JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.243.127

216.26.243.127 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.243.127

Whois 216.26.243.127

IP Abuse Reports for 216.26.243.127:

This IP address has been reported a total of 9 times from 6 distinct sources. 216.26.243.127 was first reported on November 15th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-02-09 21:56:00 (4 months ago)	216.26.243.127 - - [09/Feb/2026:21:55:54 +0000] "GET /admin/.env HTTP/1.1" 302 645 "-" "Mozilla/5.0 ... show more 216.26.243.127 - - [09/Feb/2026:21:55:54 +0000] "GET /admin/.env HTTP/1.1" 302 645 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Bad Web Bot Web App Attack
🇸🇬 pusathosting.com	2026-01-03 05:50:28 (5 months ago)	24ds22 bruteforce	Brute-Force Web App Attack
🇳🇱 jjnxpct	2025-11-25 04:54:13 (6 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:42:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.243.127 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.243.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:42:21.154666 2025] [security2:error] [pid 27439:tid 27439] [client 216.26.243.127:16581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.boatpeople.org"] [uri "/.svn/wc.db"] [unique_id "aSQofXOwvl_-qHrUGldIPQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:14:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.243.127 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.243.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:13:25.278328 2025] [security2:error] [pid 31011:tid 31011] [client 216.26.243.127:19867] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "babyshowernapkins.com"] [uri "/.git/HEAD"] [unique_id "aSQTpQVpMAmbmQw4cr_QbAAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:42:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.243.127 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.243.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:42:07.004775 2025] [security2:error] [pid 3965136:tid 3965149] [client 216.26.243.127:41013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bible.jd-web-designs.com"] [uri "/.env"] [unique_id "aSPwLzGAQlEvBxWyTv_PtgAAAYs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:30:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.243.127 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.243.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:30:16.580969 2025] [security2:error] [pid 21712:tid 21712] [client 216.26.243.127:47533] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.dhsgrad.net"] [uri "/.svn/wc.db"] [unique_id "aSPfWGV4Hgz37awwD2BrzQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-11-15 21:32:01 (7 months ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 216.26.243.127 (GB/United Kingdom/-) ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 216.26.243.127 (GB/United Kingdom/-): 1 in the last 3600 secs show less	Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 198.244.168.239

🇧🇷 189.51.33.121

🇮🇩 163.7.8.178

🇺🇦 79.143.45.75

🇺🇸 66.132.186.190

🇱🇹 45.227.254.170

🇺🇸 40.126.29.10

🇨🇭 209.99.190.113

🇱🇹 141.98.11.83

🇨🇳 61.137.129.170

🇳🇱 45.198.224.143

🇬🇧 35.203.210.253

🇨🇳 14.103.117.143

🇺🇸 5.83.144.23

🇺🇸 216.151.130.38

🇺🇸 192.81.241.224

🇧🇷 189.51.35.189

🇧🇷 189.51.33.77

🇧🇷 189.51.33.27

🇭🇰 152.32.254.222