JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.241.183

216.26.241.183 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.241.183

Whois 216.26.241.183

IP Abuse Reports for 216.26.241.183:

This IP address has been reported a total of 17 times from 9 distinct sources. 216.26.241.183 was first reported on September 30th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 Saec	2026-06-14 12:30:04 (3 days ago)	Jarvis auto-ban: CF honeypot path /wp-login.php (1× on saec.me)	Port Scan Web App Attack
🇺🇸 nationaleventpros.com	2026-05-23 13:41:26 (3 weeks ago)	WordPress login attempt	Brute-Force
🇫🇷 pm33	2026-05-23 04:38:29 (3 weeks ago)	Wordpress login attempts	Brute-Force
🇱🇻 garmtech.com	2026-03-13 00:05:32 (3 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇺🇸 oncord	2026-03-11 09:18:07 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-03-08 11:50:50 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-19 16:02:14 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-18 10:46:11 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-03 00:42:06 (4 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-02 00:40:21 (4 months ago)	Form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:24 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-25 02:12:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.241.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.241.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:12:32.375237 2025] [security2:error] [pid 18016:tid 18016] [client 216.26.241.183:33173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.michaelholdengc.com"] [uri "/.svn/wc.db"] [unique_id "aSUQkLPbWf8Pr-s5k3GOcgAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:59:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.241.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.241.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:59:10.156972 2025] [security2:error] [pid 25984:tid 25984] [client 216.26.241.183:37915] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.hillconsultants.com"] [uri "/.env"] [unique_id "aSQQTu-7s-7bKaePwj1b8gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:37:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.241.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.241.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:36:48.891121 2025] [security2:error] [pid 24311:tid 24311] [client 216.26.241.183:38315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.tonysargbooks.com"] [uri "/.svn/wc.db"] [unique_id "aSQLEKMRBXhtL1OD7f-suwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:53:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.241.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.241.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:52:56.564944 2025] [security2:error] [pid 24076:tid 24076] [client 216.26.241.183:34727] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.cancersquared.com"] [uri "/.svn/wc.db"] [unique_id "aSPkqNEtgD0e2Oq3KjHAvgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.9

🇷🇴 80.94.92.165

🇺🇸 34.145.125.186

🇩🇪 34.141.96.233

🇧🇷 205.210.31.167

🇧🇷 192.178.95.16

🇨🇳 180.76.240.68

🇧🇷 177.200.39.156

🇺🇸 147.185.132.21

🇨🇳 111.26.6.111

🇸🇬 101.32.244.145

🇷🇺 95.215.108.47

🇳🇱 62.4.15.81

🇫🇷 51.68.34.131

🇳🇱 34.141.178.173

🇩🇪 34.141.54.227

🇺🇸 34.139.199.70

🇧🇪 34.14.21.112

🇫🇷 2400:cb00:538:1000:7a96:ba20:7bff:659f

🇹🇳 197.5.145.150