JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.253.197

216.26.253.197 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.253.197

Whois 216.26.253.197

IP Abuse Reports for 216.26.253.197:

This IP address has been reported a total of 7 times from 4 distinct sources. 216.26.253.197 was first reported on November 24th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-04 16:03:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 11:02:58.332057 2025] [security2:error] [pid 8260:tid 8260] [client 216.26.253.197:21445] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hillcrest.us"] [uri "/.git/HEAD"] [unique_id "aTGwssB6Pu_LBhVsks_yVwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 tr1n	2025-12-03 11:47:09 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/1.1 (GET method) Endpoint: /.svn/wc.db Timestamp: 2025-12-03T11:47:09Z UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Edg/119.0.0.0 show less	Bad Web Bot
🇸🇪 KIDOS	2025-11-26 09:14:00 (6 months ago)	malicious activity	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:44:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:44:31.538630 2025] [security2:error] [pid 9413:tid 9413] [client 216.26.253.197:29693] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.alexthepunk.com"] [uri "/.env"] [unique_id "aSVQTww-Ht42eMMve2DBtwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:30:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:30:14.550289 2025] [security2:error] [pid 22537:tid 22537] [client 216.26.253.197:42757] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eezinet.net"] [uri "/.svn/wc.db"] [unique_id "aSU-5jYET3r61wlY_tduiwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:42:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.253.197 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.253.197 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:42:45.801277 2025] [security2:error] [pid 19369:tid 19369] [client 216.26.253.197:42125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bodybuildbid.com"] [uri "/.git/HEAD"] [unique_id "aSQolXcwPPKYo2s6cJLdLAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.141

🇲🇽 186.96.145.241

🇸🇬 185.200.116.67

🇺🇸 172.202.122.207

🇷🇴 92.118.39.236

🇬🇧 77.98.99.60

🇺🇸 64.62.197.229

🇹🇭 171.4.216.47

🇺🇸 82.22.84.242

🇧🇬 79.124.60.146

🇫🇷 51.159.104.219

🇺🇸 2604:a940:300:5b6:0:21::

🇸🇬 165.22.252.177

🇫🇮 147.185.133.151

🇮🇳 103.123.53.88

🇨🇳 61.52.36.56

🇳🇱 45.148.10.152

🇦🇲 45.129.185.7

🇹🇷 5.25.71.131

🇺🇸 207.46.13.14