JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.251.148

216.26.251.148 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 18%: ?

18%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.251.148

Whois 216.26.251.148

IP Abuse Reports for 216.26.251.148:

This IP address has been reported a total of 17 times from 6 distinct sources. 216.26.251.148 was first reported on November 24th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 MusicLibrary	2026-06-14 20:05:25 (3 days ago)	Attempted access to sensitive configuration files (.env, .git, etc.)	Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-12 05:01:33 (6 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 bescared	2026-04-20 13:18:00 (1 month ago)	Malicious activity detected: URL probing.	Bad Web Bot Web App Attack Hacking
🇫🇷 COMAITE	2026-03-19 11:34:47 (2 months ago)	SQL injection attempt from 216.26.251.148.	Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-11 00:05:09 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-06 13:32:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 08:32:01.675187 2025] [security2:error] [pid 6968:tid 6968] [client 216.26.251.148:14509] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "christineohlman.net"] [uri "/.svn/wc.db"] [unique_id "aTQwUZ0hnWlzhHI3I980DwAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:56:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:55:59.969864 2025] [security2:error] [pid 29884:tid 29884] [client 216.26.251.148:44529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.linguistes.com"] [uri "/.git/HEAD"] [unique_id "aSbqz2yucfMAO6BK-dUdygAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:13:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:13:05.764319 2025] [security2:error] [pid 8576:tid 8576] [client 216.26.251.148:35679] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.tcit.org"] [uri "/.git/HEAD"] [unique_id "aSbgwSOJ-zhnpZ9QVTjMNQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 04:16:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 23:16:48.100271 2025] [security2:error] [pid 28462:tid 28462] [client 216.26.251.148:41959] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.p-co.com"] [uri "/.svn/wc.db"] [unique_id "aSZ_MPskoSc984QtPKpDlgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:27:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:27:21.429567 2025] [security2:error] [pid 7763:tid 7763] [client 216.26.251.148:20705] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.emisoni.com"] [uri "/.svn/wc.db"] [unique_id "aSZXeYKy873RctH6sYO2TAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:05:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:05:38.028803 2025] [security2:error] [pid 18827:tid 18962] [client 216.26.251.148:11973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.zammconstruction.com"] [uri "/.env"] [unique_id "aSZSYsTvREaKfhuVq1p21gAAAYY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:18:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:18:41.993954 2025] [security2:error] [pid 19054:tid 19054] [client 216.26.251.148:50813] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cashforjunkcars.info"] [uri "/.git/HEAD"] [unique_id "aSZHYQuvlpwfVDcyRKwrYQAAADw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:23:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:23:31.676977 2025] [security2:error] [pid 13609:tid 13609] [client 216.26.251.148:33475] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.braunfamily.info"] [uri "/.git/HEAD"] [unique_id "aSUTIwGqZIsNO0AsOoDzkgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:34:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:34:25.569524 2025] [security2:error] [pid 243932:tid 243977] [client 216.26.251.148:15895] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.fibertechsystems.com"] [uri "/.svn/wc.db"] [unique_id "aSQmoVc8EtVRkmyAMev0PgAAAQw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:18:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:18:36.940096 2025] [security2:error] [pid 11434:tid 11434] [client 216.26.251.148:53821] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.laughingthunder.com"] [uri "/.git/HEAD"] [unique_id "aSQi7HpgJAd0V44L849NegAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.233.219.44

🇩🇪 194.88.98.107

🇻🇪 190.153.21.124

🇺🇸 172.67.178.100

🇺🇸 91.230.168.14

🇫🇷 85.217.140.50

🇭🇰 84.54.3.194

🇬🇧 35.203.210.199

🇺🇸 147.185.132.127

🇮🇳 49.43.3.117

🇺🇸 35.169.206.177

🇧🇷 2800:3f0:4001:c04::12e

🇧🇷 205.210.31.230

🇹🇭 202.29.224.230

🇮🇳 182.95.123.50

🇩🇪 167.71.54.24

🇹🇷 104.247.164.63

🇺🇸 160.83.71.109

🇰🇷 119.200.229.33

🇻🇳 104.218.166.62