JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.233.160

216.26.233.160 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.233.160

Whois 216.26.233.160

IP Abuse Reports for 216.26.233.160:

This IP address has been reported a total of 34 times from 13 distinct sources. 216.26.233.160 was first reported on September 27th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-21 13:20:34 (2 weeks ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇱🇻 garmtech.com	2026-05-19 00:47:20 (2 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 03-47.216.26.233.160.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 03-47.216.26.233.160.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
Anonymous	2025-11-28 10:33:10 (6 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.28 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.28 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-27 03:20:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 22:19:56.873947 2025] [security2:error] [pid 32556:tid 32556] [client 216.26.233.160:37055] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.ferienwohnungen-eva.com"] [uri "/.svn/wc.db"] [unique_id "aSfDXCfdEf2DETQ9Q1G1QwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Shadymint	2025-11-25 18:54:49 (6 months ago)	url probing from IP marked as abusive	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:40:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:40:15.635133 2025] [security2:error] [pid 4618:tid 4618] [client 216.26.233.160:21953] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.solderhead.com"] [uri "/.svn/wc.db"] [unique_id "aSVPT6c7EhznsQiJxMYVLgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:22:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:22:34.175965 2025] [security2:error] [pid 14040:tid 14040] [client 216.26.233.160:43029] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.embeddedtrade.com"] [uri "/.svn/wc.db"] [unique_id "aSVLKiwf_ynV0u8H0Zs9ugAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:51:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:51:06.793288 2025] [security2:error] [pid 29847:tid 29847] [client 216.26.233.160:51675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.theabstractpress.com"] [uri "/.git/HEAD"] [unique_id "aSVDygRllnnWiJDBGnp2AgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:15:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:15:06.087458 2025] [security2:error] [pid 19122:tid 19122] [client 216.26.233.160:55221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.f40ph.org"] [uri "/.git/HEAD"] [unique_id "aSU7WmcHH9vjpApS7K4L_QAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:51:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:51:40.637770 2025] [security2:error] [pid 7507:tid 7507] [client 216.26.233.160:20763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.keystonestandard.com"] [uri "/.svn/wc.db"] [unique_id "aSU13KDgxxTSgzAqTZXIIQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:31:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:31:01.420314 2025] [security2:error] [pid 8336:tid 8336] [client 216.26.233.160:28513] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.onlinesuretybonds.com"] [uri "/.svn/wc.db"] [unique_id "aSUxBX6ngdaRLA4zisAHKwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇸 Smel	2025-11-25 03:37:22 (6 months ago)	HTTP/80/443/8080 Unauthorized Probe, Hack -	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:36:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:36:13.680337 2025] [security2:error] [pid 17847:tid 17847] [client 216.26.233.160:12403] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.noramsg.com"] [uri "/.svn/wc.db"] [unique_id "aSUWHRGlVxn9TybDNhxgzwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:11:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:11:15.150508 2025] [security2:error] [pid 16832:tid 16832] [client 216.26.233.160:31239] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.callahan-co.com"] [uri "/.svn/wc.db"] [unique_id "aSUQQwy9whJmv4adbLQvrAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:54:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.233.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:54:45.272176 2025] [security2:error] [pid 15589:tid 15614] [client 216.26.233.160:12879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rawhabitat.com"] [uri "/.svn/wc.db"] [unique_id "aSUMZSIjVFKa_KFJ49hoMAAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇪 2a05:d018:10df:d401:f8e9:c4fb:baac:c9b5

🇺🇸 147.185.132.147

🇺🇸 147.185.132.69

🇳🇱 45.148.10.183

🇺🇸 20.62.194.227

🇳🇱 2001:67c:e60:c0c:192:42:116:117

🇭🇰 199.45.155.94

🇲🇽 189.174.126.195

🇫🇮 172.217.37.148

🇳🇱 172.71.99.230

🇳🇬 165.154.11.225

🇭🇰 159.138.134.148

🇸🇬 158.178.243.5

🇨🇦 142.44.232.37

🇫🇷 91.231.89.43

🇨🇿 91.224.90.50

🇺🇸 66.132.172.206

🇨🇭 45.143.200.246

🇬🇧 45.137.126.36

🇺🇸 43.153.30.106