JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.229.182

216.26.229.182 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.229.182

Whois 216.26.229.182

IP Abuse Reports for 216.26.229.182:

This IP address has been reported a total of 18 times from 11 distinct sources. 216.26.229.182 was first reported on September 4th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 LSPCCU	2026-06-03 18:22:29 (4 days ago)	TSEC Honeypot Network report. Threat score: 77/100. Categories: Hacking. Honeypot: ssh-telnet, cowri ... show more TSEC Honeypot Network report. Threat score: 77/100. Categories: Hacking. Honeypot: ssh-telnet, cowrie. Context: 216. show less	Hacking
🇺🇸 cyfordtechnologies.com	2026-03-21 23:05:22 (2 months ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
🇬🇧 relianoid.com	2026-01-20 11:26:53 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇫🇮 Shaik Sai Meera	2026-01-13 09:00:09 (4 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-02 19:41:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 14:41:20.566895 2025] [security2:error] [pid 15497:tid 15497] [client 216.26.229.182:22875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "floridausa.com"] [uri "/.env"] [unique_id "aS9A4Mi8VFhvu_WNGrUPHgAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 15:22:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 10:22:24.720555 2025] [security2:error] [pid 22635:tid 22635] [client 216.26.229.182:19081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "candlesandwoodcrafts.com"] [uri "/.git/HEAD"] [unique_id "aS8EMC5pSnNK1tAl0-ZRCgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:28:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:28:38.107929 2025] [security2:error] [pid 8971:tid 8971] [client 216.26.229.182:59753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "patrickstrain.com"] [uri "/.svn/wc.db"] [unique_id "aS6jNqhxiP1w9FJ-9go5TAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 06:06:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 01:06:05.038663 2025] [security2:error] [pid 1944995:tid 1944995] [client 216.26.229.182:52471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dhappraisalservices.com"] [uri "/.git/HEAD"] [unique_id "aS6Bzd-jp8O4vURvZLGW7AAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:10:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:10:39.388204 2025] [security2:error] [pid 19944:tid 19944] [client 216.26.229.182:44195] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "calebdavison.com"] [uri "/.git/HEAD"] [unique_id "aS5mv-JRbtBj42jlacYw5wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 09:52:23 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇨🇦 wil.com	2025-10-18 05:17:39 (7 months ago)	GlobalProtect login attempts with user hectorb.	VPN IP Brute-Force
🇧🇪 cmbplf	2025-10-11 03:21:27 (7 months ago)	2.383 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
Anonymous	2025-10-04 22:00:34 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.04 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.04 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-02 23:30:44 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.02 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.02 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-09-30 20:48:30 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.09.30 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.09.30 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 161.35.111.220

🇬🇧 31.14.254.23

🇺🇸 209.141.41.212

🇫🇮 185.89.43.131

🇨🇳 171.37.46.155

🇺🇸 66.78.171.126

🇦🇲 45.129.185.7

🇮🇷 31.216.62.250

🇺🇸 8.231.130.79

🇹🇷 185.221.64.22

🇻🇳 180.93.172.213

🇮🇷 178.173.220.89

🇩🇪 178.105.124.73

🇮🇷 176.65.234.202

🇫🇮 172.217.37.149

🇩🇪 89.163.206.178

🇮🇷 80.191.181.7

🇦🇺 45.248.78.120

🇺🇸 44.211.69.170

🇺🇸 3.212.205.90