JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.231.239

216.26.231.239 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.231.239

Whois 216.26.231.239

IP Abuse Reports for 216.26.231.239:

This IP address has been reported a total of 35 times from 21 distinct sources. 216.26.231.239 was first reported on September 27th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-05 04:49:17 (1 month ago)	Banned by SPAMHAUS DROP list	DDoS Attack Hacking Bad Web Bot Web App Attack
Anonymous	2026-04-30 16:14:57 (1 month ago)	Forum/form spam	Web Spam
🇩🇪 LRob.fr	2026-03-31 21:00:09 (2 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 cyfordtechnologies.com	2026-03-29 23:03:10 (2 months ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
🇱🇻 garmtech.com	2026-03-04 02:43:25 (3 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇱🇻 garmtech.com	2026-03-04 02:43:17 (3 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
Anonymous	2026-02-23 14:46:23 (3 months ago)	wordpress-trap	Web App Attack
🇺🇸 fbarela	2026-01-25 04:00:18 (4 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
Anonymous	2026-01-15 13:20:00 (4 months ago)	Brute force attempts	Brute-Force
🇵🇱 sefinek.net	2026-01-13 02:09:49 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-28 00:59:32 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.239 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 19:59:29.534045 2025] [security2:error] [pid 15357:tid 15357] [client 216.26.231.239:34135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "circle-h-growers.com"] [uri "/.git/HEAD"] [unique_id "aVCA8cVSjpnOlKqllS8HMwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 20:56:43 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.239 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 15:56:36.759341 2025] [security2:error] [pid 25551:tid 25551] [client 216.26.231.239:12627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bikinipageone.com"] [uri "/.env"] [unique_id "aVBIBHqzKgn8JD_K8nDYGQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 jkhorvath.com	2025-12-27 20:24:35 (5 months ago)	Request for URL /.git/HEAD	Phishing Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 20:22:15 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.239 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 15:22:08.587111 2025] [security2:error] [pid 26797:tid 26797] [client 216.26.231.239:24969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boardingatthewedge.com"] [uri "/.git/HEAD"] [unique_id "aVA_8Lpe2v-aMIxmqpGs7gAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 19:40:14 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.239 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 14:40:09.823428 2025] [security2:error] [pid 17585:tid 17585] [client 216.26.231.239:54297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tractiondrive.com"] [uri "/.env"] [unique_id "aVA2Gbc5P0Z6ksIgQYg2jgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 165.154.205.128

🇺🇸 104.28.246.113

🇫🇷 91.196.152.219

🇺🇸 50.114.117.175

🇬🇧 45.82.76.115

🇺🇸 35.223.194.170

🇻🇪 201.208.188.118

🇬🇧 193.163.125.175

🇮🇹 185.43.17.171

🇨🇳 180.184.72.207

🇮🇳 123.201.214.74

🇮🇳 117.205.46.233

🇨🇳 113.137.40.250

🇺🇸 96.33.89.37

🇷🇺 92.124.135.118

🇪🇸 90.170.59.91

🇺🇸 85.208.96.202

🇩🇪 69.5.169.22

🇺🇸 20.83.167.20

🇳🇱 5.83.143.120