JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.176.48

209.50.176.48 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 47%: ?

47%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.176.48

Whois 209.50.176.48

IP Abuse Reports for 209.50.176.48:

This IP address has been reported a total of 25 times from 14 distinct sources. 209.50.176.48 was first reported on October 28th 2025, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-23 05:03:28 (8 hours ago)	(y4) Failed scan -byebye- from 209.50.176.48 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇫🇷 SpaceHost-Server	2026-06-22 22:30:15 (14 hours ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-06-21 22:28:59 (1 day ago)		Brute-Force Web App Attack
🇲🇽 octageeks.com	2026-06-20 04:15:36 (3 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇺🇸 nationaleventpros.com	2026-06-16 13:05:52 (1 week ago)	WordPress login attempt	Brute-Force
🇫🇷 ELYAZ	2026-06-16 02:58:25 (1 week ago)	(y4) Failed scan -byebye- from 209.50.176.48 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇬🇷 setupgr	2026-06-14 12:16:20 (1 week ago)	(mod_security) mod_security (id:900001) triggered by 209.50.176.48: 1 in the last 86400 secs; Ports: ... show more (mod_security) mod_security (id:900001) triggered by 209.50.176.48: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 14 15:16:19.069738 2026] [security2:error] [pid 948989:tid 949037] [client 209.50.176.48:49223] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.fashionfragonard.gr"] [severity "CRITICAL"] [tag "security"] [hostname "mail.fashionfragonard.gr"] [uri "/wp-login.php"] [unique_id "ai6bk9XD3_cY7WcDuxqBXwAAAJU"], referer: https://mail.fashionfragonard.gr/wp-login.php show less	Port Scan
🇺🇸 Axel	2026-06-14 09:35:19 (1 week ago)	Blocked by UFW on MVI [443/tcp] \| SPT: 62857 \| TTL: 51 \| LEN: 60 \| TOS: 0x00 • Reported by: github.c ... show more Blocked by UFW on MVI [443/tcp] \| SPT: 62857 \| TTL: 51 \| LEN: 60 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 pm33	2026-06-10 16:21:00 (1 week ago)	Wordpress login attempts	Brute-Force
🇺🇸 lostswordfish.com	2026-06-10 07:52:06 (1 week ago)	Wordfence waf block on kcuar	Web App Attack
🇩🇪 BlueWire Hosting	2026-05-22 20:35:30 (1 month ago)	Bad bot ignoring robot.txt	Bad Web Bot
🇺🇸 agenciahypelab.com.br	2026-02-25 18:28:49 (3 months ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-01-02 20:07:03 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.176.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.176.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 02 15:06:35.904650 2026] [security2:error] [pid 23052:tid 23052] [client 209.50.176.48:46365] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.joanofartdesign.com"] [uri "/.env"] [unique_id "aVglS-5kgl68cUop4xTASgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 02:29:51 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.176.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.176.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 21:29:45.753879 2025] [security2:error] [pid 17481:tid 17481] [client 209.50.176.48:53799] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "spyasociados.com"] [uri "/.git/HEAD"] [unique_id "aVCWGZtAJyUTujRoGujdWgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 23:23:56 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.176.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.176.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 18:23:47.636081 2025] [security2:error] [pid 22383:tid 22383] [client 209.50.176.48:23001] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "roguetechink.com"] [uri "/.git/HEAD"] [unique_id "aVBqgwH3q6yF-1OFd2ssbAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 194.195.91.15

🇺🇸 172.202.118.16

🇨🇳 116.11.120.204

🇺🇸 107.170.65.169

🇺🇸 104.20.24.32

🇫🇷 85.217.140.25

🇳🇱 45.148.10.247

🇮🇶 37.238.45.202

🇰🇷 20.214.174.141

🇸🇬 20.212.60.21

🇺🇸 184.105.139.86

🇨🇳 171.104.83.131

🇩🇪 148.153.140.142

🇮🇳 103.54.101.248

🇺🇸 65.49.1.230

🇨🇳 60.16.206.91

🇨🇳 60.16.197.227

🇬🇧 35.203.211.36

🇳🇱 34.7.247.228

🇸🇪 31.220.15.61