JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.244.183

216.26.244.183 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.244.183

Whois 216.26.244.183

IP Abuse Reports for 216.26.244.183:

This IP address has been reported a total of 19 times from 10 distinct sources. 216.26.244.183 was first reported on October 25th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 suble.org	2026-06-10 21:55:55 (2 days ago)	216.26.244.183 - - [10/Jun/2026:23:55:52 +0200] "GET http://www.archerypedia.net/sitemap_index.xml H ... show more 216.26.244.183 - - [10/Jun/2026:23:55:52 +0200] "GET http://www.archerypedia.net/sitemap_index.xml HTTP/1.1" 404 483 "-" "Mozilla/5.0" ... show less	Bad Web Bot
🇫🇷 Thaliruth	2026-02-12 02:36:07 (4 months ago)	[12/Feb/2026:03:36:06.834202 +0100] aY08ltlKzxSpftZ0EcLlKwAAAFI 216.26.244.183 34124 127.0.0.1 7080 ... show more [12/Feb/2026:03:36:06.834202 +0100] aY08ltlKzxSpftZ0EcLlKwAAAFI 216.26.244.183 34124 127.0.0.1 7080 ... show less	Hacking
🇺🇸 myagent.site	2026-02-09 23:28:26 (4 months ago)	Blocking for trying to access an exploit file: /frontend/.env	Hacking
🇺🇸 TPI-Abuse	2026-01-04 13:12:45 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 04 08:12:35.850258 2026] [security2:error] [pid 14704:tid 14704] [client 216.26.244.183:47153] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "firebelly.org"] [uri "/wp-config.php"] [unique_id "aVpnQ9WTKRE7Bqdlf7r_swAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2025-12-31 23:38:17 (5 months ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2025-12-30 23:37:48 (5 months ago)		Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 22:57:06 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 17:56:58.913608 2025] [security2:error] [pid 13880:tid 13880] [client 216.26.244.183:17377] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alexsource.com"] [uri "/.env"] [unique_id "aVBkOnnlTpgDmPixcMcHuAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 22:39:16 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 17:39:14.167471 2025] [security2:error] [pid 15968:tid 15968] [client 216.26.244.183:51567] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "2pollards.com"] [uri "/.git/HEAD"] [unique_id "aVBgEtUQ3v6KUtgLVLdvYAAAACk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 20:15:53 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 15:15:46.056481 2025] [security2:error] [pid 15568:tid 15572] [client 216.26.244.183:11263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alabamacentralrailroad.com"] [uri "/.env"] [unique_id "aVA-cgrT5bExKoN2EMRFoQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 19:14:33 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 14:14:24.793166 2025] [security2:error] [pid 18969:tid 18969] [client 216.26.244.183:32295] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anrfilters.com"] [uri "/.svn/wc.db"] [unique_id "aVAwEKzXK5RpdLPoNJyB0QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 SCHAPPY	2025-12-24 12:30:06 (5 months ago)	Critical web app attack detected. Restricted File Access Attempt	Web App Attack
🇮🇩 securejdprop	2025-12-24 04:55:00 (5 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET INFO User-Agent ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET INFO User-Agent (python-requests) Inbound to Webserver). Ip 216.26.244.183 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2025-12-24 04:54:58.420082962 +0000 UTC show less	Web App Attack
🇳🇱 homeshowdomain.nl	2025-11-25 23:02:04 (6 months ago)	Auto-ban: >3000 req/min op 2025-11-25	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-11-25 06:30:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:29:55.000458 2025] [security2:error] [pid 15234:tid 15234] [client 216.26.244.183:44923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.wallpaperpro.com"] [uri "/.svn/wc.db"] [unique_id "aSVM4gtI7XJthx9g3R8qBQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:01:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:01:31.925849 2025] [security2:error] [pid 23085:tid 23085] [client 216.26.244.183:32751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.cipausa.com"] [uri "/.git/HEAD"] [unique_id "aSU4KzwihKczVEuw-xjUWQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 218.144.90.40

🇰🇷 112.216.129.27

🇩🇪 45.135.141.20

🇩🇪 35.246.193.5

🇩🇪 194.88.98.110

🇫🇷 193.70.41.50

🇲🇽 186.96.145.241

🇺🇸 134.122.16.191

🇨🇭 107.189.1.82

🇩🇪 85.192.31.14

🇺🇸 64.62.197.107

🇳🇱 45.148.10.183

🇮🇳 40.81.233.86

🇭🇰 34.150.39.28

🇳🇱 5.187.35.142

🇨🇳 220.178.39.106

🇺🇸 198.23.200.239

🇺🇸 66.132.172.235

🇪🇬 41.42.41.154

🇺🇸 18.218.54.15