 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-11-17 11:19:55 (6 months ago)	\| Multiple SQL injection attempts from same source ip.(multiple servers)	Hacking SQL Injection Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.185

🇺🇸 192.178.66.83

🇳🇱 81.19.216.117

🇩🇪 69.5.169.92

🇺🇸 64.62.156.10

🇺🇸 20.163.30.205

🇬🇧 5.226.140.25

🇺🇸 205.210.31.53

🇮🇳 194.238.17.68

🇲🇽 187.140.196.75

🇸🇪 185.246.130.20

🇩🇪 165.154.138.3

🇺🇸 104.131.100.146

🇩🇪 69.5.169.45

🇺🇸 66.132.224.29

🇺🇸 65.49.20.117

🇬🇧 213.166.84.42

🇺🇸 205.210.31.38

🇵🇰 182.190.222.95

🇳🇱 172.94.9.70