JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.240.106

216.26.240.106 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 24%: ?

24%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.240.106

Whois 216.26.240.106

IP Abuse Reports for 216.26.240.106:

This IP address has been reported a total of 23 times from 7 distinct sources. 216.26.240.106 was first reported on October 10th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-25 07:50:15 (1 day ago)	216.26.240.106 - - [25/Jun/2026:07:50:13 +0000] "GET /backup.sql.tar HTTP/1.1" 404 49845 "-" "Mozill ... show more 216.26.240.106 - - [25/Jun/2026:07:50:13 +0000] "GET /backup.sql.tar HTTP/1.1" 404 49845 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-24 20:44:03 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 FeG Deutschland	2026-06-23 00:51:03 (3 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12	Exploited Host Web App Attack
Anonymous	2026-06-09 21:37:10 (2 weeks ago)	216.26.240.106 - - [09/Jun/2026:23:37:09 +0200] "GET /db/ HTTP/1.1" 404 52170 "-" "Mozilla/5.0 (Wind ... show more 216.26.240.106 - - [09/Jun/2026:23:37:09 +0200] "GET /db/ HTTP/1.1" 404 52170 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" show less	Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-05-14 09:07:02 (1 month ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [mx02]	Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-05-13 23:07:02 (1 month ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [mx01]	Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-05-13 22:06:02 (1 month ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-03-20 03:33:06 (3 months ago)	IM360 WAF: SQL Injection via WordPress Link functionality MV:49 A/**/ND 1=1	SQL Injection
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:27 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-27 04:08:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 23:08:16.907601 2025] [security2:error] [pid 6101:tid 6101] [client 216.26.240.106:26651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.sitexpress.es"] [uri "/.env"] [unique_id "aSfOsGAndw3dcaFvzxZPRgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 17:32:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 12:32:39.928354 2025] [security2:error] [pid 9123:tid 9123] [client 216.26.240.106:13187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.barristersdeli.com"] [uri "/.env"] [unique_id "aSc5t8iq3lE9oOLgqXInsQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:20:45 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:20:39.869784 2025] [security2:error] [pid 31850:tid 31850] [client 216.26.240.106:48941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.stpetersplayers.co.uk"] [uri "/.env"] [unique_id "aSVYx6Bjwdd6DUymK1JhIwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:41:28 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:41:22.849304 2025] [security2:error] [pid 4618:tid 4618] [client 216.26.240.106:40061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.teakprop.com"] [uri "/.env"] [unique_id "aSVPkqc7EhznsQiJxMYVNQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:16:28 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:16:21.548401 2025] [security2:error] [pid 23930:tid 23930] [client 216.26.240.106:60263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.carminestogo.com"] [uri "/.git/HEAD"] [unique_id "aSVJtQnWUpeRS2aGr-9MkQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:28:12 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:28:09.279419 2025] [security2:error] [pid 10333:tid 10333] [client 216.26.240.106:46973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.thebronsons.com"] [uri "/.env"] [unique_id "aSU-abIOQcgedwEf7dpU3gAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.93.89.79

🇳🇱 91.92.40.240

🇨🇭 209.99.190.200

🇺🇸 172.245.112.205

🇺🇸 158.94.187.156

🇫🇷 146.70.194.222

🇺🇸 129.146.75.85

🇨🇳 115.191.15.26

🇨🇳 113.141.72.65

🇨🇳 111.26.63.85

🇺🇸 64.94.159.229

🇺🇸 44.222.149.120

🇺🇸 44.106.87.115

🇸🇬 43.172.194.101

🇮🇩 43.157.203.234

🇸🇬 43.156.4.198

🇨🇳 39.100.80.152

🇹🇼 221.120.4.61

🇺🇸 216.45.50.119

🇧🇴 200.87.90.27