JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.244.178

216.26.244.178 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.244.178

Whois 216.26.244.178

IP Abuse Reports for 216.26.244.178:

This IP address has been reported a total of 15 times from 8 distinct sources. 216.26.244.178 was first reported on November 10th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 suble.org	2026-06-10 21:55:55 (1 day ago)	216.26.244.178 - - [10/Jun/2026:23:55:52 +0200] "GET http://www.archerypedia.net/sitemap.xml HTTP/1. ... show more 216.26.244.178 - - [10/Jun/2026:23:55:52 +0200] "GET http://www.archerypedia.net/sitemap.xml HTTP/1.1" 404 483 "-" "Mozilla/5.0" ... show less	Bad Web Bot
🇩🇪 F242	2026-01-30 06:00:49 (4 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
Anonymous	2026-01-05 20:28:24 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-12-08 08:34:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 03:34:22.923164 2025] [security2:error] [pid 18678:tid 18678] [client 216.26.244.178:23877] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "firstampersand.com"] [uri "/.git/HEAD"] [unique_id "aTaNjvw8UIx2DZJuCbdubwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 13:52:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:52:27.143411 2025] [security2:error] [pid 23627:tid 23627] [client 216.26.244.178:12951] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "laecovillage.org"] [uri "/.git/HEAD"] [unique_id "aTWGm3buDdRGqXNFMz-nJwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 16:14:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 11:14:46.934362 2025] [security2:error] [pid 30685:tid 30685] [client 216.26.244.178:15189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whiterhinomusic.net"] [uri "/.svn/wc.db"] [unique_id "aTRWdvTUmHhKJgFsH6tQqgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2025-12-05 13:35:37 (6 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 04:39:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 23:39:16.492901 2025] [security2:error] [pid 9876:tid 9876] [client 216.26.244.178:25299] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "christineaholtz.com"] [uri "/.env"] [unique_id "aTJh9MVfN82KgoEIG99eMwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:42:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:41:52.839279 2025] [security2:error] [pid 27424:tid 27424] [client 216.26.244.178:44245] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "damova.net"] [uri "/.env"] [unique_id "aSUXcEuCSLPtDRFDHQ5veAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 brantknudson.org	2025-11-24 09:57:07 (6 months ago)	Request path '/.svn/wc.db'	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:31:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:31:37.420800 2025] [security2:error] [pid 12377:tid 12377] [client 216.26.244.178:15511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.empoweruohio.org"] [uri "/.env"] [unique_id "aSQl-U55S43wt44WsEloMAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:53:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:53:40.209587 2025] [security2:error] [pid 31351:tid 31351] [client 216.26.244.178:9201] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.floorsanding.org"] [uri "/.svn/wc.db"] [unique_id "aSPk1HYRwzovOEW7WFUBXgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:46:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:46:35.751061 2025] [security2:error] [pid 14702:tid 14702] [client 216.26.244.178:57223] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.enjoy2dance.com"] [uri "/.git/HEAD"] [unique_id "aSPVG_IkqyHtW_SGnnFfQgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-22 18:00:02 (6 months ago)	suspicious request in access.log	Web App Attack
🇩🇪 FeG Deutschland	2025-11-10 10:03:43 (7 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.159.80.91

🇧🇷 190.115.84.25

🇳🇱 185.223.235.26

🇫🇮 147.185.133.103

🇷🇺 104.28.156.67

🇳🇱 94.102.49.155

🇫🇷 91.231.89.224

🇨🇳 39.171.240.69

🇰🇷 211.246.160.21

🇮🇩 180.254.102.140

🇺🇸 165.154.182.179

🇨🇳 113.57.5.139

🇵🇱 91.231.121.67

🇧🇬 91.92.40.34

🇩🇪 45.135.141.17

🇮🇩 43.249.140.69

🇧🇪 198.235.24.245

🇳🇱 185.223.235.30

🇺🇸 147.185.132.53

🇿🇦 147.136.66.109