JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.248.15

216.26.248.15 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.248.15

Whois 216.26.248.15

IP Abuse Reports for 216.26.248.15:

This IP address has been reported a total of 13 times from 9 distinct sources. 216.26.248.15 was first reported on October 29th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 spamverify.com	2026-06-16 08:40:20 (1 day ago)	Honeypot Hit: WordPress Login	Web Spam Blog Spam Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-13 06:06:37 (4 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 216.26.248.15 (TH/Thailand/-): 1 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 216.26.248.15 (TH/Thailand/-): 1 in the last 3600 secs show less	Web App Attack
🇩🇪 Carsten	2026-02-12 05:06:14 (4 months ago)	GET [.env.save]	Port Scan
🇺🇸 TPI-Abuse	2025-11-26 01:11:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:10:54.321336 2025] [security2:error] [pid 3365543:tid 3365655] [client 216.26.248.15:21117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.aassone.com"] [uri "/.env"] [unique_id "aSZTnmzJ-U6IElkF6xM3WwAAAcY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:12:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:12:10.034315 2025] [security2:error] [pid 5194:tid 5194] [client 216.26.248.15:57149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.highaltitudebaking.com"] [uri "/.git/HEAD"] [unique_id "aSZF2tysDK5lLnnJUmRwxwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:49:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:49:33.642498 2025] [security2:error] [pid 3811997:tid 3811997] [client 216.26.248.15:33543] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.acgprinting.computersraleigh.com"] [uri "/.env"] [unique_id "aSQqLW3BOViTB5jrSogD-wAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:41:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:41:49.878560 2025] [security2:error] [pid 13570:tid 13570] [client 216.26.248.15:43165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wendywonjungkim.title26.com"] [uri "/.env"] [unique_id "aSPwHUh7iah0g3gi9Idg-wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:23:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:23:42.245203 2025] [security2:error] [pid 26213:tid 26213] [client 216.26.248.15:50793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.guitarinfoplace.com"] [uri "/.git/HEAD"] [unique_id "aSPdzvx8PDFdEtE6jgAyiAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 madeit	2025-11-04 16:40:37 (7 months ago)		Web App Attack
Anonymous	2025-11-02 15:40:24 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:22:53	Port Scan Brute-Force Exploited Host Web App Attack
🇫🇷 applemooz	2025-11-01 12:25:36 (7 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
Anonymous	2025-10-30 14:18:07 (7 months ago)	WordPress Brute Force	Brute-Force
🇩🇪 Marc	2025-10-29 18:56:16 (7 months ago)		Brute-Force Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 198.244.168.56

🇷🇴 194.102.73.93

🇮🇳 182.95.185.158

🇺🇸 172.239.51.96

🇷🇴 141.98.83.240

🇮🇩 108.137.132.87

🇳🇱 91.92.42.28

🇺🇸 199.15.227.86

🇹🇼 198.235.24.47

🇵🇭 180.191.169.177

🇺🇸 172.253.1.26

🇺🇸 170.231.251.158

🇧🇩 61.247.176.110

🇺🇸 52.176.211.73

🇳🇱 45.148.10.183

🇸🇬 45.78.204.254

🇫🇮 37.27.59.165

🇫🇮 2a00:1450:4010:c0a::120

🇮🇳 2404:6800:4000:1001::126

🇺🇸 2001:470:1:c84::2d0