JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.235.20

216.26.235.20 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.235.20

Whois 216.26.235.20

IP Abuse Reports for 216.26.235.20:

This IP address has been reported a total of 39 times from 17 distinct sources. 216.26.235.20 was first reported on September 28th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-02-13 03:06:53 (3 months ago)	Scanning/Probing (25)	Brute-Force Web App Attack
🇮🇩 Burayot	2026-02-13 02:25:06 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 216.26.235.20 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 216.26.235.20 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇦🇺 MAGIC	2026-01-02 01:12:22 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 oncord	2025-12-14 03:18:27 (5 months ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2025-12-07 15:58:31 (5 months ago)	(From [email protected]) Are you interested in seeing how this email system can help you ear ... show more (From [email protected]) Are you interested in seeing how this email system can help you earn money daily? Check https://rb.gy/uxe0l2 show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-26 08:48:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:48:36.359973 2025] [security2:error] [pid 15608:tid 15608] [client 216.26.235.20:16249] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.cityplanapp.com"] [uri "/.git/HEAD"] [unique_id "aSa-5CEUS01c-BvxQQxd0AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:57:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:57:31.726186 2025] [security2:error] [pid 17933:tid 17933] [client 216.26.235.20:40433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sunshine-trust.com"] [uri "/.svn/wc.db"] [unique_id "aSaWy44u17kCRf_sesUx4AAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:04:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:04:44.512783 2025] [security2:error] [pid 2846:tid 2846] [client 216.26.235.20:58289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "emmpftp.tremulant.com"] [uri "/.svn/wc.db"] [unique_id "aSZuTCARRWs_SBGM_SsD0QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-24 14:57:03 (6 months ago)	Honey Pot Hit / Attack Vector found!	Port Scan Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:32:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:31:52.255973 2025] [security2:error] [pid 1339:tid 1339] [client 216.26.235.20:20899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.desertrosedoves.com"] [uri "/.git/HEAD"] [unique_id "aSQX-E7vB9F8INUyyb3TmgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:28:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:28:17.174103 2025] [security2:error] [pid 18325:tid 18327] [client 216.26.235.20:30385] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.soyjuantrece.com"] [uri "/.git/HEAD"] [unique_id "aSPs8bibCkDUtlE56PAxbAAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 NXTwoThou	2025-11-24 02:45:04 (6 months ago)	/.aws/credentials	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 00:48:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.235.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 19:46:54.980709 2025] [security2:error] [pid 21018:tid 21018] [client 216.26.235.20:29727] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.americaismyhome.com"] [uri "/.env"] [unique_id "aSOq_smHzjBXfeeUqWFmGgAAAHw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-13 21:24:59 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇭🇺 zolav8	2025-11-08 04:45:29 (6 months ago)	SQL injection / web attack attempt	Hacking SQL Injection

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.115

🇰🇷 112.216.129.27

🇵🇭 27.110.166.67

🇲🇽 177.246.33.188

🇫🇷 173.249.0.223

🇮🇹 151.95.211.132

🇺🇸 143.198.117.94

🇸🇬 134.185.85.99

🇭🇰 103.243.24.124

🇬🇧 35.203.211.215

🇩🇪 213.209.159.56

🇧🇷 205.210.31.226

🇧🇷 201.77.124.248

🇺🇸 192.142.2.40

🇬🇧 185.127.71.147

🇺🇸 172.202.117.217

🇺🇸 167.99.60.61

🇮🇳 103.21.79.242

🇩🇪 94.156.232.116

🇺🇸 66.132.172.224