JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.243.238

216.26.243.238 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.243.238

Whois 216.26.243.238

IP Abuse Reports for 216.26.243.238:

This IP address has been reported a total of 17 times from 11 distinct sources. 216.26.243.238 was first reported on October 18th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 leithzz	2026-05-30 19:08:12 (1 week ago)	Report by Cloudflare.Time: 2026-05-30T19:07:13Z	DDoS Attack
🇫🇷 MatStef132	2026-05-19 21:11:04 (2 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇫🇷 MatStef132	2026-05-19 20:55:42 (2 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-19 20:21:30 (2 weeks ago)	MatShield L7: blocked on chat.justchat.icu (ua-quarantined)	Bad Web Bot
🇫🇷 MatStef132	2026-05-14 21:32:38 (3 weeks ago)	[mathost.eu] ua-q	DDoS Attack Bad Web Bot Web App Attack
🇪🇸 el-brujo	2026-04-28 15:44:21 (1 month ago)	Cloudflare WAF: Request Path: /123456 Request Query: ?gclid=LRsZsetgw Host: elhacker.net userAgent: ... show more Cloudflare WAF: Request Path: /123456 Request Query: ?gclid=LRsZsetgw Host: elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Action: block Source: ratelimit ASN Description: 3xK Tech GmbH Country: DE Method: GET Timestamp: 2026-04-28T15:44:21Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-02-09 21:56:24 (3 months ago)	216.26.243.238 - - [09/Feb/2026:21:56:06 +0000] "GET /new/.git/config HTTP/1.1" 404 6186 "-" "Mozill ... show more 216.26.243.238 - - [09/Feb/2026:21:56:06 +0000] "GET /new/.git/config HTTP/1.1" 404 6186 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Bad Web Bot Web App Attack
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 10:34:26 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
Anonymous	2026-01-20 04:20:59 (4 months ago)	wordpress-trap	Web App Attack
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:38:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.243.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.243.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:38:26.106250 2025] [security2:error] [pid 26525:tid 26525] [client 216.26.243.238:47071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.myvdi.com"] [uri "/.env"] [unique_id "aSQnkqthVqQZQKANfPI4FAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:34:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.243.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.243.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:34:01.280225 2025] [security2:error] [pid 24223:tid 24223] [client 216.26.243.238:38455] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.trlservice.com"] [uri "/.env"] [unique_id "aSQYeX2hEc6DtJERZQJorwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:49:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.243.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.243.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:49:19.561585 2025] [security2:error] [pid 13821:tid 13821] [client 216.26.243.238:10843] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.mhsalumnifoundation.org"] [uri "/.git/HEAD"] [unique_id "aSPjz-BWvInJcQHn6MXTQQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 171.25.158.74

🇺🇸 159.223.179.163

🇺🇸 128.203.203.4

🇮🇳 103.112.20.218

🇷🇺 176.109.97.11

🇪🇪 83.166.52.138

🇷🇴 80.94.92.184

🇸🇬 43.160.250.239

🇬🇧 35.203.211.51

🇺🇸 34.170.103.78

🇳🇱 5.83.143.122

🇸🇬 172.253.236.210

🇩🇪 167.94.145.28

🇫🇷 144.91.116.124

🇮🇳 139.59.59.165

🇮🇩 128.14.233.253

🇻🇳 113.161.176.135

🇯🇵 107.155.15.8

🇵🇱 87.251.64.158

🇧🇷 45.181.33.218