JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.248.184

216.26.248.184 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.248.184

Whois 216.26.248.184

IP Abuse Reports for 216.26.248.184:

This IP address has been reported a total of 12 times from 7 distinct sources. 216.26.248.184 was first reported on September 30th 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:57 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇦🇺 MAGIC	2025-12-12 00:29:32 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-25 06:30:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:30:06.391940 2025] [security2:error] [pid 10747:tid 10769] [client 216.26.248.184:13209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.joanagauer.com"] [uri "/.svn/wc.db"] [unique_id "aSVM7l2GfO2s-Qdwr6eF9QAAAJE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:12:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:12:53.038975 2025] [security2:error] [pid 6319:tid 6319] [client 216.26.248.184:17921] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.anywheregarden.com"] [uri "/.git/HEAD"] [unique_id "aSVI5d8AyjoIryi8kjCrKwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:41:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:41:18.752576 2025] [security2:error] [pid 20314:tid 20314] [client 216.26.248.184:46287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.loriatrading.com"] [uri "/.git/HEAD"] [unique_id "aSVBfv8RXw6tzUbW-dDLjQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:13:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:13:40.171926 2025] [security2:error] [pid 3212:tid 3212] [client 216.26.248.184:43519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.eandgenergy.com"] [uri "/.svn/wc.db"] [unique_id "aSUs9OoHKZAxmotlv567tgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:48:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:48:48.490001 2025] [security2:error] [pid 14657:tid 14657] [client 216.26.248.184:16909] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.gonzalovaralla.com"] [uri "/.env"] [unique_id "aSUnIOHKmfVfK9fbjg1E4gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:08:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.248.184 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:08:34.682068 2025] [security2:error] [pid 29767:tid 29767] [client 216.26.248.184:28945] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.rollinchassis.com"] [uri "/.svn/wc.db"] [unique_id "aSUPolKS3oLCXMnGbiuBkQAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-11-24 20:50:27 (6 months ago)	Form spam	Web Spam
🇫🇷 tecnicorioja	2025-10-25 10:01:11 (7 months ago)	Failed password for invalid user Oct 25 08:45:13 port 59805	Brute-Force SSH
Anonymous	2025-10-23 23:56:23 (7 months ago)	...	Brute-Force SSH
🇮🇹 Rosh	2025-09-30 15:30:09 (8 months ago)	[09/30/25 17:30:09] SSH: authentication failure	Brute-Force SSH

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 201.140.123.130

🇮🇳 182.18.180.44

🇫🇷 144.91.67.196

🇨🇦 54.39.6.17

🇧🇷 45.205.1.68

🇯🇵 43.165.167.69

🇷🇴 2.57.121.112

🇮🇳 195.35.44.252

🇩🇪 193.24.210.73

🇧🇷 168.0.224.116

🇸🇪 155.4.209.51

🇵🇰 154.57.216.142

🇨🇴 143.105.99.179

🇧🇬 79.124.40.170

🇧🇬 79.124.40.82

🇹🇷 78.174.97.41

🇺🇸 52.173.123.151

🇨🇳 36.150.236.49

🇷🇴 141.98.83.186

🇸🇬 140.245.125.67