JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.236.52

216.26.236.52 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.236.52

Whois 216.26.236.52

IP Abuse Reports for 216.26.236.52:

This IP address has been reported a total of 30 times from 13 distinct sources. 216.26.236.52 was first reported on September 26th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-02-28 03:39:26 (3 months ago)	"POST /xmlrpc.php HTTP/1.1"	Hacking Web App Attack
🇺🇸 nowyouknow	2026-01-21 06:28:42 (4 months ago)	(From [email protected]) Best quality seo backlinks to supercharge helenapurechiropractic. ... show more (From [email protected]) Best quality seo backlinks to supercharge helenapurechiropractic.com website seo! BonusBacklinks.com - we deliver daily backlinks and bring website traffic to your website EVERY DAY: + Take 85% OFF + Strong daily seo backlinks + Real web traffic + Price cheap as $1 + Bonus coupon codes: https://BonusBacklinks.com/85offer BonusBacklinks.com - daily backlinks and website traffic to boost your site every day show less	Phishing Web Spam
🇵🇱 sefinek.net	2026-01-12 16:40:17 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Xbox; Xbox One) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edge/44.18363.8131 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-01-10 20:59:31 (4 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-12-30 08:36:10 (5 months ago)	"GET /.git/HEAD HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:06:06 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:05:58.779495 2025] [security2:error] [pid 3661:tid 3661] [client 216.26.236.52:27631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ch-blanchard.com"] [uri "/.env"] [unique_id "aVIaRpUPhXoX62gCGPIZ7QAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 lp	2025-12-04 08:50:55 (6 months ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 216.26.236.52 2025-12-04T09:23:33+01: ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 216.26.236.52 2025-12-04T09:23:33+01:00 vpn Access-Reject 'xplas00' station: 216.26.236.52 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
Anonymous	2025-11-28 14:50:45 (6 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.28 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.28 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 10:54:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:53:59.887514 2025] [security2:error] [pid 26771:tid 26891] [client 216.26.236.52:41151] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.gilesrentalcars.com"] [uri "/.git/HEAD"] [unique_id "aSbcR1RqYPjEDktSOg7Z8gAAAMo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:15:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:15:11.162153 2025] [security2:error] [pid 11127:tid 11127] [client 216.26.236.52:20631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.menagri.com"] [uri "/.svn/wc.db"] [unique_id "aSa3DxTepc-uUkiNwUJUPQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:00:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:00:06.253353 2025] [security2:error] [pid 24152:tid 24152] [client 216.26.236.52:35809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.kimpitchellandassociatesinc.com"] [uri "/.git/HEAD"] [unique_id "aSaXZoLuQXfecCOTCYgivAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:24:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:24:17.144607 2025] [security2:error] [pid 12249:tid 12249] [client 216.26.236.52:18733] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.termstech.com"] [uri "/.env"] [unique_id "aSaPARBCjto_a5N1LVUMggAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 essinghigh	2025-11-26 01:54:26 (6 months ago)	IPS Detection: 216.26.236.52 -> DPT: 80	Port Scan
🇺🇸 TPI-Abuse	2025-11-26 01:13:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:13:55.902804 2025] [security2:error] [pid 17466:tid 17478] [client 216.26.236.52:19115] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.idwic.com"] [uri "/.svn/wc.db"] [unique_id "aSZUU5vX96wK2APxLO0tOAAAAMo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:47:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.236.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:47:11.872271 2025] [security2:error] [pid 6649:tid 6690] [client 216.26.236.52:32111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "relatedlinks.giere.us"] [uri "/.git/HEAD"] [unique_id "aSZOD_CQPT6s-IHquRxgIAAAAUY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇴 200.105.172.184

🇲🇽 186.96.145.241

🇬🇧 185.192.69.77

🇬🇧 139.28.176.142

🇺🇸 100.29.192.11

🇺🇸 40.121.179.100

🇺🇸 20.169.106.57

🇨🇦 20.116.34.103

🇳🇱 204.76.203.213

🇫🇮 147.185.133.87

🇺🇸 135.237.126.83

🇿🇦 102.36.141.61

🇫🇷 92.103.134.183

🇫🇷 51.75.236.133

🇳🇱 45.87.249.200

🇸🇬 212.73.148.41

🇺🇸 172.203.190.134

🇫🇷 147.79.103.194

🇧🇩 123.49.38.114

🇷🇺 94.251.118.199