JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.141.50.202

209.141.50.202 was found in our database!

This IP was reported 248 times. Confidence of Abuse is 100%: ?

100%

ISP	FranTech Solutions
Usage Type	Data Center/Web Hosting/Transit
ASN	AS53667
Domain Name	frantech.ca
Country	🇺🇸 United States of America
City	Las Vegas, Nevada

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.141.50.202

Whois 209.141.50.202

IP Abuse Reports for 209.141.50.202:

This IP address has been reported a total of 248 times from 50 distinct sources. 209.141.50.202 was first reported on May 14th 2026, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 F242	2026-06-22 14:02:43 (12 hours ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇩🇪 4server	2026-06-22 13:52:19 (12 hours ago)	[MonJun2215:52:16.3470452026][security2:error][pid1827422:tid1827447][client209.141.50.202:0]ModSecu ... show more [MonJun2215:52:16.3470452026][security2:error][pid1827422:tid1827447][client209.141.50.202:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(curl\\|wget\\|python\\|nikto\\|sqlmap\\|acunetix\\|fimap\\|dirbuster\\|cmsmap\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"217\"][id\"990210\"][msg\"Suspicioususer-agentblocked\"][hostname\"feldenkraistherapy.ch\"][uri\"/wp-admin/themes.php\"][unique_id\"ajk-EOZgXy0B4MlcW3g9kgAAAA4\"] show less	Port Scan Brute-Force Web App Attack
🇨🇦 SoteriaCovenant	2026-06-22 06:08:23 (20 hours ago)	Automated probe: /wp-login.php on Soteria Global infrastructure. No vulnerable software present.	Brute-Force
🇨🇦 SoteriaCovenant	2026-06-20 06:57:34 (2 days ago)	Automated probe: /wp-login.php on Soteria Global infrastructure. No vulnerable software present.	Brute-Force
🇨🇦 SoteriaCovenant	2026-06-19 06:26:58 (3 days ago)	Automated probe: /wp-login.php on Soteria Global infrastructure. No vulnerable software present.	Brute-Force
🇨🇦 SoteriaCovenant	2026-06-18 01:45:32 (5 days ago)	Automated probe: /wp-login.php on Soteria Global infrastructure. No vulnerable software present.	Brute-Force
🇨🇦 SoteriaCovenant	2026-06-16 07:00:32 (6 days ago)	Automated probe: /wp-login.php on Soteria Global infrastructure. No vulnerable software present.	Brute-Force
🇺🇸 wordpresshosting.solutions	2026-06-16 04:52:44 (6 days ago)	WordPress login/xmlrpc abuse or user enumeration detected. Evidence: 209.141.50.202 - - [16/Jun/2026 ... show more WordPress login/xmlrpc abuse or user enumeration detected. Evidence: 209.141.50.202 - - [16/Jun/2026:04:52:43 +0000] "GET /wp-login.php HTTP/1.1" 200 8088 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Firefox/24.0" show less	Brute-Force Web App Attack
🇫🇷 Kimax	2026-06-15 22:10:25 (1 week ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇫🇷 tecnicorioja	2026-06-15 22:01:16 (1 week ago)	wp-login attack [15/Jun/2026:15:54:04	Brute-Force Web App Attack
🇵🇱 drbboczek	2026-06-15 20:01:08 (1 week ago)	WEB attack	Brute-Force
🇩🇪 LRob.fr	2026-06-15 14:15:09 (1 week ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇨🇦 KIsmay	2026-06-15 11:37:01 (1 week ago)	Jun 15 04:16:11 www4 WPAudit[1974551]: 209.141.50.202 ouchiaccounting.ca "Mozilla/5.0 (Macintosh; In ... show more Jun 15 04:16:11 www4 WPAudit[1974551]: 209.141.50.202 ouchiaccounting.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36" bwouchi:ouchiaccounting2023@ FAIL Jun 15 04:58:30 www4 WPAudit[1977874]: 209.141.50.202 hvrhaulers.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64)" hvr:Hvrhaulers2023@ FAIL Jun 15 05:37:37 www4 WPAudit[1981164]: 209.141.50.202 hvrhaulers.com "Mozilla/5.0 (Windows NT 6.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36" sbd-admin:Hvrhaulers2023@ FAIL Jun 15 07:08:24 www4 WPAudit[1988195]: 209.141.50.202 trilloperelloyates.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36" sbd-admin:Trilloperelloyates2023@ FAIL Jun 15 07:37:00 www4 WPAudit[1990478]: 209.141.50.202 imaginesalmon.com "Mozilla/5.0 (iPhone; CPU iPhone OS 7_1_2 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Version/7.0 Mobile ... show less	Brute-Force Web App Attack
🇩🇪 4server	2026-06-15 11:02:58 (1 week ago)	[MonJun1513:02:52.5279882026][security2:error][pid4004241:tid4004364][client209.141.50.202:0]ModSecu ... show more [MonJun1513:02:52.5279882026][security2:error][pid4004241:tid4004364][client209.141.50.202:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(curl\\|wget\\|python\\|nikto\\|sqlmap\\|acunetix\\|fimap\\|dirbuster\\|cmsmap\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"217\"][id\"990210\"][msg\"Suspicioususer-agentblocked\"][hostname\"feldenkraistherapy.ch\"][uri\"/wp-admin/themes.php\"][unique_id\"ai_b3EyGx7UKdA1Nq0uN8gAAARA\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-15 00:18:46 (1 week ago)	Login Too Frequent (6)	Brute-Force Web App Attack

Showing 1 to 15 of 248 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.94

🇫🇷 195.154.59.230

🇮🇳 193.203.162.166

🇩🇪 162.62.213.187

🇺🇸 136.144.35.140

🇸🇬 103.20.122.54

🇨🇳 60.8.73.250

🇮🇹 2.38.204.93

🇺🇸 2001:470:1:fb5::200

🇨🇳 223.89.132.9

🇹🇼 220.135.131.42

🇲🇽 189.139.249.223

🇳🇱 172.94.9.120

🇮🇳 139.59.19.244

🇨🇭 107.189.2.75

🇸🇬 103.250.10.18

🇳🇱 91.92.40.237

🇷🇴 80.94.92.166

🇺🇸 65.49.20.72

🇺🇸 50.6.228.32