JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.224.103

216.26.224.103 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 22%: ?

22%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.224.103

Whois 216.26.224.103

IP Abuse Reports for 216.26.224.103:

This IP address has been reported a total of 47 times from 17 distinct sources. 216.26.224.103 was first reported on September 27th 2025, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 anycast_ac	2026-06-19 11:29:51 (15 hours ago)	[DDoS Attacker] This IP was attacking website anycast.ac and sent 1719 requests on port 443	DDoS Attack Web App Attack
🇫🇷 Sklurk	2026-06-11 11:37:28 (1 week ago)	Web App Attack	Web App Attack
🇫🇷 MatStef132	2026-05-19 21:11:03 (1 month ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-19 20:59:02 (1 month ago)	MatShield L7: blocked on dstat.selify.io (ua-quarantined)	Bad Web Bot
🇫🇷 MatStef132	2026-05-14 21:32:37 (1 month ago)	[mathost.eu] ua-q	DDoS Attack Bad Web Bot Web App Attack
🇪🇸 el-brujo	2026-04-28 15:44:20 (1 month ago)	Cloudflare WAF: Request Path: /123456 Request Query: ?msclkid=AN3J1777391060415 Host: elhacker.net u ... show more Cloudflare WAF: Request Path: /123456 Request Query: ?msclkid=AN3J1777391060415 Host: elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.6099.129 Safari/537.36 Action: block Source: ratelimit ASN Description: 3xK Tech GmbH Country: US Method: GET Timestamp: 2026-04-28T15:44:20Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-01-13 16:14:55 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 216.26.224.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 216.26.224.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 13 11:14:50.798609 2026] [security2:error] [pid 4705:tid 4705] [client 216.26.224.103:42531] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.goddesskink.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.goddesskink.com"] [uri "/new/wp-json/wp/v2/users"] [unique_id "aWZvetYsq9vDMGLaWuqECQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇺🇸 COMPLEX	2025-12-15 04:28:25 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from US. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protoc ... show more Triggered Cloudflare WAF (l7ddos) from US. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
Anonymous	2025-12-03 05:20:21 (6 months ago)	botnet	DDoS Attack
Anonymous	2025-11-29 13:08:25 (6 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.29 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.29 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 06:31:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.224.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.224.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:31:45.441974 2025] [security2:error] [pid 18697:tid 18697] [client 216.26.224.103:18621] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.dutchlake.com"] [uri "/.svn/wc.db"] [unique_id "aSae0VFr6TOU58-9DIMBywAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:55:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.224.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.224.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:55:19.107666 2025] [security2:error] [pid 3599211:tid 3599234] [client 216.26.224.103:60423] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.aceelectricalsupplies.com"] [uri "/.svn/wc.db"] [unique_id "aSaWRyWBb6LubLi-gSEUTwAAAFU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:fa18:f2fe:83ee:b4e0:f569:47a6:b576

🇺🇸 216.169.136.31

🇵🇭 154.18.197.35

🇷🇴 79.115.35.27

🇰🇷 218.149.235.152

🇨🇳 218.78.59.30

🇧🇷 205.210.31.234

🇺🇸 205.210.31.70

🇨🇱 186.64.123.124

🇳🇱 185.242.226.59

🇭🇳 170.83.116.126

🇸🇬 165.232.170.62

🇮🇳 152.59.199.178

🇳🇱 91.92.40.36

🇳🇱 45.148.10.152

🇺🇸 20.168.127.104

🇷🇺 5.164.6.184

🇷🇴 2.57.121.112

🇰🇷 211.180.105.241

🇧🇷 205.210.31.164