JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.239.174

216.26.239.174 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.239.174

Whois 216.26.239.174

IP Abuse Reports for 216.26.239.174:

This IP address has been reported a total of 17 times from 7 distinct sources. 216.26.239.174 was first reported on October 9th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 oncord	2026-06-07 04:56:31 (2 days ago)	Form spam	Web Spam
🇩🇪 big-cloud.nl	2026-01-17 07:17:10 (4 months ago)	Try to access /uitvaartverenigingappelscha.nl/xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-01-17 05:28:08 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 00:28:01.671104 2026] [security2:error] [pid 1897830:tid 1897830] [client 216.26.239.174:52173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.anneoday.com"] [uri "/.env"] [unique_id "aWsd4cdymRaJs4bT16rDFAAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-16 19:37:55 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 14:37:49.585081 2026] [security2:error] [pid 9297:tid 9297] [client 216.26.239.174:15051] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.autocares-belintxon.com"] [uri "/.env"] [unique_id "aWqTjZugzEwMtQuQKGIhLwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-16 04:08:35 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 15 23:08:30.629325 2026] [security2:error] [pid 12815:tid 12830] [client 216.26.239.174:58603] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "saludmyg.com.neotienda.com"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aWm5vigEB0gfWQI6EQKYNAAAAEc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 09:24:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:23:55.427162 2025] [security2:error] [pid 32723:tid 32723] [client 216.26.239.174:35345] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.battlestem.com"] [uri "/.env"] [unique_id "aSbHK7MFEQttuRN-Aq1vQQAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:25:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:25:42.230782 2025] [security2:error] [pid 19645:tid 19645] [client 216.26.239.174:14815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.bjennehall.com"] [uri "/.git/HEAD"] [unique_id "aSVZ9p9peOPGfJsmtO2ANAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:15:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:15:40.873999 2025] [security2:error] [pid 22549:tid 22549] [client 216.26.239.174:38899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "media1069.com.club1069radio.com"] [uri "/.svn/wc.db"] [unique_id "aSVJjLfzdDd42kogj0jALwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:44:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:44:38.989782 2025] [security2:error] [pid 1858:tid 1858] [client 216.26.239.174:60361] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.coolcustomproducts.com"] [uri "/.env"] [unique_id "aSU0Nv38b3lDAWOgfB4HvAAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:53:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:53:52.015877 2025] [security2:error] [pid 9930:tid 9930] [client 216.26.239.174:35951] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.femalestripperslaquinta.com"] [uri "/.git/HEAD"] [unique_id "aSUoUJlWY5zJ1c4QCpKFWgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:12:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:12:29.010937 2025] [security2:error] [pid 1647140:tid 1647193] [client 216.26.239.174:13529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dermatologyneworleans.com.aafm.us"] [uri "/.env"] [unique_id "aSUencWdNO_bFaD03ZYzeQAAAM8"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-25 03:03:58 (6 months ago)	Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ... show more Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:10:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:10:11.270232 2025] [security2:error] [pid 27055:tid 27055] [client 216.26.239.174:52663] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "galengetting.edgewatertaxidermy.com"] [uri "/.env"] [unique_id "aSUB8_9jXN2ShASBQmEX3QAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:54:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:54:34.396570 2025] [security2:error] [pid 1804:tid 1804] [client 216.26.239.174:53363] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.jinkokyudojo.com"] [uri "/.svn/wc.db"] [unique_id "aST-SoM0jsg5rF6ixwXDAgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 polycoda	2025-10-17 11:25:23 (7 months ago)	📡 Port scan	Hacking Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 154.6.127.148

🇮🇳 223.181.11.87

🇺🇸 209.90.232.26

🇳🇱 176.65.139.232

🇩🇪 157.230.18.133

🇩🇪 154.194.118.10

🇷🇴 80.94.95.242

🇮🇪 54.75.60.175

🇳🇱 45.148.10.147

🇿🇦 41.74.201.50

🇫🇷 2a02:c207:2326:4249::1

🇮🇳 223.233.85.101

🇦🇷 190.30.227.102

🇳🇴 185.253.97.102

🇩🇪 167.94.146.40

🇺🇸 149.40.50.118

🇹🇷 146.19.125.102

🇺🇸 107.172.58.36

🇳🇱 88.210.63.69

🇺🇸 66.132.172.250