JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.245.26

216.26.245.26 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 21%: ?

21%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.245.26

Whois 216.26.245.26

IP Abuse Reports for 216.26.245.26:

This IP address has been reported a total of 17 times from 13 distinct sources. 216.26.245.26 was first reported on October 12th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 securejdprop	2026-06-20 15:35:11 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET DROP Spamhaus D ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET DROP Spamhaus DROP Listed Traffic Inbound group 65). Ip 216.26.245.26 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-20 15:35:09.962894941 +0000 UTC show less	Hacking Web App Attack
🇫🇷 Sklurk	2026-06-16 02:45:19 (5 days ago)	Web App Attack	Web App Attack
🇵🇾 armandosaucedo.me	2026-06-11 07:46:44 (1 week ago)	Threat Intelligence via ARMTI, Web Attack: GET /sitemap_index.xml	Web App Attack
🇺🇸 windowsforum	2026-03-28 12:10:19 (2 months ago)	Spam bot registration: triggers=js_challenge, inv_honeypot, pow_fail, username=TedTyp458	Web Spam Bad Web Bot
🇨🇭 Origon	2026-02-09 20:27:34 (4 months ago)	http-sensitive-files - IP: 216.26.245.26 - time="2026-02-09T21:27:34+01:00" level=info msg="(555f66 ... show more http-sensitive-files - IP: 216.26.245.26 - time="2026-02-09T21:27:34+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 216.26.245.26 (DE/200373) : 4h ban on Ip 216.26.245.26" module=db show less	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:10 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇹 VHosting	2025-12-29 05:30:12 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 14:16:15 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 09:16:09.042168 2025] [security2:error] [pid 15392:tid 15392] [client 216.26.245.26:49549] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bigheartskitchen.com"] [uri "/wp-config.php"] [unique_id "aU_qKfZVJY3qpz9oOZNGEAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 agenciahypelab.com.br	2025-12-23 14:36:28 (5 months ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-12-20 15:49:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 20 10:49:51.411873 2025] [security2:error] [pid 20170:tid 20170] [client 216.26.245.26:11921] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cemesur-vision21.com"] [uri "/wp-config.php"] [unique_id "aUbFn7lYBmweFsGDDJgscAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2025-12-05 22:55:14 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 RogueAutomata	2025-11-25 09:50:33 (6 months ago)	Detected malicious request: GET /.env Detections triggered: Environment/config probe Automated user ... show more Detected malicious request: GET /.env Detections triggered: Environment/config probe Automated user-agent Access via IP addr (v4) show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:33:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:33:23.889904 2025] [security2:error] [pid 975132:tid 975132] [client 216.26.245.26:35419] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fibw.com"] [uri "/.env"] [unique_id "aSVbw9PIg_D1dTO6rQ_oIwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:38:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.245.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.245.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:38:08.679968 2025] [security2:error] [pid 31105:tid 31105] [client 216.26.245.26:24677] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cometoorderva.com"] [uri "/.env"] [unique_id "aSVO0NIYYi4rOGJXmvmEnAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-02 16:17:17 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:11:24	Port Scan Brute-Force Exploited Host Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 202.69.36.158

🇮🇩 103.112.245.85

🇺🇸 75.80.69.106

🇳🇱 45.148.10.157

🇺🇸 34.132.126.199

🇧🇬 185.253.160.7

🇻🇳 171.233.234.84

🇧🇷 4.201.96.144

🇮🇷 185.112.148.66

🇧🇷 177.47.169.19

🇳🇱 176.65.139.31

🇺🇸 165.154.172.253

🇸🇦 153.94.74.80

🇺🇸 66.132.195.21

🇳🇱 45.148.10.152

🇳🇱 204.76.203.219

🇨🇴 186.121.41.46

🇨🇷 179.48.248.245

🇫🇮 178.20.210.208

🇺🇸 100.29.192.2