JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.225.99

216.26.225.99 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.225.99

Whois 216.26.225.99

IP Abuse Reports for 216.26.225.99:

This IP address has been reported a total of 30 times from 14 distinct sources. 216.26.225.99 was first reported on September 28th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cyfordtechnologies.com	2026-05-02 13:53:56 (1 month ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
🇺🇸 cyfordtechnologies.com	2026-03-24 19:35:07 (2 months ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
Anonymous	2026-03-16 12:01:21 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-02-13 16:31:09 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
Anonymous	2026-01-30 04:54:49 (4 months ago)	Forum/form spam	Web Spam
🇫🇮 Shaik Sai Meera	2026-01-07 17:40:06 (5 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2026-01-07 15:08:06 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 10:07:59.329952 2026] [security2:error] [pid 3044:tid 3044] [client 216.26.225.99:32917] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tek-front.com"] [uri "/.svn/wc.db"] [unique_id "aV52z0AJMsVtIkbHFZMzawAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 19:45:23 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 14:45:18.774026 2025] [security2:error] [pid 29690:tid 29690] [client 216.26.225.99:9643] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ic1surplus.com"] [uri "/.svn/wc.db"] [unique_id "aVQrzv1M9fUMXCfAJdPKDgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:45:46 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:45:41.192412 2025] [security2:error] [pid 7910:tid 7910] [client 216.26.225.99:55099] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ekur-art.com"] [uri "/.env"] [unique_id "aVIVhb46RtO8KnWekWLzNwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 03:33:07 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:33:03.433223 2025] [security2:error] [pid 4336:tid 4336] [client 216.26.225.99:45471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maunakeavista.com"] [uri "/.svn/wc.db"] [unique_id "aVH2b_JnEcnCSwOjdVHAzAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-12-29 03:09:51 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇹 VHosting	2025-12-23 16:20:26 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-14 14:09:42 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-26 11:57:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:57:40.995601 2025] [security2:error] [pid 1575:tid 1575] [client 216.26.225.99:58313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.totalhomecarebvi.com"] [uri "/.git/HEAD"] [unique_id "aSbrNKeBLaxTDZ8HyjYIEgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:44:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.225.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:44:17.811817 2025] [security2:error] [pid 3048:tid 3048] [client 216.26.225.99:35449] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.alessiosilvestrin.com"] [uri "/.svn/wc.db"] [unique_id "aSbaAfMg8YNX1YlGfUGcKAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.149.212

🇺🇸 2604:a880:400:d1:0:4:8c09:2001

🇧🇪 198.235.24.217

🇲🇽 187.249.60.130

🇺🇸 162.216.149.51

🇨🇳 113.195.163.224

🇳🇱 91.92.241.106

🇺🇸 66.132.186.199

🇩🇪 47.91.65.144

🇩🇪 46.202.156.115

🇺🇸 40.124.175.251

🇺🇸 20.65.195.62

🇺🇸 18.97.5.31

🇷🇴 2.57.121.112

🇺🇸 216.25.89.92

🇭🇰 165.154.61.184

🇻🇳 152.32.250.188

🇺🇸 135.237.125.143

🇨🇳 120.78.9.93

🇨🇳 113.57.185.161