AbuseIPDB » 179.50.60.195
179.50.60.195 was found in our database!
This IP was reported 9 times. Confidence of
Abuse
is 19% : ?
ISP
GTD COLOMBIA S.A.S
Usage Type
Fixed Line ISP
ASN
AS26619
Domain Name
grupogtd.com.co
Country
π¨π΄
Colombia
City
Medellin, Antioquia
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 179.50.60.195 :
This IP address has been reported a total of
9
times from
7 distinct
sources.
179.50.60.195 was first reported on
April 7th 2026 , and the most recent report was
1 month ago .
Old Reports:
The most recent abuse report for this IP address is from
1 month ago
. It is possible that this IP is no longer involved in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
π©πͺ
bescared
2026-05-24 09:13:14
(1 month ago)
F2B - Malicious activity detected. Unauthorized connection attempt: Telnet. -8ff06ede-
Port Scan
π©πͺ
bescared
2026-05-24 06:37:58
(1 month ago)
F2B - Malicious activity detected. Unauthorized connection attempt: Telnet. -151302cd-
Port Scan
π¬π§
PeravixGroup
2026-05-24 05:40:04
(1 month ago)
Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ...
show more
Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud
show less
IoT Targeted
Brute-Force
π©πͺ
milcraft.nl
2026-05-19 00:07:44
(1 month ago)
Suspicious WooCommerce query combination detected. Not default available on websites. Matched combi ...
show more
Suspicious WooCommerce query combination detected. Not default available on websites. Matched combi patterns: filter_, add-to-cart=, orderby=, product_count=. Activity is consistent with high-volume request abuse.
show less
DDoS Attack
Web App Attack
πΊπΈ
MPL
2026-05-12 01:59:47
(1 month ago)
tcp/23
Port Scan
πΊπΈ
TPI-Abuse
2026-05-10 15:11:48
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 179.50.60.195 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 179.50.60.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 10 11:11:44.886872 2026] [security2:error] [pid 22065:tid 22065] [client 179.50.60.195:32964] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/composer.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.et.lobibilisim.com"] [uri "/vendor/sebastian/exporter/composer.json"] [unique_id "agCgMATcjX1y2G5H_N4sMQAAAAw"], referer: https://www.et.lobibilisim.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
backslash
2026-05-09 15:21:03
(1 month ago)
block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-04-24 04:46:43
(2 months ago)
(mod_security) mod_security (id:210381) triggered by 179.50.60.195 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210381) triggered by 179.50.60.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 24 00:46:40.054638 2026] [security2:error] [pid 6543:tid 6551] [client 179.50.60.195:59066] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt||www.mentzlaw.com|F|4"] [data "REQUEST_URI=/lawsuit/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.mentzlaw.com"] [uri "/lawsuit/%url%"] [unique_id "aer1sE-OEEyFUuoYyGmD3AAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π·πΈ
Scan
2026-04-07 02:02:35
(2 months ago)
MultiHost/MultiPort Probe, Scan, Hack -
Port Scan
Hacking
Showing 1 to
9
of 9 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: