JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.251.253

216.26.251.253 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.251.253

Whois 216.26.251.253

IP Abuse Reports for 216.26.251.253:

This IP address has been reported a total of 17 times from 8 distinct sources. 216.26.251.253 was first reported on July 3rd 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-16 00:35:52 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 15 19:35:45.543934 2026] [security2:error] [pid 20480:tid 20480] [client 216.26.251.253:44219] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sandboxspeech.org"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aWmH4c-gSEN_kKEV9cGqewAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 MPL	2025-12-30 14:03:11 (5 months ago)	tcp/80 (57 or more attempts)	Port Scan
🇺🇸 TPI-Abuse	2025-12-28 00:12:06 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 19:12:01.524359 2025] [security2:error] [pid 7276:tid 7291] [client 216.26.251.253:27253] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stratifiedstudios.com"] [uri "/.git/HEAD"] [unique_id "aVB10Xq7SjYfXkn_HO_Z4AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 22:05:31 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 17:05:26.087535 2025] [security2:error] [pid 16859:tid 16859] [client 216.26.251.253:51257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mitchellamazing.com"] [uri "/.svn/wc.db"] [unique_id "aVBYJqzEGRI8oP1zWvmC-wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 19:45:12 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 14:45:07.458276 2025] [security2:error] [pid 25268:tid 25268] [client 216.26.251.253:40773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rodrandolph.com"] [uri "/.env"] [unique_id "aVA3QxPo54pPImyWtNMOwQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-27 14:33:30 (5 months ago)	"GET /.env HTTP/1.1"	Hacking Web App Attack
🇨🇭 backslash	2025-12-24 08:55:05 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-04 19:51:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 14:50:55.561758 2025] [security2:error] [pid 27056:tid 27056] [client 216.26.251.253:47173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alkahf.xyz"] [uri "/.svn/wc.db"] [unique_id "aTHmHx8ngChVdHLL3KwTGwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 09:22:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 04:21:56.063788 2025] [security2:error] [pid 32724:tid 32724] [client 216.26.251.253:10265] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aluthienproperties.com"] [uri "/.env.backup"] [unique_id "aSlptDgewqmbYVTUtpp6AgAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:43:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:43:11.875589 2025] [security2:error] [pid 22661:tid 22661] [client 216.26.251.253:47703] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.washburn-books.com"] [uri "/.git/HEAD"] [unique_id "aSQMjyLhQd3R1ib1nWj5PwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:19:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:18:53.149329 2025] [security2:error] [pid 16498:tid 16498] [client 216.26.251.253:46139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.crescentcitycafe.org"] [uri "/.env"] [unique_id "aSP4zSj3B9Kzu8HyeynV6gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:42:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:41:46.945487 2025] [security2:error] [pid 26807:tid 26807] [client 216.26.251.253:25313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.leadek.com"] [uri "/.env"] [unique_id "aSPwGqlHnp9RQCPLtRgtyQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:19:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.251.253 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:19:39.219547 2025] [security2:error] [pid 10071:tid 10071] [client 216.26.251.253:48651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.todi.org"] [uri "/.env"] [unique_id "aSPq6znokh5waSK38LD7TwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-21 18:52:38 (6 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/21 12:50:12	Port Scan Brute-Force Exploited Host Web App Attack
🇯🇵 ki3	2025-10-29 22:17:33 (7 months ago)	Fail2Ban: Web App Attacks and Forum Spam 216.26.251.253 1761776252.0(JST)	Web Spam Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 162.249.125.150

🇺🇸 162.216.149.197

🇭🇰 112.118.57.75

🇺🇸 91.230.168.89

🇱🇰 220.247.224.226

🇩🇪 213.209.159.235

🇰🇷 211.228.218.47

🇭🇰 199.45.155.67

🇨🇳 112.111.16.226

🇯🇵 111.238.174.6

🇨🇳 111.74.134.86

🇵🇰 111.68.107.91

🇵🇰 111.68.98.152

🇨🇳 111.52.249.29

🇨🇳 111.42.183.124

🇨🇳 111.23.129.238

🇮🇩 103.190.214.241

🇺🇸 71.6.134.232

🇺🇸 65.49.1.224

🇭🇰 47.76.63.164