JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.240.214

216.26.240.214 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 3%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.240.214

Whois 216.26.240.214

IP Abuse Reports for 216.26.240.214:

This IP address has been reported a total of 12 times from 4 distinct sources. 216.26.240.214 was first reported on November 2nd 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 4server	2026-06-25 22:14:42 (4 days ago)	[FriJun2600:14:37.6335592026][security2:error][pid1352528:tid1352531][client216.26.240.214:0]ModSecu ... show more [FriJun2600:14:37.6335592026][security2:error][pid1352528:tid1352531][client216.26.240.214:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"368\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"www.giuristifriburgo.ch\"][uri\"/xmlrpc.php\"][unique_id\"aj2oTRN9jdphIfsgpvThVwAAAAE\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-01-15 01:59:00 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 14 20:58:53.816501 2026] [security2:error] [pid 32624:tid 32624] [client 216.26.240.214:39485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tecnoconce.com"] [uri "/.svn/wc.db"] [unique_id "aWhJ3R7mjs6KV8QoLY7C5QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-14 21:52:25 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 14 16:52:15.572321 2026] [security2:error] [pid 1095215:tid 1095250] [client 216.26.240.214:47145] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "globalpartssolution.com"] [uri "/.git/HEAD"] [unique_id "aWgQD_nRoFzAWZGQTS6Q6gAAAJA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-12 10:58:26 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 12 05:58:20.452247 2026] [security2:error] [pid 1880:tid 1880] [client 216.26.240.214:53031] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "5starfluffandfold.com"] [uri "/.svn/wc.db"] [unique_id "aWTTzEXTu03UcclqBMFaKwAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-04 16:04:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 11:04:06.214779 2025] [security2:error] [pid 15320:tid 15320] [client 216.26.240.214:57635] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "themadwriter.us"] [uri "/.git/HEAD"] [unique_id "aTGw9jSq0NQLle8DFkbcvQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-03 09:44:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 04:44:10.340593 2025] [security2:error] [pid 1590:tid 1590] [client 216.26.240.214:15591] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dawnmazurfoundation.org"] [uri "/.git/HEAD"] [unique_id "aTAGan-N7UJ9Lhy1uXGZYgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 geot	2025-11-25 14:06:05 (7 months ago)	GET /.aws/credentials HTTP/1.1	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:38:21 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:38:17.312546 2025] [security2:error] [pid 18190:tid 18190] [client 216.26.240.214:17287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.wilklass.com"] [uri "/.git/HEAD"] [unique_id "aSQniYNLZJVjIN-3h7eakwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:08:38 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:08:30.305304 2025] [security2:error] [pid 7798:tid 7798] [client 216.26.240.214:27905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.the-schlosser.net"] [uri "/.env"] [unique_id "aSP2Xv5inuTHR3cj3efqLwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:04:26 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:04:19.156338 2025] [security2:error] [pid 8476:tid 8476] [client 216.26.240.214:9663] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.firewoodart.com"] [uri "/.svn/wc.db"] [unique_id "aSPnU9h4jsUYr--wI3KNDwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:32:48 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.240.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:32:37.841525 2025] [security2:error] [pid 23008:tid 23008] [client 216.26.240.214:18917] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.brunerdevelopment.com"] [uri "/.env"] [unique_id "aSPf5TIb_G4N4HcpXwQKcgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-02 16:44:30 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:14:36	Port Scan Brute-Force Exploited Host Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇪 196.207.177.56

🇷🇺 188.92.241.150

🇺🇦 176.103.4.197

🇺🇸 172.64.217.4

🇦🇷 168.197.250.14

🇫🇷 143.244.57.90

🇬🇧 92.31.3.175

🇮🇳 49.207.40.162

🇰🇷 211.238.237.254

🇨🇭 209.99.191.19

🇦🇷 191.84.229.13

🇻🇳 157.66.26.151

🇩🇪 62.54.176.203

🇭🇰 46.247.61.9

🇺🇸 193.3.53.11

🇦🇺 170.64.177.80

🇺🇸 162.216.150.203

🇹🇿 154.66.226.207

🇺🇸 66.240.205.34

🇺🇸 52.20.139.90