JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.239.40

216.26.239.40 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 21%: ?

21%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.239.40

Whois 216.26.239.40

IP Abuse Reports for 216.26.239.40:

This IP address has been reported a total of 24 times from 12 distinct sources. 216.26.239.40 was first reported on October 1st 2025, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 pm33	2026-06-15 06:42:20 (15 hours ago)	Wordpress login attempts	Brute-Force
🇫🇷 ELYAZ	2026-06-14 00:15:44 (1 day ago)	(y4) Failed scan -byebye- from 216.26.239.40 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇲🇽 octageeks.com	2026-06-01 04:08:34 (2 weeks ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇫🇷 ELYAZ	2026-05-31 04:13:05 (2 weeks ago)	(y4) Failed scan -byebye- from 216.26.239.40 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇫🇷 ELYAZ	2026-05-30 03:08:37 (2 weeks ago)	(y4) Failed scan -byebye- from 216.26.239.40 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇦🇺 2000cn.com.au	2026-02-11 21:05:08 (4 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:00:55 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-25 06:38:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:38:39.208913 2025] [security2:error] [pid 3230:tid 3230] [client 216.26.239.40:47973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "amazedbyu.com.dcmillerjr.com"] [uri "/.git/HEAD"] [unique_id "aSVO7x5KlAhYGzIPnW664gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:50:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:50:28.558058 2025] [security2:error] [pid 31017:tid 31017] [client 216.26.239.40:56329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.sekelconsulting.com"] [uri "/.git/HEAD"] [unique_id "aSULZJquAACNEEaRyY_16wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:31:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:31:40.339526 2025] [security2:error] [pid 1647141:tid 1647209] [client 216.26.239.40:19927] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.accushot.com"] [uri "/.git/HEAD"] [unique_id "aSUG_NffCdpZ5cNrCNdSwAAAAUQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:21:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:21:04.931079 2025] [security2:error] [pid 11225:tid 11225] [client 216.26.239.40:19291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.fresh-cut.us"] [uri "/.git/HEAD"] [unique_id "aST2cPBdHaYpzOTXIVLLDwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:52:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:52:38.154568 2025] [security2:error] [pid 26961:tid 26961] [client 216.26.239.40:36315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.okwellbeing.com"] [uri "/.svn/wc.db"] [unique_id "aSQc1ljgfW1Mzc6EfvslWwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:28:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:28:35.204803 2025] [security2:error] [pid 28967:tid 28967] [client 216.26.239.40:14127] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "askthetarot.cards"] [uri "/.svn/wc.db"] [unique_id "aSQJI-Bc2u4bmKGMyplSUQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-24 07:16:46 (6 months ago)	Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing ... show more Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:48:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.239.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:48:10.968399 2025] [security2:error] [pid 518:tid 518] [client 216.26.239.40:25165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.red-jacket.com"] [uri "/.svn/wc.db"] [unique_id "aSP_qr2gIMulS6wKoBrR9AAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 103.219.32.239

🇮🇩 103.124.196.101

🇵🇱 54.38.52.18

🇺🇸 23.228.166.252

🇩🇪 217.92.30.179

🇺🇸 205.210.31.91

🇳🇱 45.148.10.240

🇰🇷 14.63.196.175

🇨🇦 3.96.135.217

🇺🇬 196.0.120.6

🇮🇹 151.57.236.26

🇨🇳 115.190.53.236

🇨🇳 113.206.147.231

🇳🇱 91.92.40.11

🇫🇷 85.112.201.196

🇷🇺 80.93.60.126

🇰🇷 61.37.150.6

🇩🇪 43.228.157.9

🇨🇳 222.162.70.168

🇧🇷 177.93.72.158