JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.241.241

216.26.241.241 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.241.241

Whois 216.26.241.241

IP Abuse Reports for 216.26.241.241:

This IP address has been reported a total of 9 times from 4 distinct sources. 216.26.241.241 was first reported on October 30th 2025, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-12-02 23:15:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 18:15:04.109310 2025] [security2:error] [pid 4007:tid 4007] [client 216.26.241.241:11329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stormwlf.com"] [uri "/.env"] [unique_id "aS9y-P48Nk2K3zgNJNd0fQAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 21:57:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 16:57:40.021595 2025] [security2:error] [pid 27304:tid 27304] [client 216.26.241.241:27445] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jessiedavison.com"] [uri "/.svn/wc.db"] [unique_id "aS9g1P7oSCQ93WWeDqElDQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 17:05:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 12:05:20.125443 2025] [security2:error] [pid 31893:tid 31893] [client 216.26.241.241:32969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wisdomwfo.com"] [uri "/.git/HEAD"] [unique_id "aS8cUJI9RHbSgtUXRfakCQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 13:30:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 08:30:49.802942 2025] [security2:error] [pid 7271:tid 7271] [client 216.26.241.241:54515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gowithevergreen.com"] [uri "/.env"] [unique_id "aS7qCW46jRU3VpX2vlPCIQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:50:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:50:37.347631 2025] [security2:error] [pid 26615:tid 26615] [client 216.26.241.241:16205] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gamedayincentives.com"] [uri "/.git/HEAD"] [unique_id "aS5-LdbAD0J8zqjYXASEFQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:10:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.241.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:10:47.091698 2025] [security2:error] [pid 31105:tid 31105] [client 216.26.241.241:23161] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.realclean.net"] [uri "/.git/HEAD"] [unique_id "aSVWd4Lt05vMGKd6Xi_FzAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-02 23:58:00 (7 months ago)	Unauthorized connection attempt	Brute-Force
Anonymous	2025-10-31 22:23:40 (7 months ago)	[redacted] 216.26.241.241 - - [31/Oct/2025:23:22:57 +0100] "POST /xmlrpc.php HTTP/2.0" 200 426 "-" " ... show more [redacted] 216.26.241.241 - - [31/Oct/2025:23:22:57 +0100] "POST /xmlrpc.php HTTP/2.0" 200 426 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Ubuntu Chromium/31.0.1650.63 Chrome/31.0.1650.63 Safari/537.36" [redacted] 216.26.241.241 - - [31/Oct/2025:23:22:59 +0100] "POST /xmlrpc.php HTTP/2.0" 200 426 "-" "Mozilla/5.0 (Linux; Android 6.0.1; SM-J106B Build/MMB29Q) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Mobile Safari/537.36" [redacted] 216.26.241.241 - - [31/Oct/2025:23:23:00 +0100] "POST /xmlrpc.php HTTP/2.0" 200 426 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 1.0.3705)" [redacted] 216.26.241.241 - - [31/Oct/2025:23:23:15 +0100] "POST /xmlrpc.php HTTP/2.0" 200 426 "-" "Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.8.0.7) Gecko/20060909 Firefox/1.5.0.7" [redacted] 216.26.241.241 - - [31/Oct/2025:23:23:25 ... show less	Hacking Web App Attack
Anonymous	2025-10-30 14:41:54 (7 months ago)	WordPress Brute Force	Brute-Force

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇨 186.68.83.104

🇨🇳 180.173.121.150

🇩🇪 134.122.95.87

🇺🇸 66.132.224.25

🇮🇳 49.43.154.252

🇺🇸 2604:a880:400:d1:0:4:8c0d:d001

🇲🇽 186.96.145.241

🇺🇸 152.32.150.26

🇨🇳 120.226.131.98

🇨🇳 116.179.32.105

🇨🇳 111.231.14.12

🇱🇹 85.206.68.80

🇷🇴 82.153.138.57

🇩🇪 64.89.163.78

🇧🇷 45.175.251.129

🇩🇪 43.228.157.254

🇩🇪 43.165.6.182

🇬🇧 35.203.211.36

🇺🇸 34.139.98.105

🇺🇸 2607:f8b0:4001:c2e::12c