JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.244.30

216.26.244.30 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.244.30

Whois 216.26.244.30

IP Abuse Reports for 216.26.244.30:

This IP address has been reported a total of 9 times from 6 distinct sources. 216.26.244.30 was first reported on November 24th 2025, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 Andrey Ganichvili	2026-06-15 17:20:06 (4 hours ago)	Unauthorized sitemap access (/sitemap.xml) from 216.26.244.30	Web App Attack
🇱🇻 garmtech.com	2026-03-24 08:20:33 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇺🇸 Jason Howell	2025-12-24 20:22:04 (5 months ago)	216.26.244.30 - - [24/Dec/2025:14:22:02 -0600] "GET /wp-login.php HTTP/1.1" 200 4728 "-" "Mozilla/5. ... show more 216.26.244.30 - - [24/Dec/2025:14:22:02 -0600] "GET /wp-login.php HTTP/1.1" 200 4728 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.109 Safari/537.36" 216.26.244.30 - - [24/Dec/2025:14:22:03 -0600] "GET /wp-login.php HTTP/1.1" 200 2133 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.109 Safari/537.36" 216.26.244.30 - - [24/Dec/2025:14:22:03 -0600] "POST /wp-login.php HTTP/1.1" 200 2504 "https://tatpl-traffic.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.109 Safari/537.36" 216.26.244.30 - - [24/Dec/2025:14:22:04 -0600] "GET /wp-login.php HTTP/1.1" 301 548 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.109 Safari/537.36" 216.26.244.30 - - [24/Dec/2025:14:22:04 -0600] "GET /wp-login.php HTTP/1.1" 200 2133 "http://tatpl-traffic.com/ ... show less	Web App Attack
🇮🇩 RasyiidWho	2025-12-19 18:33:03 (5 months ago)	ip112.20 . 216.26.244.30 - - [20/Dec/2025:01:33:02 +0700] "GET /wp-login.php HTTP/1.1" 404 548 "-" " ... show more ip112.20 . 216.26.244.30 - - [20/Dec/2025:01:33:02 +0700] "GET /wp-login.php HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Mobile Safari/537.36" ... show less	DDoS Attack Port Scan Brute-Force Bad Web Bot Web App Attack SSH
Anonymous	2025-12-03 17:26:59 (6 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2025-11-26 08:49:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.30 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:49:33.436695 2025] [security2:error] [pid 9491:tid 9491] [client 216.26.244.30:39541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lisadodd.com"] [uri "/.git/HEAD"] [unique_id "aSa_He14FIX-zkdcWNgGEwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:18:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.30 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:18:10.750054 2025] [security2:error] [pid 14538:tid 14538] [client 216.26.244.30:30627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.blastjet.gulftelecom.com"] [uri "/.svn/wc.db"] [unique_id "aSZxcoZaMZg0OfhaPIGfxAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:07:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.30 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:06:59.763158 2025] [security2:error] [pid 15894:tid 15894] [client 216.26.244.30:10471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.operationsresearch-management.science"] [uri "/.git/HEAD"] [unique_id "aSZgwwZbsIeQoXAglrtEoQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:00:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.244.30 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.244.30 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:00:32.228477 2025] [security2:error] [pid 31784:tid 31784] [client 216.26.244.30:18861] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.matronasoy.com"] [uri "/.env"] [unique_id "aSQesKYwPTbmwwZkU8sY1QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.30

🇳🇱 176.65.139.94

🇩🇪 165.22.82.165

🇺🇸 147.185.132.79

🇺🇸 66.132.224.30

🇮🇹 188.241.66.227

🇸🇬 165.22.254.227

🇺🇸 165.22.180.136

🇨🇳 111.228.10.226

🇩🇪 82.165.109.70

🇸🇿 69.63.77.146

🇩🇪 69.5.169.117

🇬🇧 62.60.130.234

🇱🇹 62.60.130.186

🇱🇹 62.60.130.82

🇳🇱 45.148.10.152

🇨🇦 34.118.184.123

🇺🇸 34.86.192.214

🇨🇳 14.29.214.161

🇨🇳 222.186.68.153