JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.239.206

216.26.239.206 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 3%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.239.206

Whois 216.26.239.206

IP Abuse Reports for 216.26.239.206:

This IP address has been reported a total of 7 times from 4 distinct sources. 216.26.239.206 was first reported on October 24th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 thetomtaylor.co.uk	2026-06-04 19:08:02 (4 days ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 22:29:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.206 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 17:29:22.236089 2025] [security2:error] [pid 20070:tid 20070] [client 216.26.239.206:19557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "innovacionesnimba.com"] [uri "/.env"] [unique_id "aSjQwuJD5TXxyp5mOFisfQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:44:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.206 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:44:08.711023 2025] [security2:error] [pid 3811339:tid 3811339] [client 216.26.239.206:14901] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bokharienterprises.com"] [uri "/.env"] [unique_id "aSQo6IQ9L-oskxzOD3-a2AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:04:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.206 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:04:33.643334 2025] [security2:error] [pid 26625:tid 26625] [client 216.26.239.206:22677] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.supaskills.com"] [uri "/.git/HEAD"] [unique_id "aSQDgUhaIYTA7yQF7MPeywAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:12:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.206 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:12:03.143911 2025] [security2:error] [pid 16735:tid 16735] [client 216.26.239.206:15885] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.kreweofblackbeardsrevenge.com"] [uri "/.svn/wc.db"] [unique_id "aSPpI7c5dYG69BVgSm1SHgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-01 23:39:00 (7 months ago)	Unauthorized connection attempt	Brute-Force
🇳🇱 EGP Abuse Dept	2025-10-24 10:29:54 (7 months ago)	Unauthorized connection to SSH port 22	Port Scan Hacking SSH

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.10.42.66

🇺🇸 194.62.107.191

🇷🇺 178.178.222.62

🇫🇮 147.185.133.147

🇨🇳 121.229.156.29

🇨🇳 115.231.78.3

🇺🇸 57.151.128.128

🇩🇪 45.135.194.24

🇺🇸 216.25.89.132

🇷🇺 188.134.69.129

🇧🇷 177.72.87.7

🇧🇷 177.61.176.110

🇫🇷 176.172.239.193

🇳🇱 172.94.9.136

🇬🇧 87.236.176.114

🇮🇱 85.250.52.63

🇨🇳 218.91.47.96

🇺🇸 159.223.169.110

🇰🇷 120.29.140.188

🇩🇪 104.23.239.145