JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.253.108

216.26.253.108 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.253.108

Whois 216.26.253.108

IP Abuse Reports for 216.26.253.108:

This IP address has been reported a total of 24 times from 10 distinct sources. 216.26.253.108 was first reported on October 10th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇪🇸 10dencehispahard SL	2025-12-29 09:31:10 (5 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇺🇸 TPI-Abuse	2025-12-15 23:13:53 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.108 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 15 18:13:48.220165 2025] [security2:error] [pid 7249:tid 7249] [client 216.26.253.108:16147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "applemaccomputerconsulting.com"] [uri "/wp-config.php"] [unique_id "aUCWLP6dcOBZ9WZfGVMADwAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 Johan Finn	2025-12-13 02:58:25 (5 months ago)	malicious activity	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:29:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.108 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:29:06.778590 2025] [security2:error] [pid 14292:tid 14292] [client 216.26.253.108:35575] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.healthycaregiving.com"] [uri "/.git/HEAD"] [unique_id "aSVawtsALtTkzOv1-y5OvQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:57:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.108 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:57:49.339640 2025] [security2:error] [pid 31330:tid 31330] [client 216.26.253.108:52117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.foreverweddingnapkins.com"] [uri "/.env"] [unique_id "aSVTbd9JoqCwLwFmVKIB3gAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:54:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.108 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:54:50.822798 2025] [security2:error] [pid 15428:tid 15428] [client 216.26.253.108:39303] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davidnevueconcerts.com"] [uri "/.svn/wc.db"] [unique_id "aSUaepkl0f3bUciAhyY7GAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-10 07:54:06 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.108 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 10 02:53:59.104116 2025] [security2:error] [pid 18969:tid 19089] [client 216.26.253.108:22601] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tomithai.com"] [uri "/.env"] [unique_id "aRGaFxb8_FoyIuA1HAQVHgAAAc4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-07 19:51:10 (7 months ago)		Bad Web Bot Web App Attack
🇦🇺 AWW-Admin	2025-10-29 14:21:31 (7 months ago)	(wordpress) Failed wordpress login from 216.26.253.108 (FR/France/-)	Brute-Force
Anonymous	2025-10-25 22:22:00 (7 months ago)	wordpress-trap	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-25 03:55:56 (7 months ago)	WP Admin Scan Activities	Web App Attack
Anonymous	2025-10-25 00:24:03 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-19 20:59:09 (7 months ago)	wordpress-trap	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-19 09:33:36 (7 months ago)	WP Login Scan Activities	Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 209.50.179.215

🇧🇷 205.210.31.221

🇧🇪 198.235.24.211

🇷🇺 178.178.194.131

🇺🇸 139.144.135.236

🇺🇸 135.119.63.203

🇺🇸 135.119.49.165

🇺🇸 86.111.176.100

🇳🇱 64.89.162.55

🇺🇸 50.116.23.67

🇺🇸 45.79.214.122

🇺🇸 45.56.94.61

🇨🇳 14.103.118.113

🇺🇸 3.131.83.45

🇺🇸 216.25.89.86

🇿🇦 196.192.181.202

🇨🇳 183.243.222.180

🇺🇸 155.94.145.131

🇺🇸 135.119.112.84

🇺🇸 135.119.112.69