JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.253.172

216.26.253.172 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.253.172

Whois 216.26.253.172

IP Abuse Reports for 216.26.253.172:

This IP address has been reported a total of 6 times from 3 distinct sources. 216.26.253.172 was first reported on October 15th 2025, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2025-12-07 00:03:47 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-25 06:28:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:28:04.047288 2025] [security2:error] [pid 24583:tid 24583] [client 216.26.253.172:58459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.intermixx.com"] [uri "/.svn/wc.db"] [unique_id "aSVMdFosfS3K4ZfINYjacgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:43:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:43:52.074109 2025] [security2:error] [pid 13754:tid 13768] [client 216.26.253.172:20835] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alfred.merart.com"] [uri "/.svn/wc.db"] [unique_id "aSU0CKITODRS1uMOGv8z_gAAAEg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:51:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:51:04.059342 2025] [security2:error] [pid 751855:tid 751855] [client 216.26.253.172:37745] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.aholsniffsglue.com"] [uri "/.env"] [unique_id "aSUnqApSaxRT71tMUX317wAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:11:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:11:22.718912 2025] [security2:error] [pid 1200:tid 1200] [client 216.26.253.172:25031] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.wackywipeouts.com"] [uri "/.env"] [unique_id "aSUCOugXiD4pbFqxl1JDzwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 EGP Abuse Dept	2025-10-15 15:35:27 (7 months ago)	Unauthorized connection to SSH port 22	Port Scan Hacking SSH

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 172.253.11.25

🇳🇱 45.148.10.157

🇮🇷 5.232.84.164

🇬🇧 198.178.235.41

🇺🇸 178.156.198.226

🇺🇸 138.124.123.129

🇻🇳 103.176.20.115

🇷🇴 80.94.95.115

🇨🇳 61.136.246.87

🇫🇷 44.151.189.215

🇪🇪 31.59.160.12

🇹🇼 220.132.170.64

🇺🇸 199.180.9.154

🇳🇱 193.176.31.254

🇧🇷 186.250.33.237

🇺🇸 91.230.168.207

🇺🇿 89.126.222.163

🇨🇳 58.50.19.2

🇯🇵 52.103.66.61

🇭🇰 45.114.125.24