JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.26.250.99

216.26.250.99 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 9%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.26.250.99

Whois 216.26.250.99

IP Abuse Reports for 216.26.250.99:

This IP address has been reported a total of 10 times from 9 distinct sources. 216.26.250.99 was first reported on October 26th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 as211431.net	2026-05-13 09:00:28 (3 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /index.php UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-05-01 22:01:08 (1 month ago)	Forum/form spam	Web Spam
🇦🇱 cheatmaster.store	2026-02-27 01:02:14 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: Canada Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
🇩🇪 itsolon	2026-02-20 13:54:41 (3 months ago)	216.26.250.99 - - [20/Feb/2026:14:54:37 +0100] "POST /xmlrpc.php HTTP/1.1" 403 3977 "-" "curl/7.88.1 ... show more 216.26.250.99 - - [20/Feb/2026:14:54:37 +0100] "POST /xmlrpc.php HTTP/1.1" 403 3977 "-" "curl/7.88.1" 216.26.250.99 - - [20/Feb/2026:14:54:38 +0100] "POST /xmlrpc.php HTTP/1.1" 403 3977 "-" "Wget/1.21.4" 216.26.250.99 - - [20/Feb/2026:14:54:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 3977 "-" "Wget/1.21.4" 216.26.250.99 - - [20/Feb/2026:14:54:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 3977 "-" "Wget/1.21.4" 216.26.250.99 - - [20/Feb/2026:14:54:40 +0100] "POST /xmlrpc.php HTTP/1.1" 403 3977 "-" "Wget/1.21.4" ... show less	Web App Attack SSH
🇫🇷 Jean Valjean	2025-12-30 23:11:46 (5 months ago)	Fail2ban Caboom : xmlrpc.php Abuse	SQL Injection Web App Attack
🇮🇹 VHosting	2025-12-29 19:20:12 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:03:00 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 216.26.250.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 216.26.250.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:02:53.282001 2025] [security2:error] [pid 17333:tid 17333] [client 216.26.250.99:11949] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dgroupsa.com"] [uri "/.svn/wc.db"] [unique_id "aVIZjbyIPpX3S9jzsar7IAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-21 18:54:44 (6 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/21 12:53:11	Port Scan Brute-Force Exploited Host Web App Attack
🇫🇮 as211431.net	2025-11-08 00:22:06 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /user/register/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇮🇹 Rosh	2025-10-26 07:51:35 (7 months ago)	[10/26/25 08:51:35] SSH: authentication failure	Brute-Force SSH

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 185.247.137.56

🇺🇸 158.51.78.7

🇮🇩 110.139.70.66

🇧🇬 91.191.209.98

🇧🇷 45.165.238.2

🇺🇸 20.169.48.140

🇨🇦 20.104.97.84

🇺🇿 5.133.121.104

🇰🇿 2.135.147.138

🇳🇱 195.178.110.64

🇳🇱 193.25.167.115

🇳🇱 185.224.128.16

🇭🇰 152.32.169.155

🇨🇳 123.189.4.56

🇰🇬 92.62.74.41

🇩🇪 88.198.25.181

🇬🇧 81.19.219.224

🇷🇴 80.94.95.242

🇰🇷 59.21.37.60

🇸🇬 43.134.72.220