JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.242.9

216.26.242.9 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.242.9

Whois 216.26.242.9

IP Abuse Reports for 216.26.242.9:

This IP address has been reported a total of 20 times from 9 distinct sources. 216.26.242.9 was first reported on November 5th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 4server	2026-04-13 17:55:57 (2 months ago)	[MonApr1319:55:29.0204152026][security2:error][pid1311238:tid1311324][client216.26.242.9:0]ModSecuri ... show more [MonApr1319:55:29.0204152026][security2:error][pid1311238:tid1311324][client216.26.242.9:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(curl\\|wget\\|python\\|nikto\\|sqlmap\\|acunetix\\|fimap\\|dirbuster\\|cmsmap\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"195\"][id\"990210\"][msg\"Suspicioususer-agentblocked\"][hostname\"admin-services.ch\"][uri\"/.env\"][unique_id\"ad0uEemTteELGGfqeGUFEgAAAEQ\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2025-12-30 01:38:55 (5 months ago)	2025-12-30T03:38:54.455101+02:00 zanati wp(www.sahpa.co.za)[594033]: Blocked authentication attempt ... show more 2025-12-30T03:38:54.455101+02:00 zanati wp(www.sahpa.co.za)[594033]: Blocked authentication attempt for [email protected] from 216.26.242.9 ... show less	Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:51:44 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:51:38.489278 2025] [security2:error] [pid 2466546:tid 2466565] [client 216.26.242.9:38371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "councilofforeignministers.com"] [uri "/.svn/wc.db"] [unique_id "aVIW6pbYT4ZAMDUtuQ3A0wAAAVE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:51:56 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:51:49.902493 2025] [security2:error] [pid 14515:tid 14515] [client 216.26.242.9:44003] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kerrywoodandson.com"] [uri "/.git/HEAD"] [unique_id "aVII5Q3vUewHg2LJJyRpGwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-12-20 01:02:33 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-12-16 09:14:37 (6 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-11-27 20:54:03 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 15:53:58.106983 2025] [security2:error] [pid 25696:tid 25792] [client 216.26.242.9:53617] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "darkestmoonart.com"] [uri "/.svn/wc.db"] [unique_id "aSi6ZlAQao1ZIqaCqaH3EgAAANE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 18:03:56 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 13:03:50.353744 2025] [security2:error] [pid 8603:tid 8603] [client 216.26.242.9:34841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keysenterprise.net"] [uri "/.env"] [unique_id "aSdBBv3eemTaRPiSCb2ilAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:48:54 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:48:47.233628 2025] [security2:error] [pid 3738124:tid 3738193] [client 216.26.242.9:12007] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cspmedia.com"] [uri "/.git/HEAD"] [unique_id "aSbbD0u1G_QxOobZ4hrptwAAAcI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:02:40 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:02:37.461255 2025] [security2:error] [pid 31372:tid 31372] [client 216.26.242.9:57225] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.secuencia.com"] [uri "/.svn/wc.db"] [unique_id "aSamDSGetvnJD9KNGM2RrwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:05:47 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:05:41.270028 2025] [security2:error] [pid 5361:tid 5369] [client 216.26.242.9:33467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.econpage.com"] [uri "/.git/HEAD"] [unique_id "aSaYtQ6mFNQyT6yLV4INkQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:29:27 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:29:24.692299 2025] [security2:error] [pid 22532:tid 22532] [client 216.26.242.9:48981] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.visithastingsvillage.com"] [uri "/.env"] [unique_id "aSQldIxQdeExsP63kAiQxAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:28:15 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:28:09.144308 2025] [security2:error] [pid 30605:tid 30605] [client 216.26.242.9:55623] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bonefrog.com"] [uri "/.env"] [unique_id "aSQXGVJsCmRRYM4dqOznPAAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:17:26 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:17:18.426043 2025] [security2:error] [pid 19402:tid 19402] [client 216.26.242.9:48527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.gdrankin.com"] [uri "/.git/HEAD"] [unique_id "aSQGfiFT6Gpd4Xjn4WolgQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:37:35 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 216.26.242.9 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:37:29.723162 2025] [security2:error] [pid 4941:tid 4941] [client 216.26.242.9:17577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.edgecomix.com"] [uri "/.env"] [unique_id "aSPvGYkUq1tHmK5_eKVVggAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 189.216.43.22

🇹🇭 182.52.236.235

🇺🇸 172.253.209.147

🇮🇩 163.7.11.69

🇸🇬 152.42.196.104

🇩🇪 151.243.11.245

🇿🇦 102.64.34.176

🇰🇷 61.76.112.4

🇧🇪 34.52.155.187

🇰🇷 211.37.174.173

🇫🇷 185.177.72.17

🇺🇸 158.94.187.14

🇩🇿 154.244.71.124

🇨🇳 116.179.32.76

🇩🇪 69.5.169.145

🇺🇸 44.237.174.205

🇧🇷 205.210.31.250

🇹🇭 183.88.237.142

🇮🇩 157.15.40.77

🇺🇸 139.55.40.15