Report for IP: 216.26.247.91

Threat LevelHIGH59/1002 rule types across 2 attack categories
2 incidents on record · 2 rule types · confirmed on global blocklist · seen 20h ago
PTR N/A
Org / ASN 3xK Tech GmbH
Country 🇪🇸 Spain
City Madrid, Madrid
Timezone Europe/Madrid

Attack Analysis

🇪🇸 Spain · Madrid · 200373 · xk Tech GmbH
IDS: Blocklist — Spamhaus DROP
This IP is on the Spamhaus DROP list — a dataset of netblocks hijacked or leased by professional spam and cybercrime operations with no legitimate users. Traffic from DROP-listed ranges is considered hostile by design. Blocking is unconditional.
WordPress XML-RPC Abuse
This IP targeted xmlrpc.php, a legacy WordPress endpoint that has been abused for brute-force authentication attacks, credential stuffing, and DDoS amplification. Any direct access to xmlrpc.php is an attack or reconnaissance attempt; modern WordPress sites should disable it entirely.

Reports (2)

Date Severity Description
18 Jun 2026 - 18:47 high Web: xmlrpc.php accessed
18 Jun 2026 - 18:46 high IDS: Blocklist — Spamhaus DROP listed IP — ET DROP Spamhaus DROP Listed Traffic Inbound group 64

Related IPs — Same /24 Block (216.26.247.0/24)

216.26.247.98ELEVATED2 reports216.26.247.105ELEVATED2 reports216.26.247.109ELEVATED2 reports216.26.247.10ELEVATED2 reports216.26.247.129ELEVATED2 reports216.26.247.72ELEVATED2 reports216.26.247.75ELEVATED2 reports216.26.247.36ELEVATED2 reports
Part of EagleEye Intelligence