JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.229.13

216.26.229.13 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.229.13

Whois 216.26.229.13

IP Abuse Reports for 216.26.229.13:

This IP address has been reported a total of 32 times from 16 distinct sources. 216.26.229.13 was first reported on September 28th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-27 03:09:57 (1 week ago)	Malicious crawler or aggressive scraper probe \| (Magento Site) (Botnet activity attributed to: Angar ... show more Malicious crawler or aggressive scraper probe \| (Magento Site) (Botnet activity attributed to: Angara Technologies Group / mikhail-smirnov-79830322) show less	Web App Attack
🇺🇸 webgobe	2026-05-17 13:43:41 (2 weeks ago)	wew-Joomla User : try to access forms...	Hacking
🇬🇧 Steve	2026-05-10 06:12:45 (3 weeks ago)	Repeated attempts against wordpress site	Brute-Force Web App Attack
Anonymous	2026-03-28 21:38:58 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-03-05 23:31:51 (2 months ago)	Forum/form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:46 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇹 VHosting	2025-12-24 03:50:12 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-03 00:03:49 (6 months ago)	(mod_security) mod_security (id:210740) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210740) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 19:03:39.311470 2025] [security2:error] [pid 23235:tid 23235] [client 216.26.229.13:54435] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy\|\|oliverhardy.com\|F\|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "oliverhardy.com"] [uri "/modules.php"] [unique_id "aS9-W_Yo7zv8Y3PS0SQQMAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:57:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:57:40.266742 2025] [security2:error] [pid 22805:tid 22805] [client 216.26.229.13:34541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.paul4taxes.com"] [uri "/.svn/wc.db"] [unique_id "aSbrNAoXvpcLyB2fNXA7PQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:21:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:21:05.209019 2025] [security2:error] [pid 12457:tid 12457] [client 216.26.229.13:36565] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.primecomputer.net"] [uri "/.env"] [unique_id "aSa4cUYAIw5HwEHzlJBnVQAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:33:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:32:48.671777 2025] [security2:error] [pid 15267:tid 15267] [client 216.26.229.13:44261] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.microbikinitop.com"] [uri "/.git/HEAD"] [unique_id "aSaRAHaAE-T7nupVvZ2-DwAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:14:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:13:50.363385 2025] [security2:error] [pid 3517265:tid 3517265] [client 216.26.229.13:29233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pagewideprinting.computersraleigh.com"] [uri "/.env"] [unique_id "aSQTvtU6Cfo16qSjkNPhHwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:31:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:31:22.764882 2025] [security2:error] [pid 12102:tid 12118] [client 216.26.229.13:39309] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.minutosrobados.com.emehache.net"] [uri "/.git/HEAD"] [unique_id "aSQJyvW9q1mxetu5lC-OfwAAAIw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:01:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:01:25.291215 2025] [security2:error] [pid 9362:tid 9362] [client 216.26.229.13:32227] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.photosatthebeach.com"] [uri "/.svn/wc.db"] [unique_id "aSQCxTOC9fs93DUDMgk4GQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:13:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:13:09.280856 2025] [security2:error] [pid 22916:tid 22916] [client 216.26.229.13:53597] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.xtrl.com"] [uri "/.env"] [unique_id "aSPpZekwx0dCk6eAhgSQVwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.90.244.22

🇧🇷 205.210.31.251

🇯🇵 162.158.118.251

🇸🇬 101.100.194.199

🇫🇷 93.23.16.67

🇳🇱 77.163.243.114

🇺🇸 64.94.159.223

🇺🇸 54.221.171.167

🇨🇳 223.93.189.211

🇭🇰 152.32.252.233

🇩🇪 116.203.204.171

🇺🇸 64.94.159.227

🇺🇸 52.180.145.88

🇸🇬 43.133.61.254

🇺🇦 37.221.143.22

🇺🇸 2a04:c603:409:93:9999::136

🇨🇳 221.11.51.28

🇺🇸 185.180.141.50

🇨🇳 182.242.217.4

🇨🇳 171.120.31.225