JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.242.209

216.26.242.209 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 35%: ?

35%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.242.209

Whois 216.26.242.209

IP Abuse Reports for 216.26.242.209:

This IP address has been reported a total of 14 times from 8 distinct sources. 216.26.242.209 was first reported on November 25th 2025, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 Progetto1	2026-06-13 11:45:09 (11 hours ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇦🇺 MAGIC	2026-06-13 01:31:48 (22 hours ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 dtorrer	2026-06-10 21:27:03 (3 days ago)	Brute-force general attack.	Brute-Force
🇲🇹 Malta	2026-06-10 04:47:15 (3 days ago)	216.26.242.209 - - [10/Jun/2026:06:47:15 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Lin ... show more 216.26.242.209 - - [10/Jun/2026:06:47:15 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64; rv:118.0) Gecko/20100101 Firefox/118.0" show less	Hacking Web App Attack
🇫🇷 ELYAZ	2026-06-01 01:26:29 (1 week ago)	(y4) Failed scan -byebye- from 216.26.242.209 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:28 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇲🇾 syokadmin	2025-11-30 04:59:13 (6 months ago)	(cpanel) Failed cPanel login from 216.26.242.209 (BR/Brazil/-): 1 in the last 3600 secs	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:56:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:56:37.523438 2025] [security2:error] [pid 7333:tid 7333] [client 216.26.242.209:23219] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.lakeviewstudiopro.com"] [uri "/.git/HEAD"] [unique_id "aSU3BUBs15wT7huDRvcxywAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:19:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:19:31.232336 2025] [security2:error] [pid 13756:tid 13823] [client 216.26.242.209:24869] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.telesmt.com"] [uri "/.env"] [unique_id "aSUuUy2vRx1ksuNuFaHCGwAAAMI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:04:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:04:09.976630 2025] [security2:error] [pid 28103:tid 28103] [client 216.26.242.209:41237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.brazilianbottom.com"] [uri "/.env"] [unique_id "aSUquVLr8j3pfNRqTdEdNwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:28:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:28:41.723445 2025] [security2:error] [pid 16295:tid 16295] [client 216.26.242.209:46297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.kerrywood.com"] [uri "/.env"] [unique_id "aSUUWZMKVdFR_S_7DAHC_AAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:09:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:09:33.297866 2025] [security2:error] [pid 14355:tid 14355] [client 216.26.242.209:21239] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.charamand.com"] [uri "/.git/HEAD"] [unique_id "aSUP3UlJIFRV4iP748FatAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:12:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:12:47.647389 2025] [security2:error] [pid 24065:tid 24065] [client 216.26.242.209:50547] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.mewebdesign.com"] [uri "/.git/HEAD"] [unique_id "aSUCjxJD-okkZCbhPPbeGAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:47:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:47:51.141976 2025] [security2:error] [pid 24797:tid 24797] [client 216.26.242.209:36887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.keeftone.com"] [uri "/.env"] [unique_id "aST8t2-KR-POSFqmSYDgowAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇬 197.45.128.140

🇮🇳 152.52.192.162

🇷🇺 89.108.66.217

🇨🇳 221.234.10.211

🇸🇳 154.124.66.14

🇮🇩 103.110.34.131

🇺🇸 66.132.224.30

🇺🇸 66.132.186.161

🇩🇪 47.245.140.230

🇳🇱 45.148.10.147

🇻🇳 2401:c440::f816:3eff:fe6a:4db7

🇰🇷 221.165.6.102

🇷🇺 178.178.222.61

🇦🇫 149.54.62.118

🇮🇳 122.160.119.213

🇨🇳 117.50.70.169

🇸🇬 109.123.236.191

🇨🇳 60.223.245.120

🇺🇸 50.35.168.148

🇯🇴 46.185.176.157