JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.252.36

216.26.252.36 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 24%: ?

24%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.252.36

Whois 216.26.252.36

IP Abuse Reports for 216.26.252.36:

This IP address has been reported a total of 19 times from 15 distinct sources. 216.26.252.36 was first reported on October 27th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇮 administrator	2026-06-02 22:13:06 (2 days ago)	2026-06-02 00:04:34,109 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 216.26.252.36 20 ... show more 2026-06-02 00:04:34,109 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 216.26.252.36 2026-06-02 00:04:34,109 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 216.26.252.36 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇦🇺 OZHSV	2026-05-27 10:40:00 (1 week ago)		Email Spam
🇦🇺 oncord	2026-05-23 23:33:10 (1 week ago)	Form spam	Web Spam
🇸🇮 administrator	2026-05-04 17:21:27 (1 month ago)	2026-05-04 18:20:19,909 fail2ban.actions [264717]: NOTICE [ninjafirewall] Ban 216.26.252.36 ... show more 2026-05-04 18:20:19,909 fail2ban.actions [264717]: NOTICE [ninjafirewall] Ban 216.26.252.36 2026-05-04 18:20:19,909 fail2ban.actions [264717]: NOTICE [ninjafirewall] Ban 216.26.252.36 2026-05-04 18:20:19,909 fail2ban.actions [264717]: NOTICE [ninjafirewall] Ban 216.26.252.36 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇱🇻 garmtech.com	2026-04-13 03:24:39 (1 month ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇨🇭 4server	2026-04-11 14:44:58 (1 month ago)	[SatApr1116:44:55.4226672026][security2:error][pid865818:tid865832][client216.26.252.36:0]ModSecurit ... show more [SatApr1116:44:55.4226672026][security2:error][pid865818:tid865832][client216.26.252.36:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"345\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"www.support-ticino.ch\"][uri\"/xmlrpc.php\"][unique_id\"adpeZ7kedsN8BWpTCVflKQAAAAk\"]\,referer:https://www.support-ticino.ch/tag/sicurezza/ show less	Hacking Web App Attack
🇦🇺 MAGIC	2026-03-05 01:20:52 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇭 backslash	2026-01-24 21:40:04 (4 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-17 00:37:59 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.36 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 19:37:55.181178 2026] [security2:error] [pid 31923:tid 31923] [client 216.26.252.36:9509] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.kavahawaii.com"] [uri "/.env"] [unique_id "aWrZ49ncB5sYP4VBVzjucAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-16 20:42:07 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.252.36 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.252.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 15:42:01.957893 2026] [security2:error] [pid 24463:tid 24463] [client 216.26.252.36:18729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.pattifox.com"] [uri "/.env"] [unique_id "aWqimf3fApdle1Y8N0OVDQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 GabrielJST	2026-01-02 11:38:06 (5 months ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 216.26.252.36 (FR/France ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 216.26.252.36 (FR/France/-) show less	Port Scan
🇺🇸 myagent.site	2026-01-01 05:36:28 (5 months ago)	Blocking for trying to access an exploit file: //kickstart.php	Hacking
🇮🇹 VHosting	2025-12-23 11:08:42 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-15 23:21:26 (5 months ago)	wordpress-trap	Web App Attack
🇬🇧 pinguin	2025-12-13 08:17:41 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: //kickstart.php UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 186.96.145.241

🇲🇺 197.225.146.23

🇨🇳 180.76.170.111

🇧🇷 179.185.1.97

🇮🇩 163.7.1.156

🇨🇳 120.241.44.99

🇭🇰 45.249.246.196

🇳🇱 45.148.10.152

🇬🇧 35.203.211.9

🇭🇰 2602:80d:1003::26

🇺🇿 213.230.127.104

🇨🇳 180.184.178.165

🇧🇫 102.178.131.107

🇷🇺 45.152.116.23

🇨🇳 182.44.12.151

🇺🇸 174.138.57.46

🇩🇪 167.94.145.16

🇨🇳 154.8.204.187

🇨🇳 113.121.115.11

🇸🇾 91.144.21.210