JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.230.153

216.26.230.153 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 3%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.230.153

Whois 216.26.230.153

IP Abuse Reports for 216.26.230.153:

This IP address has been reported a total of 30 times from 12 distinct sources. 216.26.230.153 was first reported on September 27th 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-23 03:47:11 (5 days ago)	Web App Attack	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (3 months ago)	"DDoS against public endpoint"	DDoS Attack
🇪🇸 Gem	2026-02-13 23:19:51 (4 months ago)	Unauthorized web scan.	Web App Attack
🇬🇧 Axel	2026-02-09 20:49:28 (4 months ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /api/.env	Hacking SQL Injection Web App Attack
🇺🇸 fbarela	2026-01-24 22:00:13 (5 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-01-02 22:06:25 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 02 17:06:17.848728 2026] [security2:error] [pid 31703:tid 31703] [client 216.26.230.153:50057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "customdatasolutions.net.pjvcds.com"] [uri "/.git/HEAD"] [unique_id "aVhBWYEPADPAomgx652jLgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 11:22:25 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 06:22:20.891010 2025] [security2:error] [pid 23871:tid 23871] [client 216.26.230.153:17571] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "celiaconaway.com"] [uri "/.git/HEAD"] [unique_id "aVJkbC0EPmN_E4l5SaLmhwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:56:41 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:56:35.314286 2025] [security2:error] [pid 29093:tid 29093] [client 216.26.230.153:40725] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davesastro.com"] [uri "/.git/HEAD"] [unique_id "aVJCQxCHtRmBGP5DWbGADAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:40:55 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:40:51.203364 2025] [security2:error] [pid 24580:tid 24580] [client 216.26.230.153:53429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alizakarp.com"] [uri "/.env"] [unique_id "aVI-kwQMCYzmdoXtqUdYOgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:44:50 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:44:42.047860 2025] [security2:error] [pid 14410:tid 14410] [client 216.26.230.153:50815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "guitarinfoplace.com"] [uri "/.env"] [unique_id "aVIjWsoBuItTTLlhHxDtGwAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-29 05:45:12 (5 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-29 05:40:12 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:40:08.198629 2025] [security2:error] [pid 8649:tid 8649] [client 216.26.230.153:26631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "limpiezadevidriosyoficinas.com"] [uri "/.svn/wc.db"] [unique_id "aVIUOAFJ5l6Mz0UvzU_7_AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:10:29 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:10:24.813748 2025] [security2:error] [pid 18819:tid 18819] [client 216.26.230.153:31045] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crr-construction.com"] [uri "/.svn/wc.db"] [unique_id "aVINQB9AsTMZf1fJfQY-VwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 03:22:53 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.230.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:22:48.968521 2025] [security2:error] [pid 11969:tid 11969] [client 216.26.230.153:31851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "slave-aureus.com"] [uri "/.svn/wc.db"] [unique_id "aVH0CARBEwjobP4mZc1jrAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-23 18:35:12 (6 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇴🇲 2a02:2908:4400:183a:b70c:d0c7:349e:3342

🇨🇳 183.230.155.13

🇩🇪 162.55.96.252

🇩🇪 138.68.95.109

🇵🇰 119.152.102.54

🇭🇰 103.97.179.24

🇫🇷 85.217.140.47

🇺🇸 68.154.36.223

🇺🇸 66.132.195.113

🇨🇳 61.52.120.150

🇯🇵 43.128.242.233

🇺🇸 23.94.102.136

🇺🇸 216.73.217.36

🇯🇴 176.29.209.109

🇲🇾 118.100.119.171

🇺🇸 67.85.146.216

🇬🇧 35.203.211.45

🇹🇭 1.10.195.171

🇧🇷 205.210.31.219

🇨🇷 190.112.222.28