JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.248.193

216.26.248.193 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.248.193

Whois 216.26.248.193

IP Abuse Reports for 216.26.248.193:

This IP address has been reported a total of 10 times from 5 distinct sources. 216.26.248.193 was first reported on October 16th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-30 07:01:41 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 03:01:37.735506 2026] [security2:error] [pid 26052:tid 26052] [client 216.26.248.193:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|caspina.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "caspina.com"] [uri "/s3cmd.ini"] [unique_id "afL-UeT6z6T6kGS4PKgc4wAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oralunal	2026-02-04 14:41:00 (4 months ago)	IP banned by Fail2Ban in jail ente-suss ente.com-ssl_log mvfnds ...	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:11:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:11:18.082488 2025] [security2:error] [pid 1647077:tid 1647118] [client 216.26.248.193:36961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.leaderoftheopposition.com"] [uri "/.env"] [unique_id "aSUeVtNHCagQpGvj6qPF4gAAAks"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:53:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:53:27.416786 2025] [security2:error] [pid 16720:tid 16720] [client 216.26.248.193:55553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.jcrluthier.com"] [uri "/.git/HEAD"] [unique_id "aSUaJ-elEDAhgZTfHFnkewAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:28:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:28:21.403550 2025] [security2:error] [pid 18298:tid 18298] [client 216.26.248.193:55315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.explorediablo.com"] [uri "/.git/HEAD"] [unique_id "aSUURUtB-OacOgxPyR1_5QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:07:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:07:17.918313 2025] [security2:error] [pid 24348:tid 24348] [client 216.26.248.193:21781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.sailinghonu.com"] [uri "/.svn/wc.db"] [unique_id "aSUPVYMadsPZHkAHVNTGgwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:05:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:05:25.183951 2025] [security2:error] [pid 12278:tid 12278] [client 216.26.248.193:45331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.gslandservices.com"] [uri "/.env"] [unique_id "aSTyxd3rz7AOJacSIMx5dwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-30 14:13:17 (7 months ago)	WordPress Brute Force	Brute-Force
🇮🇹 Rosh	2025-10-27 06:12:38 (7 months ago)	[10/27/25 07:12:38] SSH: illegal login attempts	Brute-Force SSH
🇩🇪 Marc	2025-10-16 08:21:05 (7 months ago)		Brute-Force Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇪 179.6.1.14

🇩🇪 141.11.250.239

🇺🇸 2607:f8b0:4004:c27::127

🇧🇷 177.220.176.146

🇺🇸 162.216.149.186

🇫🇷 161.97.135.223

🇨🇳 110.43.37.72

🇮🇩 103.194.173.96

🇱🇹 81.30.98.158

🇨🇳 60.247.168.204

🇩🇪 49.13.222.98

🇬🇧 45.89.63.39

🇳🇱 45.84.222.25

🇩🇪 217.234.92.249

🇬🇧 217.154.38.181

🇦🇷 181.10.195.38

🇷🇺 178.20.47.39

🇨🇳 139.9.191.197

🇨🇳 118.145.101.59

🇫🇮 86.54.25.234