JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.250.117

216.26.250.117 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 33%: ?

33%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.250.117

Whois 216.26.250.117

IP Abuse Reports for 216.26.250.117:

This IP address has been reported a total of 20 times from 9 distinct sources. 216.26.250.117 was first reported on November 24th 2025, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇷 setupgr	2026-06-12 01:04:37 (18 hours ago)	(mod_security) mod_security (id:900001) triggered by 216.26.250.117: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:900001) triggered by 216.26.250.117: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 12 04:04:33.085943 2026] [security2:error] [pid 52837:tid 53004] [client 216.26.250.117:53073] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: tavernadimitris.com"] [severity "CRITICAL"] [tag "security"] [hostname "tavernadimitris.com"] [uri "/wp-login.php"] [unique_id "aitbIaxogjHUCwCkDflbpwAAAIs"], referer: https://tavernadimitris.com/wp-login.php show less	Port Scan
🇺🇸 lostswordfish.com	2026-06-11 18:34:04 (1 day ago)	Wordfence waf block on pameganslaw	Web App Attack
🇲🇽 octageeks.com	2026-06-11 04:12:17 (1 day ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇩🇪 FeG Deutschland	2026-06-10 18:25:04 (2 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 pm33	2026-06-10 16:20:45 (2 days ago)	Wordpress login attempts	Brute-Force
🇺🇸 myagent.site	2026-01-15 08:40:36 (4 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:27 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-21 18:47:46 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 21 13:47:42.059386 2025] [security2:error] [pid 19382:tid 19382] [client 216.26.250.117:12195] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cmcnow.net"] [uri "/wp-config.php"] [unique_id "aUhAzp2wpelSk7R1I4N_3QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-11 03:06:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 22:06:35.335471 2025] [security2:error] [pid 2880:tid 2880] [client 216.26.250.117:40763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hacemostuvideoia.com"] [uri "/.svn/wc.db"] [unique_id "aTo1O4GJi2HOSezDXDqeOgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 09:57:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 04:56:36.159235 2025] [security2:error] [pid 18687:tid 18687] [client 216.26.250.117:55895] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "register-yacht-turkey.com"] [uri "/.svn/wc.db"] [unique_id "aTfyVOkYltGMg64i_kGK6AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 14:07:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 09:07:31.392166 2025] [security2:error] [pid 25242:tid 25268] [client 216.26.250.117:42923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "metrobaselexpoforum.org"] [uri "/.git/HEAD"] [unique_id "aTWKI1XztQnRaD2s0KuP-QAAANY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 17:27:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 12:27:47.454048 2025] [security2:error] [pid 1406:tid 1485] [client 216.26.250.117:37967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "birdhousefarms.com"] [uri "/.svn/wc.db"] [unique_id "aTMWEwcKNvWm-eU-9V3LlwAAAQM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 08:09:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 03:09:41.361956 2025] [security2:error] [pid 12512:tid 12512] [client 216.26.250.117:50837] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "terrysavastano.com"] [uri "/.svn/wc.db"] [unique_id "aTKTRUdMWHbUafRd_8_6ogAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 05:22:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 00:22:34.999279 2025] [security2:error] [pid 8228:tid 8228] [client 216.26.250.117:27023] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "discountphotogifts.com"] [uri "/.svn/wc.db"] [unique_id "aTJsGrHV0nJ71CuB7EQaEQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:56:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.117 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:56:35.535525 2025] [security2:error] [pid 15459:tid 15459] [client 216.26.250.117:25967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.janajjmcgraw.com"] [uri "/.env"] [unique_id "aSUo80Bx4mKQ8NpN_KgetAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.85.247.230

🇺🇸 162.217.162.161

🇺🇸 162.216.150.74

🇨🇳 117.14.157.69

🇨🇳 115.190.150.8

🇺🇸 35.169.206.177

🇲🇾 180.75.74.88

🇺🇸 107.170.36.176

🇮🇩 103.186.31.66

🇺🇸 66.132.186.225

🇮🇷 2.180.79.108

🇺🇸 2.56.116.9

🇳🇱 185.233.175.40

🇩🇪 167.94.146.52

🇨🇳 120.48.135.189

🇬🇧 78.153.140.199

🇫🇷 51.77.158.34

🇺🇸 34.228.104.231

🇯🇵 20.89.43.232

🇳🇱 5.187.35.26