JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.246.4

216.26.246.4 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 15%: ?

15%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.246.4

Whois 216.26.246.4

IP Abuse Reports for 216.26.246.4:

This IP address has been reported a total of 18 times from 10 distinct sources. 216.26.246.4 was first reported on October 21st 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇮 administrator	2026-06-02 22:12:06 (1 week ago)	2026-06-02 00:02:58,710 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 216.26.246.4 202 ... show more 2026-06-02 00:02:58,710 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 216.26.246.4 2026-06-02 00:02:58,710 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 216.26.246.4 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇦🇺 oncord	2026-05-26 14:43:54 (2 weeks ago)	Form spam	Web Spam
🇸🇮 administrator	2026-05-04 16:46:31 (1 month ago)	2026-04-19 14:48:13,767 fail2ban.actions [1048]: NOTICE [ninjafirewall] Ban 216.26.246.4 202 ... show more 2026-04-19 14:48:13,767 fail2ban.actions [1048]: NOTICE [ninjafirewall] Ban 216.26.246.4 2026-04-19 14:48:13,767 fail2ban.actions [1048]: NOTICE [ninjafirewall] Ban 216.26.246.4 2026-05-04 18:26:32,814 fail2ban.actions [264717]: NOTICE [ninjafirewall] Ban 216.26.246.4 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇱🇻 garmtech.com	2026-04-22 20:34:57 (1 month ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
Anonymous	2026-04-04 19:56:09 (2 months ago)	Forum/form spam	Web Spam
🇱🇻 garmtech.com	2026-03-30 07:14:19 (2 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
Anonymous	2026-02-11 09:01:00 (4 months ago)	SMS pumping	DDoS Attack VPN IP Bad Web Bot Web App Attack
🇺🇸 fortypoundhead	2026-01-18 20:47:19 (4 months ago)	SQL Injection Attempt	SQL Injection Web App Attack
Anonymous	2026-01-05 20:37:06 (5 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇨🇭 backslash	2025-12-29 04:20:07 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 06:04:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:03:51.493278 2025] [security2:error] [pid 13111:tid 13150] [client 216.26.246.4:17899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.dubarch.com"] [uri "/.svn/wc.db"] [unique_id "aSaYRyv-PRieONCNNDIx4gAAAUU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:51:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:51:34.870251 2025] [security2:error] [pid 13963:tid 13963] [client 216.26.246.4:25333] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.shepherdsstaff.net"] [uri "/.env"] [unique_id "aSZrNuJfwAospfWRwwDayAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:10:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:09:53.440873 2025] [security2:error] [pid 11987:tid 11987] [client 216.26.246.4:44391] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.ladymfashion.com"] [uri "/.svn/wc.db"] [unique_id "aSZhcecfyu7l1gMtNSUsegAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:11:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:11:34.142020 2025] [security2:error] [pid 5492:tid 5492] [client 216.26.246.4:26607] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.burlison.com"] [uri "/.git/HEAD"] [unique_id "aSUsdia_gGso9E2HSoml5AAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:43:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:43:03.518855 2025] [security2:error] [pid 29117:tid 29117] [client 216.26.246.4:34279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.partybussantafe.com"] [uri "/.svn/wc.db"] [unique_id "aSUlx0eb-hHdo6S2uVRrWAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.33

🇸🇬 172.217.47.28

🇫🇷 161.97.91.117

🇨🇳 117.14.150.249

🇬🇧 89.116.78.50

🇺🇸 208.84.100.215

🇺🇸 173.239.214.153

🇳🇱 173.194.170.81

🇺🇸 66.132.224.20

🇺🇸 45.45.237.208

🇧🇬 31.210.47.210

🇺🇸 209.90.232.251

🇧🇷 186.238.247.238

🇻🇳 171.251.234.163

🇺🇸 108.167.177.224

🇿🇦 102.33.32.29

🇧🇬 79.124.62.230

🇲🇾 49.124.148.189

🇬🇧 35.203.211.167

🇮🇳 14.97.58.74