JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.232.13

216.26.232.13 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.232.13

Whois 216.26.232.13

IP Abuse Reports for 216.26.232.13:

This IP address has been reported a total of 26 times from 13 distinct sources. 216.26.232.13 was first reported on September 4th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-05-04 23:08:06 (1 month ago)	Form spam	Web Spam
🇬🇧 [email protected]	2026-03-04 00:27:27 (3 months ago)	216.26.232.13 - - [04/Mar/2026:00:15:44 +0000] "GET /.git/config HTTP/1.1" 200 452 "http://academy.s ... show more 216.26.232.13 - - [04/Mar/2026:00:15:44 +0000] "GET /.git/config HTTP/1.1" 200 452 "http://academy.scotland-excel.org.uk/.git/config" "Go-http-client/1.1" 216.26.232.13 - - [04/Mar/2026:00:25:41 +0000] "GET /.git/objects/01/4c5f5972b94fb5ae037b6a7f680440d8daf606 HTTP/1.1" 404 332 "http://academy.scotland-excel.org.uk/.git/objects/01/4c5f5972b94fb5ae037b6a7f680440d8daf606" "Go-http-client/1.1" 216.26.232.13 - - [04/Mar/2026:00:27:27 +0000] "GET /.git/objects/cf/7be9607e8008b384eb0f7b03614f92a1a08967 HTTP/1.1" 404 332 "http://academy.scotland-excel.org.uk/.git/objects/cf/7be9607e8008b384eb0f7b03614f92a1a08967" "Go-http-client/1.1" ... show less	Web App Attack
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (3 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
Anonymous	2025-12-22 15:24:27 (5 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-10 11:30:14 (5 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-07 22:50:14 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 17:50:10.241247 2025] [security2:error] [pid 8701:tid 8701] [client 216.26.232.13:43437] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "newsfromearth.com"] [uri "/.env"] [unique_id "aTYEojt3ksBbUHxorVjiFAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 16:59:32 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 11:59:25.218708 2025] [security2:error] [pid 666:tid 671] [client 216.26.232.13:59313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "northmiamichamber.org"] [uri "/.env"] [unique_id "aTWybe_MnbaTCHIIB5hOqAAAAQE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 15:23:55 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:23:49.924496 2025] [security2:error] [pid 26036:tid 26036] [client 216.26.232.13:35837] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tijuanabible.org"] [uri "/.git/HEAD"] [unique_id "aTWcBYfFo8my1OuZ4LGqXQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 20:43:50 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 15:43:46.508571 2025] [security2:error] [pid 12193:tid 12193] [client 216.26.232.13:27689] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dandemonium.net"] [uri "/.git/HEAD"] [unique_id "aTSVglBTDrpAvLW6b9fZIwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 21:19:01 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 16:18:50.386156 2025] [security2:error] [pid 17187:tid 17192] [client 216.26.232.13:31127] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cynosureservices.email"] [uri "/.git/HEAD"] [unique_id "aTNMOtjSz9GcnIcHyrLIqAAAAQM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:25:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.232.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:25:09.460406 2025] [security2:error] [pid 6964:tid 6964] [client 216.26.232.13:31501] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ammatusk.com"] [uri "/.env"] [unique_id "aTKzBf9sc3KAGgPQ6dE4iAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-26 21:55:16 (6 months ago)	SuspiciousC2 Activity detected by FMBAD System 2025-11-27 00:55:16	Hacking Bad Web Bot Web App Attack
Anonymous	2025-11-14 16:18:51 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇬🇧 Bytemark	2025-10-27 09:21:17 (7 months ago)	Oct 27 09:21:15 dlcentre3 sshd[14585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 e ... show more Oct 27 09:21:15 dlcentre3 sshd[14585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.26.232.13 Oct 27 09:21:17 dlcentre3 sshd[14585]: Failed password for invalid user ScreeenQueen from 216.26.232.13 port 21679 ssh2 show less	Brute-Force SSH

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 179.216.168.195

🇮🇳 150.129.107.105

🇳🇱 45.148.10.152

🇶🇦 2600:1900:4260:40e::66

🇨🇳 180.184.84.77

🇨🇳 121.205.208.187

🇵🇱 82.139.187.78

🇺🇸 66.132.172.238

🇺🇸 38.182.109.52

🇮🇪 34.240.15.181

🇸🇬 23.111.14.189

🇰🇭 202.79.29.108

🇩🇪 194.187.176.18

🇨🇳 112.27.178.171

🇻🇳 103.153.254.96

🇸🇪 90.231.80.167

🇬🇷 85.73.232.28

🇪🇸 79.154.141.114

🇮🇹 79.49.35.134

🇧🇪 2a00:1450:400c:c1f::128