JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.231.80

216.26.231.80 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 13%: ?

13%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.231.80

Whois 216.26.231.80

IP Abuse Reports for 216.26.231.80:

This IP address has been reported a total of 31 times from 15 distinct sources. 216.26.231.80 was first reported on September 27th 2025, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 bescared	2026-05-09 23:09:47 (4 weeks ago)	F2B - Malicious activity detected. URL Probing. -8ff06ede-	Hacking Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-05-07 02:05:17 (1 month ago)	Excessive 404/403 errors	Brute-Force
Anonymous	2026-04-24 19:44:03 (1 month ago)	Forum/form spam	Web Spam
Anonymous	2026-03-22 05:54:47 (2 months ago)	Forum/form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-11-30 13:09:49 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-29 01:43:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 20:43:30.790571 2025] [security2:error] [pid 30586:tid 30586] [client 216.26.231.80:60317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abu-dhabi-boat-registration.com"] [uri "/.env.local"] [unique_id "aSpPwl9qJKAflhBka3lhRgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-29 00:22:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 19:22:41.961472 2025] [security2:error] [pid 3317:tid 3381] [client 216.26.231.80:40341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abney.info"] [uri "/wp-config.php.old"] [unique_id "aSo80UO9PUWM1wMBvU227AAAAQY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 16:08:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 11:08:20.617877 2025] [security2:error] [pid 21630:tid 21630] [client 216.26.231.80:41473] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.txt" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "a1laha.com"] [uri "/wp-config.txt"] [unique_id "aSnI9JgEvFe-Ccz8y_zmUwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-11-25 23:04:34 (6 months ago)	Auto-ban: >3000 req/min op 2025-11-25	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-11-25 06:07:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:07:20.979526 2025] [security2:error] [pid 891076:tid 891076] [client 216.26.231.80:40963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.chrischamberlain.com"] [uri "/.git/HEAD"] [unique_id "aSVHmPEv6ymkzfl3egFY-AAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:23:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:23:29.210289 2025] [security2:error] [pid 31580:tid 31580] [client 216.26.231.80:30697] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.whysong.net"] [uri "/.git/HEAD"] [unique_id "aSUvQdWMUmc5ckwWaghktgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:10:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:10:20.127545 2025] [security2:error] [pid 29521:tid 29521] [client 216.26.231.80:39895] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.computergeek.us"] [uri "/.env"] [unique_id "aSUeHL0WgRc8xzlIC6IrrgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:06:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:06:19.180780 2025] [security2:error] [pid 28827:tid 28892] [client 216.26.231.80:59977] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.alred.net"] [uri "/.git/HEAD"] [unique_id "aSUBC_bnrbvsbZk6Ob5EgAAAAIU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 23:59:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 18:59:14.380565 2025] [security2:error] [pid 1789:tid 1789] [client 216.26.231.80:49519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.exresearch.com"] [uri "/.svn/wc.db"] [unique_id "aSTxUm415U5sfDKX6TACkwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:29:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.231.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:29:22.678125 2025] [security2:error] [pid 2220:tid 2220] [client 216.26.231.80:15935] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.islanublarproperties.thinksite.net"] [uri "/.svn/wc.db"] [unique_id "aSQlctbQxQjHTx7eFLj-yQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 125.23.183.18

🇨🇳 117.50.130.134

🇺🇸 66.132.172.200

🇮🇳 203.122.7.122

🇺🇸 172.172.196.177

🇰🇷 121.131.220.143

🇮🇳 103.104.127.49

🇳🇴 89.162.127.89

🇮🇳 59.93.107.172

🇧🇪 34.22.143.172

🇺🇸 206.189.230.70

🇿🇦 196.50.199.51

🇧🇷 191.9.125.199

🇮🇶 185.166.25.150

🇺🇾 167.60.41.15

🇭🇰 150.5.169.138

🇨🇳 58.247.254.207

🇨🇳 58.23.78.222

🇲🇾 49.125.201.72

🇳🇱 45.148.10.147