JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 195.63.26.166

195.63.26.166 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 195.63.26.166

Whois 195.63.26.166

IP Abuse Reports for 195.63.26.166:

This IP address has been reported a total of 5 times from 4 distinct sources. 195.63.26.166 was first reported on March 3rd 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 bps-statistics	2026-06-16 16:35:04 (4 days ago)	WP Login Scan Activities: "2026-06-16T23:35:04.253+07:00" "/wp-login.php" "195.63.26.166" "Mozilla/5 ... show more WP Login Scan Activities: "2026-06-16T23:35:04.253+07:00" "/wp-login.php" "195.63.26.166" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:138.0) Gecko/20100101 Firefox/138.0" show less	Web App Attack
Anonymous	2026-06-16 12:14:34 (4 days ago)	195.63.26.166 - - [16/Jun/2026:14:14:25 +0200] "GET /wp-login.php HTTP/1.1" 404 27 "http://gl-amf.fr ... show more 195.63.26.166 - - [16/Jun/2026:14:14:25 +0200] "GET /wp-login.php HTTP/1.1" 404 27 "http://gl-amf.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:138.0) Gecko/20100101 Firefox/138.0" ... show less	Web App Attack
🇫🇷 mrcrassi	2026-03-16 13:41:57 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (POST meth ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (POST method) Endpoint: /wp-login.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-14 18:48:26 (3 months ago)	(mod_security) mod_security (id:210350) triggered by 195.63.26.166 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 195.63.26.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 14:48:21.295769 2026] [security2:error] [pid 13602:tid 13602] [client 195.63.26.166:43394] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|interiorsolutions-stuart.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "interiorsolutions-stuart.com"] [uri "/wp-login.php"] [unique_id "abWtdViPUSEbha2zFSVMegAAAA0"], referer: https://interiorsolutions-stuart.com/wp-login.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-03 12:46:31 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 195.63.26.166 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 195.63.26.166 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 03 07:46:23.020251 2026] [security2:error] [pid 21955:tid 21955] [client 195.63.26.166:58466] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|digi-estudio.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "digi-estudio.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aabYH-K6C1IxC-EtIgwT6AAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.59.105.66

🇺🇸 129.146.243.24

🇭🇰 45.142.154.110

🇷🇺 5.165.150.11

🇺🇸 97.210.160.201

🇳🇱 91.92.40.204

🇺🇸 52.91.181.131

🇷🇺 46.73.96.33

🇮🇩 34.128.77.56

🇮🇩 180.245.217.69

🇦🇷 167.250.118.55

🇧🇷 131.255.217.44

🇮🇳 103.217.239.107

🇸🇬 101.47.14.46

🇺🇸 64.227.4.176

🇧🇪 34.78.29.97

🇬🇧 212.227.125.15

🇰🇪 197.248.207.139

🇺🇦 176.108.121.116

🇳🇱 176.65.139.181