JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.245.187

216.26.245.187 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.245.187

Whois 216.26.245.187

IP Abuse Reports for 216.26.245.187:

This IP address has been reported a total of 8 times from 6 distinct sources. 216.26.245.187 was first reported on November 14th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇵🇱 sefinek.net	2026-01-16 12:03:04 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇱🇻 garmtech.com	2026-01-12 07:42:35 (4 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 09-42.216.26.245.187.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 09-42.216.26.245.187.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 22:35:47 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.245.187 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.245.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 17:35:43.196354 2025] [security2:error] [pid 18650:tid 18650] [client 216.26.245.187:17957] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaelward.com"] [uri "/.git/HEAD"] [unique_id "aVBfP4TfAEeXUjLjQ9OdbwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 20:42:18 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.245.187 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.245.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 15:42:14.527229 2025] [security2:error] [pid 29338:tid 29338] [client 216.26.245.187:11133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mhext.com"] [uri "/.env"] [unique_id "aVBEprdngD1S4bsH6ZiybgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 19:43:56 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.245.187 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.245.187 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 14:43:50.739308 2025] [security2:error] [pid 24370:tid 24370] [client 216.26.245.187:29733] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fha-roster.com"] [uri "/.env"] [unique_id "aVA29pPKAZSRD57dL_L-5QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 LTM	2025-12-27 07:20:02 (5 months ago)	WebServer - Attempts to exploit	Hacking Brute-Force Web App Attack
Anonymous	2025-11-14 15:14:21 (6 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/14 09:12:23	Port Scan Brute-Force Exploited Host Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 128.199.142.124

🇱🇹 81.30.98.144

🇮🇳 2409:40f2:304:c4fc:adda:eae:f65b:1943

🇺🇦 212.8.39.172

🇺🇸 192.3.206.66

🇳🇱 176.65.139.79

🇮🇳 103.174.34.49

🇨🇳 101.68.15.96

🇩🇪 94.156.232.116

🇮🇶 93.180.222.228

🇫🇷 92.133.68.16

🇺🇸 64.62.197.197

🇭🇰 43.128.60.40

🇮🇳 27.97.218.16

🇩🇪 2a02:4780:3f:2124:0:972:b4f0:1

🇨🇳 222.92.61.242

🇨🇳 221.13.93.97

🇧🇴 190.181.25.210

🇺🇸 157.230.191.91

🇺🇸 52.186.171.52