JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.252.219

216.26.252.219 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.252.219

Whois 216.26.252.219

IP Abuse Reports for 216.26.252.219:

This IP address has been reported a total of 16 times from 9 distinct sources. 216.26.252.219 was first reported on September 30th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-31 09:58:24 (1 week ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 12-58.216.26.252.219.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 12-58.216.26.252.219.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-16 10:55:37 (3 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 13-55.216.26.252.219.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 13-55.216.26.252.219.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇸🇪 KIDOS	2026-05-03 23:57:39 (1 month ago)	malicious activity	Web App Attack
🇳🇱 Savvii	2026-04-02 22:38:20 (2 months ago)	20 attempts against mh_ha-misbehave-ban on ethyl	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 06:06:31 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇫🇷 dynamix	2026-02-15 05:26:18 (3 months ago)	Multiple WAF Violations	Web App Attack
🇨🇭 Origon	2026-02-15 01:08:10 (3 months ago)	http-sensitive-files - IP: 216.26.252.219 - time="2026-02-15T02:08:10+01:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 216.26.252.219 - time="2026-02-15T02:08:10+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 216.26.252.219 (FR/200373) : 4h ban on Ip 216.26.252.219" module=db show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:43:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:43:02.559517 2025] [security2:error] [pid 4821:tid 4821] [client 216.26.252.219:47609] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.nue18.com"] [uri "/.svn/wc.db"] [unique_id "aSVP9qIBdSyu30pHkWq3AwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:25:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:25:01.120527 2025] [security2:error] [pid 2845:tid 2845] [client 216.26.252.219:13441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.jpfcomm.com"] [uri "/.env"] [unique_id "aSVLvXKOSvpAyYG3HiByoAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:04:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:04:44.651945 2025] [security2:error] [pid 3152:tid 3152] [client 216.26.252.219:51529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.bgellis.com"] [uri "/.env"] [unique_id "aSVG_NoJMiOBZVcelod9_AAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:45:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:45:15.023665 2025] [security2:error] [pid 10235:tid 10235] [client 216.26.252.219:51965] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.emailautomationworkflow.com"] [uri "/.svn/wc.db"] [unique_id "aSVCa5dPQugCeVINdDaURAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-25 05:43:38 (6 months ago)	216.26.252.219 - - [25/Nov/2025:05:43:38 +0000] "GET /.env HTTP/1.1" 404 360 "-" "Mozilla/5.0 (Windo ... show more 216.26.252.219 - - [25/Nov/2025:05:43:38 +0000] "GET /.env HTTP/1.1" 404 360 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:31:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:31:42.022174 2025] [security2:error] [pid 17614:tid 17614] [client 216.26.252.219:49133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.cleanbuildingservices.com"] [uri "/.git/HEAD"] [unique_id "aSUxLpbW6UcEJrzpubEntAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:44:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:44:12.639913 2025] [security2:error] [pid 32734:tid 32745] [client 216.26.252.219:39463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.xavidominguez.com"] [uri "/.svn/wc.db"] [unique_id "aSUmDCrPMGOurG3RzwZCogAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:55:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:55:05.254226 2025] [security2:error] [pid 11280:tid 11280] [client 216.26.252.219:47735] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.narrowacresbees.com"] [uri "/.svn/wc.db"] [unique_id "aSUMeXnOFSlwT3WGGZn4wwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.241.173.169

🇩🇰 86.52.26.18

🇷🇴 2.57.122.238

🇬🇧 195.140.214.27

🇷🇺 176.109.97.11

🇭🇷 82.23.221.132

🇭🇺 82.21.226.129

🇮🇹 45.196.215.21

🇹🇼 34.80.112.161

🇺🇸 208.84.101.72

🇺🇸 172.174.72.225

🇸🇪 171.25.158.74

🇺🇸 135.237.127.54

🇷🇴 92.118.39.236

🇺🇸 70.32.74.214

🇩🇪 69.5.169.243

🇩🇪 45.151.162.97

🇭🇰 45.142.154.39

🇨🇳 36.102.90.6

🇺🇸 35.192.58.97