JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.226.115

216.26.226.115 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.226.115

Whois 216.26.226.115

IP Abuse Reports for 216.26.226.115:

This IP address has been reported a total of 27 times from 17 distinct sources. 216.26.226.115 was first reported on September 28th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-03-12 17:25:11 (2 months ago)	Form spam	Web Spam
🇳🇱 maxxsense	2026-01-05 22:57:59 (4 months ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 216.26.226.115 (US/Unite ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 216.26.226.115 (US/United States/-) show less	Port Scan
🇺🇸 TPI-Abuse	2025-12-25 19:41:04 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.226.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.226.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 25 14:40:59.481681 2025] [security2:error] [pid 23168:tid 23168] [client 216.26.226.115:12205] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "applemaccomputerconsulting.com"] [uri "/wp-config.php"] [unique_id "aU2TS6Y1r6Irw6SCIrkQdwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Mangelot Hosting	2025-12-24 12:16:22 (5 months ago)	(modsecurity) srv101 ModSecurity 216.26.226.115 (US/United States/-): 5 in the last 3600 secs; Ports ... show more (modsecurity) srv101 ModSecurity 216.26.226.115 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇮🇹 VHosting	2025-12-15 14:45:07 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
Anonymous	2025-12-01 23:53:08 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-24 08:38:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.226.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.226.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:38:28.059385 2025] [security2:error] [pid 13191:tid 13191] [client 216.26.226.115:58243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.stainedglass.ab.ca"] [uri "/.git/HEAD"] [unique_id "aSQZhH9kkR7XOguwe_6xxgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:21:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.226.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.226.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:21:40.038710 2025] [security2:error] [pid 13943:tid 14023] [client 216.26.226.115:34793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.selfhelpbook.org"] [uri "/.git/HEAD"] [unique_id "aSQHhOpgfj-qx9CvqmSUCAAAAgM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:01:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.226.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.226.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:01:42.082746 2025] [security2:error] [pid 29507:tid 29507] [client 216.26.226.115:41125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.daniellasinn.com"] [uri "/.env"] [unique_id "aSP0xiS0UtkApFYHtQc9eAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:34:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.226.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.226.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:34:22.431045 2025] [security2:error] [pid 21904:tid 21904] [client 216.26.226.115:47177] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "test.garnetcreek.com"] [uri "/.svn/wc.db"] [unique_id "aSPuXiVYpLdHWVVX-ZeeAwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 02:16:28 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇩🇪 DEV-DNS	2025-11-04 05:03:29 (7 months ago)	(wordpress) Failed wordpress login from 216.26.226.115 (US/United States/Virginia/Ashburn/-/[redacte ... show more (wordpress) Failed wordpress login from 216.26.226.115 (US/United States/Virginia/Ashburn/-/[redacted]) show less	Brute-Force
Anonymous	2025-11-02 19:50:14 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:01:50	Port Scan Brute-Force Exploited Host Web App Attack
🇫🇷 applemooz	2025-11-01 12:17:58 (7 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇩🇪 Marc	2025-10-29 21:56:05 (7 months ago)		Brute-Force

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 176.65.132.149

🇧🇷 162.241.60.159

🇨🇳 112.86.225.38

🇳🇱 45.148.10.183

🇳🇱 45.148.10.152

🇳🇱 45.94.31.222

🇮🇹 45.91.20.241

🇮🇹 45.91.20.84

🇳🇱 31.42.176.142

🇬🇧 191.101.59.86

🇺🇸 135.233.112.103

🇩🇪 130.12.181.98

🇳🇱 107.189.24.77

🇺🇸 50.84.211.204

🇬🇧 213.166.84.34

🇲🇽 186.96.145.241

🇺🇸 162.216.150.52

🇸🇬 103.250.11.176

🇺🇸 34.168.118.142

🇺🇸 18.97.26.47