JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.227.197

216.26.227.197 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.227.197

Whois 216.26.227.197

IP Abuse Reports for 216.26.227.197:

This IP address has been reported a total of 30 times from 11 distinct sources. 216.26.227.197 was first reported on September 27th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Steve	2026-03-10 05:19:02 (2 months ago)	Repeated attempts against wordpress site	Brute-Force Web App Attack
🇳🇱 i-turnradio.nl	2026-02-26 10:48:37 (3 months ago)	2026-02-26 11:48:37 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇮🇩 sockominfo	2026-02-06 20:00:09 (3 months ago)	Reported by TangerangKota-CSIRT. Status: MALICIOUS	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 15:42:34 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 10:42:27.783198 2025] [security2:error] [pid 10750:tid 10750] [client 216.26.227.197:22601] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hockey312.com"] [uri "/.git/HEAD"] [unique_id "aTmU47mYun-WRj56ra29OQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 13:04:47 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 08:04:42.948980 2025] [security2:error] [pid 3879:tid 3879] [client 216.26.227.197:31175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "skyfall-estate.com"] [uri "/.env"] [unique_id "aTgeal_Fnro_BoZi5OVcZQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 04:05:16 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 23:05:13.730052 2025] [security2:error] [pid 3592:tid 3632] [client 216.26.227.197:53871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sandiegosamband.com"] [uri "/.git/HEAD"] [unique_id "aTef-YMb7EzwYJKmDAS9yAAAAYk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 04:48:29 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 23:48:26.573323 2025] [security2:error] [pid 7029:tid 7029] [client 216.26.227.197:13221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qcyprus.com"] [uri "/.git/HEAD"] [unique_id "aTZYmuAkkO2rh3ncrwZdGwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:13:03 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:12:55.383873 2025] [security2:error] [pid 1039:tid 1065] [client 216.26.227.197:37583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "amphoracollectors.org"] [uri "/.env"] [unique_id "aTVvRyopK0qzziTSEFmMqwAAANc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2025-12-07 04:54:29 (5 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.svn/wc.db (Rule ID: 920440) - URL file extension is restricted by policy show less	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 16:23:34 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 11:23:27.799807 2025] [security2:error] [pid 30325:tid 30325] [client 216.26.227.197:50347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kiubo.net"] [uri "/.env"] [unique_id "aTRYf-325jfFS-rrs-Oc4wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:08:11 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:08:06.974549 2025] [security2:error] [pid 18365:tid 18365] [client 216.26.227.197:11033] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "celltechs.net"] [uri "/.env"] [unique_id "aTQOlo5Zjhg-yl6BQGRWjgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 08:59:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 03:59:07.647502 2025] [security2:error] [pid 2373:tid 2373] [client 216.26.227.197:39111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bellabokoremas.com"] [uri "/.svn/wc.db"] [unique_id "aTKe2-UX52eGGU2FDNY1YAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 07:06:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 02:06:08.859021 2025] [security2:error] [pid 14863:tid 14863] [client 216.26.227.197:31639] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drowninglovers.com"] [uri "/.git/HEAD"] [unique_id "aTKEYEQB6rNj0OIdh4TOBAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 05:55:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.227.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 00:55:28.537727 2025] [security2:error] [pid 18727:tid 18727] [client 216.26.227.197:9775] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dogdimension.com"] [uri "/.env"] [unique_id "aTJz0PkNXhrw3WD5RAOUaQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 21:20:52 (6 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c32::124

🇺🇸 172.59.223.105

🇵🇹 161.230.217.176

🇩🇪 130.12.181.106

🇳🇱 81.19.216.118

🇳🇱 45.148.10.151

🇳🇱 45.87.249.200

🇺🇸 38.178.190.42

🇰🇷 211.228.218.47

🇬🇧 165.154.129.151

🇳🇱 45.198.224.141

🇺🇸 45.42.88.54

🇮🇩 203.175.11.115

🇪🇸 172.110.221.82

🇺🇸 162.216.150.226

🇺🇸 147.185.132.197

🇳🇱 91.199.236.33

🇨🇳 58.209.234.84

🇺🇸 54.84.191.184

🇪🇬 41.38.217.145