JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.252.24

216.26.252.24 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 28%: ?

28%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.252.24

Whois 216.26.252.24

IP Abuse Reports for 216.26.252.24:

This IP address has been reported a total of 14 times from 8 distinct sources. 216.26.252.24 was first reported on October 15th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-03 04:08:28 (3 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇩🇪 FeG Deutschland	2026-06-01 05:24:35 (5 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 pm33	2026-05-31 07:52:50 (6 days ago)	Wordpress login attempts	Brute-Force
🇺🇸 lostswordfish.com	2026-05-29 18:46:03 (1 week ago)	Wordfence waf block on wp20190711M4	Web App Attack
🇫🇷 pm33	2026-05-25 22:28:29 (1 week ago)	Wordpress login attempts	Brute-Force
🇺🇸 TPI-Abuse	2025-12-30 16:17:02 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.24 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 11:16:58.735370 2025] [security2:error] [pid 12488:tid 12488] [client 216.26.252.24:46013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maerynray.com"] [uri "/.svn/wc.db"] [unique_id "aVP6-hr4KlGqr3LFKIRg3QAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 10:08:39 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.24 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 05:08:33.162994 2025] [security2:error] [pid 15031:tid 15031] [client 216.26.252.24:33667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rohrbachfamilyfarms.com"] [uri "/.git/HEAD"] [unique_id "aVJTIfyh_5e081K0-sa7dQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 09:50:00 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.24 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:49:57.957157 2025] [security2:error] [pid 16325:tid 16325] [client 216.26.252.24:33963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kidswow.com"] [uri "/.svn/wc.db"] [unique_id "aVJOxWANFHF6_0ROibpYnQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:17:28 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.24 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:17:23.949958 2025] [security2:error] [pid 1762:tid 1762] [client 216.26.252.24:37729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ficklepassion.com"] [uri "/.git/HEAD"] [unique_id "aVIA0zQqPYvxbnlacusSDQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-12-18 21:26:07 (5 months ago)	WP Login Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-12-07 17:11:24 (5 months ago)	WP Login Scan Activities	Web App Attack
🇺🇸 Psycho Solutions LLC	2025-11-08 16:04:07 (6 months ago)	Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-json/wp/v2/users - User A ... show more Detected Wordpress Scanning. - Request Method: GET - Target: {PC} wp-json/wp/v2/users - User Agent: N/A - Timestamp: 11/8/2025 4:04 pm (UTC-6) show less	Web Spam Hacking Bad Web Bot Web App Attack
Anonymous	2025-11-06 21:50:17 (7 months ago)	$f2bV_matches	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-15 10:52:10 (7 months ago)	WP Login Scan Activities	Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇦🇷 200.2.121.53

🇷🇺 188.92.241.148

🇩🇪 167.94.146.73

🇻🇳 157.66.26.151

🇷🇴 92.118.39.236

🇨🇳 14.103.25.86

🇩🇪 5.75.225.42

🇺🇸 2001:470:2cc:1::162

🇩🇪 192.248.179.75

🇺🇸 162.216.149.221

🇺🇸 147.185.132.191

🇺🇸 146.88.241.125

🇬🇧 45.82.76.138

🇬🇧 35.203.211.155

🇧🇬 5.188.206.34

🇮🇪 3.253.10.143

🇺🇸 2604:a880:4:1d0::1ff:a000

🇺🇸 2001:470:1:fb5::1c4

🇮🇳 182.95.223.50