JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.229.213

216.26.229.213 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.229.213

Whois 216.26.229.213

IP Abuse Reports for 216.26.229.213:

This IP address has been reported a total of 26 times from 13 distinct sources. 216.26.229.213 was first reported on September 26th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Kencang.ID	2026-02-24 03:12:52 (3 months ago)	Failed Login Attempt 2026-02-24 03:12:52 \| 216.26.229.213 \| Desktop \| Unknown \| Ashburn, Virginia, U ... show more Failed Login Attempt 2026-02-24 03:12:52 \| 216.26.229.213 \| Desktop \| Unknown \| Ashburn, Virginia, United States \| 3xK Tech GmbH \| curl/7.88.1 show less	Brute-Force FTP Brute-Force
🇺🇸 fbarela	2025-12-29 02:00:24 (5 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇮🇹 VHosting	2025-12-23 16:35:21 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-09 05:25:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 00:25:07.426367 2025] [security2:error] [pid 3591:tid 3598] [client 216.26.229.213:32109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettleofgold.com"] [uri "/.git/HEAD"] [unique_id "aTeysywyW7dRq3-kdhz3WwAAAUI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-07 21:10:37 (6 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-07 14:30:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 09:30:42.093938 2025] [security2:error] [pid 20691:tid 20691] [client 216.26.229.213:20877] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pawsandwhiskerssociety.org"] [uri "/.git/HEAD"] [unique_id "aTWPkhpp0bShCF1YxuAY6gAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 20:17:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 15:17:11.996213 2025] [security2:error] [pid 24205:tid 24229] [client 216.26.229.213:49151] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "isa-energy.net"] [uri "/.svn/wc.db"] [unique_id "aTSPR5ijrLnaO2M4e7h3MgAAAJU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 04:28:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 23:27:56.028168 2025] [security2:error] [pid 24002:tid 24002] [client 216.26.229.213:46071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "familymailboxes.com"] [uri "/.svn/wc.db"] [unique_id "aTJfTM42amzkkNNRjmDbOwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-11-30 13:09:47 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇳🇱 homeshowdomain.nl	2025-11-25 22:59:50 (6 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2025-11-24. show less	Hacking Web App Attack SSH
🇬🇧 Swiptly	2025-11-25 17:48:10 (6 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:59:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:59:08.633142 2025] [security2:error] [pid 22773:tid 22773] [client 216.26.229.213:36443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.yarbroughfamily.org"] [uri "/.git/HEAD"] [unique_id "aSVFrLL-KMqhtd0o2B9VIQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:56:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:56:32.766857 2025] [security2:error] [pid 27770:tid 27770] [client 216.26.229.213:42091] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.thehealthcontent.com"] [uri "/.svn/wc.db"] [unique_id "aSU3AMWuoM0CbMrFi58dTgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:18:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:18:36.379258 2025] [security2:error] [pid 9920:tid 9920] [client 216.26.229.213:49107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.usefulendeavors.org"] [uri "/.svn/wc.db"] [unique_id "aSUgDIqKxJ273qcLboRrWQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:42:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.229.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:42:22.899162 2025] [security2:error] [pid 5824:tid 5824] [client 216.26.229.213:40507] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.ji-technovation.com"] [uri "/.svn/wc.db"] [unique_id "aST7bl4HYE5FjRIneqSBuAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.100

🇳🇱 178.16.54.74

🇮🇳 117.250.107.180

🇩🇪 69.5.169.128

🇺🇸 64.62.197.129

🇦🇺 40.127.67.83

🇺🇸 40.76.117.226

🇺🇸 35.245.160.201

🇺🇸 3.131.24.55

🇩🇪 193.124.20.252

🇺🇸 162.216.150.204

🇨🇦 148.113.128.113

🇨🇦 142.44.225.68

🇺🇸 138.113.23.170

🇺🇸 137.184.226.118

🇨🇳 106.12.144.153

🇹🇯 91.218.162.222

🇸🇬 85.203.21.59

🇩🇪 69.5.169.135

🇬🇧 35.203.211.123