JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.233.152

216.26.233.152 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.233.152

Whois 216.26.233.152

IP Abuse Reports for 216.26.233.152:

This IP address has been reported a total of 30 times from 12 distinct sources. 216.26.233.152 was first reported on September 27th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-03-27 02:05:32 (2 months ago)	Too many Status 40X (11) Scanning/Probing (11)	Brute-Force Web App Attack
🇳🇱 e.fierstra	2026-03-27 00:14:22 (2 months ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 cyfordtechnologies.com	2026-03-23 08:47:54 (2 months ago)	High-abuse ASN prefix: 216.26. : Reported by Cyford API	Web App Attack
🇵🇱 cheatmaster.store	2026-02-25 23:26:58 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: Canada Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
🇵🇱 sefinek.net	2025-12-29 16:09:16 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 00:42:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:42:21.523863 2025] [security2:error] [pid 24195:tid 24195] [client 216.26.233.152:31577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.postermodelsworldwideinc.com"] [uri "/.env"] [unique_id "aSZM7Rj1Pf2f7KD4a8AfKQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2025-11-25 04:54:11 (6 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.aws/credentials (Rule ID: 930130) - Restricted File Access Attempt show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:28:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:28:42.624445 2025] [security2:error] [pid 28307:tid 28307] [client 216.26.233.152:44275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.mairslair.com"] [uri "/.git/HEAD"] [unique_id "aSUwesvCW7_aaGcyi-rYIAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:55:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:55:17.894954 2025] [security2:error] [pid 20976:tid 20976] [client 216.26.233.152:20713] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.quantrics.com"] [uri "/.env"] [unique_id "aSUald-deReuvsX7ZyluggAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:22:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:21:46.531321 2025] [security2:error] [pid 29007:tid 29007] [client 216.26.233.152:46791] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.agapeaccountingllc.com"] [uri "/.env"] [unique_id "aSUSuiWt6jUJDTbS5pXv6gAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:17:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:17:05.088580 2025] [security2:error] [pid 7820:tid 7820] [client 216.26.233.152:34375] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.allafricaadventures.com"] [uri "/.git/HEAD"] [unique_id "aSUDkbo2VFeECL5L26ytDgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:44:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:44:39.298260 2025] [security2:error] [pid 25680:tid 25680] [client 216.26.233.152:53499] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fromthehandofgodministry.org"] [uri "/.git/HEAD"] [unique_id "aSQpB3DDmHC3L5xGg3FEYAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:14:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:14:35.767793 2025] [security2:error] [pid 25106:tid 25151] [client 216.26.233.152:30109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.longevityworkout.com"] [uri "/.svn/wc.db"] [unique_id "aSQh-zsFdfAxnE8Jg1ZGUAAAAYY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:54:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:54:25.169086 2025] [security2:error] [pid 23979:tid 23979] [client 216.26.233.152:10619] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.amazingwelding.com"] [uri "/.git/HEAD"] [unique_id "aSQdQWDLs4YEHtNitVWJtAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:37:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:36:54.596157 2025] [security2:error] [pid 5223:tid 5245] [client 216.26.233.152:37039] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "andrewbelschner.com"] [uri "/.git/HEAD"] [unique_id "aSP9BmBLaC45odtmKAmsIAAAAFE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 195.170.200.35

🇺🇸 172.183.133.240

🇺🇸 162.216.150.124

🇹🇭 45.194.70.254

🇳🇱 45.148.10.141

🇸🇬 172.217.47.19

🇺🇸 172.182.195.33

🇺🇸 159.223.112.120

🇮🇩 157.10.109.87

🇺🇸 153.75.250.143

🇨🇳 115.190.243.99

🇨🇦 85.217.149.65

🇱🇹 81.30.98.62

🇩🇪 69.5.169.172

🇺🇸 66.132.195.27

🇲🇾 47.254.234.104

🇬🇧 31.76.15.39

🇺🇸 20.40.218.136

🇺🇸 20.29.23.198

🇻🇳 14.224.227.189