JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.244.133

216.26.244.133 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.244.133

Whois 216.26.244.133

IP Abuse Reports for 216.26.244.133:

This IP address has been reported a total of 15 times from 6 distinct sources. 216.26.244.133 was first reported on October 24th 2025, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 4server	2026-05-10 12:53:23 (4 weeks ago)	[SunMay1014:53:18.7206712026][security2:error][pid959030:tid959047][client216.26.244.133:0]ModSecuri ... show more [SunMay1014:53:18.7206712026][security2:error][pid959030:tid959047][client216.26.244.133:0]ModSecurity:Accessdeniedwithcode403$phase2$.OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded$TotalScore:5$\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"prstartup.ch\"][uri\"/.aws/credentials\"][unique_id\"agB_vjDkBzN99RsXvMaM-gAAAAU\"] show less	Port Scan Brute-Force Web App Attack
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇨🇦 SSH-Admin	2025-12-27 22:05:38 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
Anonymous	2025-12-16 09:15:35 (5 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-12-09 17:28:32 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 12:28:25.742892 2025] [security2:error] [pid 14746:tid 14746] [client 216.26.244.133:25597] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "canonarizona.com"] [uri "/.svn/wc.db"] [unique_id "aThcOTCKn8-WrcqUF3IoFQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 16:49:34 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 11:49:28.826155 2025] [security2:error] [pid 9276:tid 9276] [client 216.26.244.133:37943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mskimberleesspace.com"] [uri "/.env"] [unique_id "aTcBmGCc6DWSXIxmjAK8JgAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 13:21:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:21:18.853510 2025] [security2:error] [pid 30405:tid 30405] [client 216.26.244.133:47103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "giveorcas.org"] [uri "/.svn/wc.db"] [unique_id "aTV_TmqPaNqo_Xcr9ZBAngAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 19:23:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 14:23:43.543836 2025] [security2:error] [pid 30126:tid 30126] [client 216.26.244.133:60945] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nrvoutdoors.net"] [uri "/.git/HEAD"] [unique_id "aTSCv5OFoZKRgoqEuWaUiQAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 17:11:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 12:11:32.741578 2025] [security2:error] [pid 940:tid 940] [client 216.26.244.133:25301] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "opticasprisma.com"] [uri "/.env"] [unique_id "aTMSRAvhUiCTu_5yFb-rOAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:30:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:30:16.760876 2025] [security2:error] [pid 21386:tid 21386] [client 216.26.244.133:53209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "indiahouseportland.com"] [uri "/.git/HEAD"] [unique_id "aTK0OHSTP13LCmO_kffhHAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 08:46:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 03:46:48.840120 2025] [security2:error] [pid 31200:tid 31200] [client 216.26.244.133:15897] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sweetsixteennapkins.com"] [uri "/.git/HEAD"] [unique_id "aTKb-N0uhAk5GbIDN6_lzgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 06:27:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 01:27:17.471237 2025] [security2:error] [pid 8020:tid 8029] [client 216.26.244.133:31733] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zoomtexas.com"] [uri "/.svn/wc.db"] [unique_id "aTJ7RZsJP7QP_uYcdsbr4gAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 03:41:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:41:45.907683 2025] [security2:error] [pid 29664:tid 29664] [client 216.26.244.133:56213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "virginialakes395.com"] [uri "/.svn/wc.db"] [unique_id "aTJUef8ZbHzYQGjrFDSz3gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-10-28 16:06:59 (7 months ago)	(From [email protected]) Welcome from BonusBacklinks Tired of useless seo services and ba ... show more (From [email protected]) Welcome from BonusBacklinks Tired of useless seo services and backlinks? With BonusBacklinks we deliver daily backlinks and drive website traffic to your website EVERY DAY! + Use 85% OFF + Strong daily seo backlinks + Organic website traffic + Prices start from $1 + Bonus discount codes Use shortlink - https://tiny.cc/BonusBacklinks-Deal Or visit directly - BonusBacklinks.com BonusBacklinks - daily backlinks and website clicks to increase your page every day show less	Phishing Web Spam
🇵🇱 sefinek.net	2025-10-24 14:19:15 (7 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 203.130.11.3

🇲🇽 200.77.172.159

🇧🇪 198.235.24.156

🇳🇱 176.65.139.233

🇹🇼 175.182.37.66

🇵🇰 154.192.20.240

🇺🇸 100.50.17.159

🇫🇷 84.17.43.213

🇸🇬 43.163.90.141

🇵🇰 39.48.34.123

🇧🇪 34.62.75.38

🇺🇸 20.169.104.111

🇷🇴 2.57.122.177

🇨🇦 198.245.112.240

🇬🇪 193.176.214.9

🇳🇱 176.65.139.234

🇵🇰 175.107.224.20

🇸🇪 138.124.71.25

🇨🇳 125.93.252.89

🇺🇸 104.21.4.30