JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.244.122

216.26.244.122 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 34%: ?

34%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.244.122

Whois 216.26.244.122

IP Abuse Reports for 216.26.244.122:

This IP address has been reported a total of 14 times from 12 distinct sources. 216.26.244.122 was first reported on October 8th 2025, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-06-26 06:08:48 (10 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 ELYAZ	2026-06-26 02:42:10 (13 hours ago)	(y4) Failed scan -byebye- from 216.26.244.122 (GB/United Kingdom/-): (CF_ENABLE)	Hacking
🇫🇷 Sklurk	2026-06-17 03:52:30 (1 week ago)	Web App Attack	Web App Attack
🇮🇹 www.tana.it	2026-06-10 19:08:51 (2 weeks ago)	PHP scan	Web App Attack
🇺🇸 mnsf	2026-06-04 19:07:45 (3 weeks ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇫🇮 inlink.ltd	2026-05-15 18:00:33 (1 month ago)	Known malicious PHP file or CMS probe	Web App Attack
🇮🇹 main.ows	2025-11-25 18:52:04 (7 months ago)	[25/Nov/2025:19:52:03.112290 +0100] aSX60SbYDtoMMsrvJ6eACQAAAAM 216.26.244.122 36412 217.61.13.167 7 ... show more [25/Nov/2025:19:52:03.112290 +0100] aSX60SbYDtoMMsrvJ6eACQAAAAM 216.26.244.122 36412 217.61.13.167 7080 ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:56:46 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:56:40.247894 2025] [security2:error] [pid 1308:tid 1308] [client 216.26.244.122:12965] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "avmcyber.com"] [uri "/.git/HEAD"] [unique_id "aSQPuFcjzB5s9iz5BE5rUAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:11:25 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:11:19.297861 2025] [security2:error] [pid 16212:tid 16212] [client 216.26.244.122:31101] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.eaglespiritproductions.com"] [uri "/.git/HEAD"] [unique_id "aSP3B0CCoUyPVhLsNHAS4QAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:17:19 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:17:13.293957 2025] [security2:error] [pid 15791:tid 15791] [client 216.26.244.122:29287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.roumer.com"] [uri "/.git/HEAD"] [unique_id "aSPcSSJd4Lk0juZrV7sRYAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-10-18 12:52:59 (8 months ago)	Form spam	Web Spam
🇫🇷 dynamix	2025-10-16 08:56:15 (8 months ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇩🇪 bsoft.de	2025-10-16 06:29:47 (8 months ago)	216.26.244.122 - - [16/Oct/2025:08:29:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 ... show more 216.26.244.122 - - [16/Oct/2025:08:29:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 (iPad; CPU OS 11_2_6 like Mac OS X) AppleWebKit/604.1.34 (KHTML, like Gecko) CriOS/64.0.3282.112 Mobile/15D100 Safari/604.1" 216.26.244.122 - - [16/Oct/2025:08:29:42 +0200] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X; en-US; rv:1.8.1.1) Gecko/20061204 Firefox/2.0.0.1" 216.26.244.122 - - [16/Oct/2025:08:29:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 (Linux; Android 8.0.0; SM-G930F Build/R16NW) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Mobile Safari/537.36" show less	Web App Attack
🇧🇪 cmbplf	2025-10-08 22:26:52 (8 months ago)	2.140 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.93.89.79

🇳🇱 91.92.40.240

🇨🇭 209.99.190.200

🇺🇸 172.245.112.205

🇺🇸 158.94.187.156

🇫🇷 146.70.194.222

🇺🇸 129.146.75.85

🇨🇳 115.191.15.26

🇨🇳 113.141.72.65

🇨🇳 111.26.63.85

🇺🇸 64.94.159.229

🇺🇸 44.222.149.120

🇺🇸 44.106.87.115

🇸🇬 43.172.194.101

🇮🇩 43.157.203.234

🇸🇬 43.156.4.198

🇨🇳 39.100.80.152

🇹🇼 221.120.4.61

🇺🇸 216.45.50.119

🇧🇴 200.87.90.27