JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.250.50

216.26.250.50 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 37%: ?

37%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.250.50

Whois 216.26.250.50

IP Abuse Reports for 216.26.250.50:

This IP address has been reported a total of 16 times from 9 distinct sources. 216.26.250.50 was first reported on November 24th 2025, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 london2038.com	2026-06-22 10:43:30 (16 hours ago)	Detected by WP fail2ban 2026-06-22T12:43:29.341525+02:00 wordpress: Authentication attempt from 216. ... show more Detected by WP fail2ban 2026-06-22T12:43:29.341525+02:00 wordpress: Authentication attempt from 216.26.250.50 show less	Brute-Force Web App Attack
🇫🇷 ELYAZ	2026-06-21 09:41:48 (1 day ago)	(y4) Failed scan -byebye- from 216.26.250.50 (CA/Canada/-): (CF_ENABLE)	Hacking
🇫🇷 Sklurk	2026-06-20 00:16:42 (3 days ago)	Web App Attack	Web App Attack
🇫🇷 ELYAZ	2026-06-19 14:43:24 (3 days ago)	(y4) Failed scan -byebye- from 216.26.250.50 (CA/Canada/-): (CF_ENABLE)	Hacking
🇺🇸 lostswordfish.com	2026-06-15 10:20:06 (1 week ago)	Wordfence waf block on fypeducation	Web App Attack
🇲🇹 Malta	2026-06-15 06:18:39 (1 week ago)	216.26.250.50 - - [15/Jun/2026:08:18:39 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh ... show more 216.26.250.50 - - [15/Jun/2026:08:18:39 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇫🇷 ELYAZ	2026-06-12 15:01:56 (1 week ago)	(y4) Failed scan -byebye- from 216.26.250.50 (CA/Canada/-): (CF_ENABLE)	Hacking
🇬🇷 setupgr	2026-06-12 07:03:51 (1 week ago)	(mod_security) mod_security (id:900001) triggered by 216.26.250.50: 1 in the last 86400 secs; Ports: ... show more (mod_security) mod_security (id:900001) triggered by 216.26.250.50: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 12 10:03:50.273134 2026] [security2:error] [pid 104061:tid 104279] [client 216.26.250.50:60207] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: gyrosplace.gr"] [severity "CRITICAL"] [tag "security"] [hostname "gyrosplace.gr"] [uri "/wp-login.php"] [unique_id "aiuvVtP1SVBHlBuGp5eDewAAANY"], referer: https://gyrosplace.gr/wp-login.php show less	Port Scan
🇫🇷 ELYAZ	2026-06-09 20:34:42 (1 week ago)	(y4) Failed scan -byebye- from 216.26.250.50 (CA/Canada/-): (CF_ENABLE)	Hacking
🇺🇸 TPI-Abuse	2025-11-27 20:58:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 15:58:15.554421 2025] [security2:error] [pid 7563:tid 7563] [client 216.26.250.50:49135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dennisangellismusic.com"] [uri "/.svn/wc.db"] [unique_id "aSi7ZwTebAl9FqjDY2P-rwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 19:51:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:51:47.826481 2025] [security2:error] [pid 14641:tid 14641] [client 216.26.250.50:21483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boaredraven.com"] [uri "/.svn/wc.db"] [unique_id "aSir0yTjevH6VeDfbN-JKwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 i-turnradio.nl	2025-11-26 09:34:40 (6 months ago)	2025-11-26 @ 10:34:39 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:59:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:59:35.813545 2025] [security2:error] [pid 10569:tid 10569] [client 216.26.250.50:52395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.deindo.com"] [uri "/.svn/wc.db"] [unique_id "aSbBd0qUaE5Z6lh2e4UqKwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:56:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:56:26.255717 2025] [security2:error] [pid 2919:tid 2919] [client 216.26.250.50:19759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.eye7graphics.com"] [uri "/.env"] [unique_id "aSZeStaGcRPDRW7MYxn2vAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-25 23:13:28 (6 months ago)	Probing to gain illegal access	Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.94

🇫🇷 195.154.59.230

🇮🇳 193.203.162.166

🇩🇪 162.62.213.187

🇺🇸 136.144.35.140

🇸🇬 103.20.122.54

🇨🇳 60.8.73.250

🇮🇹 2.38.204.93

🇺🇸 2001:470:1:fb5::200

🇨🇳 223.89.132.9

🇹🇼 220.135.131.42

🇲🇽 189.139.249.223

🇳🇱 172.94.9.120

🇮🇳 139.59.19.244

🇨🇭 107.189.2.75

🇸🇬 103.250.10.18

🇳🇱 91.92.40.237

🇷🇴 80.94.92.166

🇺🇸 65.49.20.72

🇺🇸 50.6.228.32