JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.238.57

216.26.238.57 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.238.57

Whois 216.26.238.57

IP Abuse Reports for 216.26.238.57:

This IP address has been reported a total of 35 times from 13 distinct sources. 216.26.238.57 was first reported on September 27th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-24 13:48:52 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-02-16 03:23:00 (3 months ago)	Forum/form spam	Web Spam
Anonymous	2026-01-19 20:47:38 (4 months ago)	Forum/form spam	Web Spam
🇬🇧 relianoid.com	2026-01-17 08:09:16 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2025-11-27 15:05:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 10:05:25.943437 2025] [security2:error] [pid 24749:tid 24749] [client 216.26.238.57:36821] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.baileylabovitz.com"] [uri "/.svn/wc.db"] [unique_id "aShotdEGRbjw1Q8EOMQhlQAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 oonux.net	2025-11-27 04:18:02 (6 months ago)	RouterOS: Scanning detected TCP 216.26.238.57:27241 > x.x.x.x:80	Port Scan
🇺🇸 TPI-Abuse	2025-11-26 20:16:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 15:16:27.132913 2025] [security2:error] [pid 18267:tid 18267] [client 216.26.238.57:56185] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.usaenquirer.com"] [uri "/.env"] [unique_id "aSdgGwxQuxWhcg4tABy9UgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 17:13:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 12:13:05.186384 2025] [security2:error] [pid 3148978:tid 3148978] [client 216.26.238.57:54347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.steveyett.com"] [uri "/.git/HEAD"] [unique_id "aSc1IQ8NXC-TzPH82nu2PQAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 14:08:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 09:08:15.620736 2025] [security2:error] [pid 1755:tid 1755] [client 216.26.238.57:9265] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.heinsohn.com"] [uri "/.git/HEAD"] [unique_id "aScJz_BkCQ7A6BI9UC8foQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:05:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:05:44.572036 2025] [security2:error] [pid 1816811:tid 1816942] [client 216.26.238.57:55671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.aeaus.com"] [uri "/.svn/wc.db"] [unique_id "aSVVSO3xOpFSh0WflcuLKAAAAEQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:16:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:16:34.507714 2025] [security2:error] [pid 22469:tid 22469] [client 216.26.238.57:22191] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.federallog.com"] [uri "/.svn/wc.db"] [unique_id "aSVJwrK_ZtAhp7uBAs9_2gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:55:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:55:49.535151 2025] [security2:error] [pid 12418:tid 12418] [client 216.26.238.57:54539] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.mariedjones.com"] [uri "/.svn/wc.db"] [unique_id "aSUoxVL6k0Y-QjYBUSgIGgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:37:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:37:50.819816 2025] [security2:error] [pid 17027:tid 17027] [client 216.26.238.57:52673] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.kneupper.com"] [uri "/.git/HEAD"] [unique_id "aSUkjvcF7FajCppPm7mAtQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-25 03:27:15 (6 months ago)	Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ... show more Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:09:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.238.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:09:49.683204 2025] [security2:error] [pid 5415:tid 5415] [client 216.26.238.57:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.hcoahawaii.org"] [uri "/.svn/wc.db"] [unique_id "aSUd_RFKlxtjpAbkKJLfTQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 144.48.243.18

🇬🇧 35.203.211.62

🇬🇧 193.163.125.164

🇨🇳 180.76.202.69

🇦🇷 170.233.29.157

🇷🇴 92.118.39.236

🇩🇪 43.228.157.10

🇯🇵 43.133.186.13

🇰🇷 222.117.176.58

🇰🇷 222.112.12.140

🇰🇷 222.108.109.37

🇨🇳 117.34.85.185

🇨🇳 115.190.171.196

🇩🇪 102.220.160.160

🇬🇧 35.203.210.136

🇰🇷 222.104.76.94

🇧🇪 198.235.24.241

🇮🇶 185.166.25.150

🇷🇺 178.46.128.225

🇨🇳 117.158.160.42