JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.56.28.238

193.56.28.238 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.56.28.238

Whois 193.56.28.238

IP Abuse Reports for 193.56.28.238:

This IP address has been reported a total of 22 times from 14 distinct sources. 193.56.28.238 was first reported on September 29th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇩🇪 stinpriza	2026-01-31 19:22:15 (4 months ago)	Web App Attack	Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 09:15:42 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:00:49 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 inspectorgdgt	2025-12-24 22:00:00 (5 months ago)	VPN brute-force login attempts observed (bulk report).	Brute-Force
Anonymous	2025-12-14 21:21:03 (6 months ago)	botnet	DDoS Attack
🇦🇺 MAGIC	2025-12-12 00:28:46 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-12-03 06:39:07 (6 months ago)	botnet	DDoS Attack
🇫🇮 Shaik Sai Meera	2025-11-27 22:05:11 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 18:32:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.238 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 13:32:45.336830 2025] [security2:error] [pid 13677:tid 13677] [client 193.56.28.238:46677] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magacine.tv"] [uri "/.git/HEAD"] [unique_id "aSdHzRV16jr3-OvMjW613QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-11-25 22:59:11 (6 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2025-11-24. show less	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-11-24 09:49:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.238 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:49:16.859494 2025] [security2:error] [pid 243932:tid 243969] [client 193.56.28.238:48889] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.bbpuertadelsol.com"] [uri "/.env"] [unique_id "aSQqHFc8EtVRkmyAMesM0AAAAQQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:40:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.238 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:40:38.988686 2025] [security2:error] [pid 20996:tid 20996] [client 193.56.28.238:37339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.mutualdrivingschool.com"] [uri "/.svn/wc.db"] [unique_id "aSPv1kUMKlqb0D9N3tCwtAAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:56:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.238 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:56:36.387345 2025] [security2:error] [pid 10693:tid 10746] [client 193.56.28.238:49245] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.jd-mason.com"] [uri "/.git/HEAD"] [unique_id "aSPlhBp_fjf3XoBXB35XFwAAANE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:44:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 193.56.28.238 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.56.28.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:44:45.464040 2025] [security2:error] [pid 8573:tid 8573] [client 193.56.28.238:41941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.alpha-hk.com"] [uri "/.git/HEAD"] [unique_id "aSPUraL3PMmR0DeyuA_ufwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.220.24.25

🇨🇦 85.217.149.12

🇮🇳 49.36.239.21

🇺🇸 208.112.107.54

🇧🇷 201.55.184.92

🇳🇱 185.224.128.16

🇫🇷 185.177.72.53

🇫🇷 178.171.109.4

🇺🇸 143.42.1.213

🇫🇷 91.231.89.111

🇺🇸 66.132.186.207

🇳🇱 45.148.10.157

🇺🇸 31.59.40.94

🇺🇸 184.105.139.68

🇮🇳 182.95.184.110

🇸🇬 103.189.234.244

🇫🇷 91.196.152.103

🇺🇸 74.82.47.4

🇱🇹 62.60.130.233

🇮🇳 49.42.125.126