JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.237.15

216.26.237.15 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.237.15

Whois 216.26.237.15

IP Abuse Reports for 216.26.237.15:

This IP address has been reported a total of 22 times from 13 distinct sources. 216.26.237.15 was first reported on September 26th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-05-06 10:08:45 (1 month ago)	Excessive 404/403 errors	Brute-Force
🇮🇩 penjaga BRIN	2026-03-23 23:58:32 (2 months ago)	SQL injection attempt	SQL Injection
Anonymous	2026-03-19 16:43:16 (2 months ago)	Forum/form spam	Web Spam
🇺🇸 cyfordtechnologies.com	2026-03-10 17:55:14 (2 months ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
🇬🇧 relianoid.com	2026-03-05 18:34:02 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇬🇧 relianoid.com	2026-01-20 11:26:23 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇫🇷 service Informatique	2025-11-27 04:00:37 (6 months ago)	GET /.svn	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:36:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:36:36.478880 2025] [security2:error] [pid 2571:tid 2571] [client 216.26.237.15:25579] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.ehrlichmedia.com"] [uri "/.svn/wc.db"] [unique_id "aSbYNF6LAr6t7li94CSb1QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-26 10:09:32 (6 months ago)	Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing ... show more Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:02:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:02:21.041583 2025] [security2:error] [pid 21247:tid 21247] [client 216.26.237.15:43629] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kdgsf.xyz"] [uri "/.env"] [unique_id "aSZtveY2yKrdtQZ8b2ZDUgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:55:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:55:18.980437 2025] [security2:error] [pid 8883:tid 8883] [client 216.26.237.15:23419] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.dmimx.com"] [uri "/.env"] [unique_id "aSZP9hr1tMIGU9xsM3ItiAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:15:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:15:03.190295 2025] [security2:error] [pid 31177:tid 31177] [client 216.26.237.15:11739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "easterbilby.net"] [uri "/.svn/wc.db"] [unique_id "aSU7V_wGffUGrwIv1PAJQAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:12:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:12:41.102705 2025] [security2:error] [pid 32252:tid 32252] [client 216.26.237.15:11843] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dmasoftlab.com"] [uri "/.git/HEAD"] [unique_id "aSUsuY1P8UPWQPQ6kLH2dgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:19:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.237.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:19:51.659399 2025] [security2:error] [pid 515:tid 515] [client 216.26.237.15:50971] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.1954topresent.com"] [uri "/.env"] [unique_id "aSPq97QZfNSuqL_6pTu7OgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-13 23:34:40 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.233

🇬🇧 193.32.209.245

🇯🇵 60.40.45.223

🇱🇹 45.227.254.170

🇬🇧 213.166.84.50

🇷🇴 193.32.162.16

🇺🇸 165.245.173.154

🇨🇳 120.48.7.234

🇸🇬 101.47.158.56

🇺🇿 89.146.67.231

🇮🇪 54.78.28.125

🇺🇸 45.131.194.93

🇨🇭 35.216.172.131

🇩🇪 185.242.3.230

🇬🇧 92.207.4.157

🇺🇦 91.221.137.230

🇫🇷 88.164.173.82

🇰🇷 222.239.251.12

🇨🇳 218.78.179.200

🇺🇸 212.1.211.241