JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.250.154

216.26.250.154 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.250.154

Whois 216.26.250.154

IP Abuse Reports for 216.26.250.154:

This IP address has been reported a total of 9 times from 4 distinct sources. 216.26.250.154 was first reported on October 15th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇱 cheatmaster.store	2026-02-27 01:39:46 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: Canada Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
🇺🇸 TPI-Abuse	2026-01-02 19:35:42 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 02 14:35:36.668839 2026] [security2:error] [pid 14658:tid 14658] [client 216.26.250.154:33649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "unityhealthpharmaceutical.com"] [uri "/.git/HEAD"] [unique_id "aVgeCDUqEbJUnG7CbzVDEgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 Tanados	2025-12-30 10:22:15 (5 months ago)	Blocked by UFW [80/tcp] Source port: 43305 TTL: 52 Packet length: 60 TOS: 0x00 This report was gene ... show more Blocked by UFW [80/tcp] Source port: 43305 TTL: 52 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2025-12-29 09:37:37 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:37:33.533962 2025] [security2:error] [pid 16909:tid 16909] [client 216.26.250.154:49587] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "knowledgepreservationalliance.com"] [uri "/.env"] [unique_id "aVJL3eTPJNWKLPyIzkkXYQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:04:51 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:04:46.819756 2025] [security2:error] [pid 16122:tid 16122] [client 216.26.250.154:31645] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "title34.com"] [uri "/.env"] [unique_id "aVI2HtYR1jMEFogQWZ5pkwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:56:12 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:56:07.046694 2025] [security2:error] [pid 1279:tid 1279] [client 216.26.250.154:44781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gdcservices.com"] [uri "/.git/HEAD"] [unique_id "aVIX93glfOpWxA9v_6v4HwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:33:00 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:32:56.491252 2025] [security2:error] [pid 9193:tid 9193] [client 216.26.250.154:21529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "swwpccpa.com"] [uri "/.git/HEAD"] [unique_id "aVISiD_mwIQgj58tDG8a8QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:03:02 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:02:55.665593 2025] [security2:error] [pid 18258:tid 18258] [client 216.26.250.154:14329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mute-swan.com"] [uri "/.svn/wc.db"] [unique_id "aVH9b3IjCvdKwiWKbLtx4AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nationaleventpros.com	2025-10-15 07:47:40 (7 months ago)	WordPress login attempt	Brute-Force

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 139.59.188.13

🇫🇮 46.8.64.51

🇩🇪 213.209.159.56

🇧🇷 205.210.31.175

🇦🇲 195.250.79.2

🇩🇪 139.59.136.122

🇨🇳 117.34.85.168

🇮🇳 103.194.243.199

🇨🇦 66.85.30.4

🇮🇳 59.179.31.237

🇺🇸 34.63.156.105

🇮🇪 3.251.239.146

🇯🇵 220.210.131.9

🇬🇧 193.163.125.197

🇺🇸 172.234.25.61

🇩🇪 172.70.248.147

🇩🇪 139.59.134.145

🇵🇰 103.72.1.92

🇹🇷 89.252.131.17

🇨🇦 85.217.149.56