JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.244.203

216.26.244.203 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 32%: ?

32%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.244.203

Whois 216.26.244.203

IP Abuse Reports for 216.26.244.203:

This IP address has been reported a total of 15 times from 12 distinct sources. 216.26.244.203 was first reported on October 16th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-01 01:25:39 (1 week ago)	(y4) Failed scan -byebye- from 216.26.244.203 (GB/United Kingdom/-): (CF_ENABLE)	Hacking
🇺🇸 lostswordfish.com	2026-05-31 12:32:04 (1 week ago)	Wordfence waf block on fypeducation	Web App Attack
🇩🇪 iNetWorker	2026-05-30 11:10:47 (1 week ago)	trolling for resource vulnerabilities	Web App Attack
🇲🇽 octageeks.com	2026-05-30 04:13:49 (1 week ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇲🇹 Malta	2026-05-29 18:11:58 (1 week ago)	216.26.244.203 - - [29/May/2026:20:11:57 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 216.26.244.203 - - [29/May/2026:20:11:57 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-01-16 06:26:55 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 01:26:48.843414 2026] [security2:error] [pid 2888:tid 2888] [client 216.26.244.203:52949] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "satanisdead.com"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aWnaKNA9ZEqlpYSz5SjLawAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:17 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-24 08:11:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:11:22.960952 2025] [security2:error] [pid 12102:tid 12107] [client 216.26.244.203:50371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.miltonthepuppy.com"] [uri "/.svn/wc.db"] [unique_id "aSQTKvW9q1mxetu5lC-bXQAAAIE"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇹 NotACaptcha	2025-11-24 05:49:49 (6 months ago)	webserver:80 [24/Nov/2025] "GET /.aws/credentials HTTP/1.1" 404 360 "-" "Mozilla/5.0 (Macintosh; In ... show more webserver:80 [24/Nov/2025] "GET /.aws/credentials HTTP/1.1" 404 360 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36" show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:28:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:28:23.548659 2025] [security2:error] [pid 6515:tid 6515] [client 216.26.244.203:57381] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.rallyasturias.com"] [uri "/.svn/wc.db"] [unique_id "aSPs93qsUtWQD5FM008ZYwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:24:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:24:39.050181 2025] [security2:error] [pid 27394:tid 27394] [client 216.26.244.203:50657] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.theboates.com"] [uri "/.git/HEAD"] [unique_id "aSPeByUxDf9jLr0RUEEdQwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-28 15:23:38 (7 months ago)	WP Admin Scan Activities	Web App Attack
Anonymous	2025-10-19 22:11:13 (7 months ago)	wordpress-trap	Web App Attack
🇫🇷 dynamix	2025-10-16 13:54:02 (7 months ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 204.76.203.15

🇸🇦 77.31.222.157

🇧🇷 45.205.1.242

🇧🇪 35.187.172.41

🇳🇱 5.83.143.132

🇵🇰 203.128.10.138

🇬🇧 185.216.145.172

🇸🇬 103.250.11.116

🇪🇸 88.21.166.76

🇺🇸 66.132.186.138

🇷🇺 62.112.126.114

🇱🇹 45.227.254.170

🇩🇪 43.228.157.8

🇺🇸 34.75.223.138

🇺🇸 2604:a880:400:d1:0:4:8bed:8001

🇬🇧 193.163.125.141

🇲🇩 176.123.2.115

🇺🇸 172.59.72.163

🇺🇸 162.243.138.30

🇨🇳 119.48.134.120