JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.246.44

216.26.246.44 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 9%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.246.44

Whois 216.26.246.44

IP Abuse Reports for 216.26.246.44:

This IP address has been reported a total of 16 times from 10 distinct sources. 216.26.246.44 was first reported on October 26th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 4server	2026-05-10 11:25:16 (3 weeks ago)	[SunMay1013:25:13.4026722026][security2:error][pid3407998:tid3408001][client216.26.246.44:0]ModSecur ... show more [SunMay1013:25:13.4026722026][security2:error][pid3407998:tid3408001][client216.26.246.44:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"4server.ch\"][uri\"/.env\"][unique_id\"agBrGcygRos8oFPzLV_WagAAAIE\"] show less	Hacking Web App Attack
🇮🇩 securejdprop	2026-05-07 16:49:42 (4 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET DROP Spamhaus D ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET DROP Spamhaus DROP Listed Traffic Inbound group 63). Ip 216.26.246.44 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-05-07 16:49:40.380263967 +0000 UTC show less	Hacking Web App Attack
🇩🇪 kjaerulff	2026-03-17 15:55:02 (2 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
Anonymous	2026-01-05 20:30:06 (4 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-12-29 10:09:04 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 05:08:57.817376 2025] [security2:error] [pid 11637:tid 11637] [client 216.26.246.44:44531] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rohrbachfamilyfarms.com"] [uri "/.svn/wc.db"] [unique_id "aVJTORJAMgv6SZKCfQAIbQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:40:34 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:40:27.867957 2025] [security2:error] [pid 28435:tid 28435] [client 216.26.246.44:28125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oakvillenaturopathicclinic.com"] [uri "/.svn/wc.db"] [unique_id "aVIiWy-p1Uia_yUdu8hmpQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:04:29 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:04:26.442751 2025] [security2:error] [pid 29163:tid 29163] [client 216.26.246.44:29789] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "markgreenhouse.com"] [uri "/.env"] [unique_id "aVIZ6v4Z6_y1GSYTw_berAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:11:29 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:11:22.767461 2025] [security2:error] [pid 15779:tid 15779] [client 216.26.246.44:53899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "globalmonitoringinc.com"] [uri "/.git/HEAD"] [unique_id "aVINepml2jP9EbE0_Xp2aQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:32:11 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:32:05.097362 2025] [security2:error] [pid 11395:tid 11395] [client 216.26.246.44:28117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "z-industrial.com"] [uri "/.env"] [unique_id "aVIEReIpEvtb4J2JwuUlpAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 21:32:48 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 16:32:43.277325 2025] [security2:error] [pid 28312:tid 28312] [client 216.26.246.44:20981] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zedsaids.com"] [uri "/.svn/wc.db"] [unique_id "aTdD-8kCj5izUc94MceDXwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-07 21:20:16 (5 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 07:06:21 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.246.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 02:06:14.753406 2025] [security2:error] [pid 19041:tid 19041] [client 216.26.246.44:33927] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "feathersinthewind.com"] [uri "/.svn/wc.db"] [unique_id "aTKEZmM5W0x65KvfzA4ehgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-11-07 23:14:36 (6 months ago)	WP Login Scan Activities	Web App Attack
Anonymous	2025-11-02 13:53:31 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:39:06	Port Scan Brute-Force Exploited Host Web App Attack
🇺🇸 Psycho Solutions LLC	2025-10-26 23:34:32 (7 months ago)	Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N ... show more Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-login.php - User Agent: N/A - Timestamp: 10/26/2025 11:34 pm (UTC-6) show less	Web Spam Hacking Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.161.227

🇺🇸 216.25.89.68

🇭🇰 152.32.131.10

🇹🇭 125.27.11.184

🇨🇳 115.190.181.231

🇲🇴 182.93.7.194

🇺🇸 169.228.66.212

🇩🇪 167.172.187.11

🇺🇸 165.154.173.74

🇺🇸 147.185.132.135

🇺🇸 108.178.17.26

🇨🇳 106.75.251.101

🇫🇷 91.231.89.244

🇫🇷 91.231.89.140

🇷🇴 80.94.95.242

🇧🇬 46.55.211.4

🇺🇸 162.216.149.137

🇫🇮 147.185.133.212

🇭🇰 146.70.79.47

🇳🇱 93.123.109.62