JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.229.137

216.26.229.137 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 15%: ?

15%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.229.137

Whois 216.26.229.137

IP Abuse Reports for 216.26.229.137:

This IP address has been reported a total of 25 times from 14 distinct sources. 216.26.229.137 was first reported on September 27th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-20 04:30:26 (1 week ago)	Web App Attack	Web App Attack
🇦🇺 oncord	2026-05-22 04:41:38 (1 month ago)	Form spam	Web Spam
🇱🇻 garmtech.com	2026-05-20 13:44:50 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 16-44.216.26.229.137.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 16-44.216.26.229.137.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇦🇺 oncord	2026-05-19 04:35:51 (1 month ago)	Form spam	Web Spam
🇬🇧 relianoid.com	2026-01-26 16:39:35 (5 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:58:24 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-12-09 13:03:36 (6 months ago)	botnet	DDoS Attack
🇦🇺 MAGIC	2025-12-07 00:03:10 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 11:10:33 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:10:26.061838 2025] [security2:error] [pid 32083:tid 32101] [client 216.26.229.137:48973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.millicanjones.com"] [uri "/.env"] [unique_id "aSbgIkswSQfOe5OvGk0xdAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:59:35 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:59:28.321164 2025] [security2:error] [pid 19667:tid 19667] [client 216.26.229.137:55627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.distilledwater.net"] [uri "/.git/HEAD"] [unique_id "aSaXQKgZeR-ylUyrACtzHwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:10:37 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:10:33.670292 2025] [security2:error] [pid 15582:tid 15582] [client 216.26.229.137:57175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tmaxnews.macjr.com"] [uri "/.git/HEAD"] [unique_id "aSZvqX9HZmW7yiowT3MkfgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:05:40 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:05:36.515793 2025] [security2:error] [pid 3386863:tid 3386863] [client 216.26.229.137:16443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.elevese.com"] [uri "/.env"] [unique_id "aSP1sA3FzOBvdCwuuNI3tQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-13 08:23:26 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 216.26.229.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 216.26.229.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 03:23:20.305840 2025] [security2:error] [pid 19229:tid 19345] [client 216.26.229.137:26867] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mirawaresolutions.michaelrandon.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mirawaresolutions.michaelrandon.com"] [uri "/s3cmd.ini"] [unique_id "aRWVeCPhmgW_coRadKpuRgAAAg0"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-30 12:45:28 (7 months ago)	WP Admin Scan Activities	Web App Attack
🇨🇦 wil.com	2025-10-29 05:05:40 (7 months ago)	GlobalProtect login attempts with user llanders.	VPN IP Brute-Force

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 141.11.100.205

🇨🇳 101.96.195.102

🇺🇸 193.36.222.9

🇬🇧 152.32.198.215

🇯🇵 118.194.228.101

🇨🇳 111.113.89.8

🇮🇩 103.164.57.37

🇫🇷 51.158.37.5

🇨🇳 1.83.125.132

🇩🇪 2a05:d014:fb0:c800:339e:8fcb:59e2:4bb7

🇨🇳 211.97.69.110

🇺🇸 165.154.206.204

🇹🇷 94.154.43.158

🇫🇷 79.135.105.20

🇹🇷 78.168.50.188

🇺🇸 47.252.31.213

🇯🇵 43.133.194.186

🇭🇰 199.45.154.155

🇬🇧 185.216.145.184

🇮🇳 125.19.229.10