JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.180.183

209.50.180.183 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.180.183

Whois 209.50.180.183

IP Abuse Reports for 209.50.180.183:

This IP address has been reported a total of 16 times from 9 distinct sources. 209.50.180.183 was first reported on October 3rd 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 MatStef132	2026-05-19 20:21:31 (1 month ago)	MatShield L7: blocked on chat.justchat.icu (ua-quarantined)	Bad Web Bot
🇫🇷 MatStef132	2026-05-14 21:32:38 (1 month ago)	[mathost.eu] ua-q	DDoS Attack Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 04:30:40 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:30:33.760855 2026] [security2:error] [pid 31236:tid 31236] [client 209.50.180.183:56841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kmp.net"] [uri "/app/.git/config"] [unique_id "aZaR6VSMCH81IA2FVOQ8GwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 02:10:06 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:09:58.680015 2026] [security2:error] [pid 22351:tid 22351] [client 209.50.180.183:29081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "katharinanitzpon.com"] [uri "/frontend/.env"] [unique_id "aZZw9lgtjTNlTgbI-yGQJQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 00:29:22 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 19:29:14.722840 2026] [security2:error] [pid 2917:tid 2917] [client 209.50.180.183:47441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "von-s.com"] [uri "/admin/.git/config"] [unique_id "aZZZWiQcq6sfPVdbgbjjMAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Origon	2026-02-18 21:40:51 (4 months ago)	http-sensitive-files - IP: 209.50.180.183 - time="2026-02-18T22:40:51+01:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 209.50.180.183 - time="2026-02-18T22:40:51+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 209.50.180.183 (GB/200373) : 4h ban on Ip 209.50.180.183" module=db show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:25:27 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:25:20.132709 2026] [security2:error] [pid 14122:tid 14156] [client 209.50.180.183:32301] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thetooheys.com"] [uri "/admin/.env"] [unique_id "aZYEEGX74uMzOTtiFzX4YwAAAMI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-18 12:53:24 (4 months ago)	Blocking for trying to access an exploit file: /.env.save	Hacking
🇺🇸 TPI-Abuse	2026-02-09 23:51:47 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:51:40.007306 2026] [security2:error] [pid 19453:tid 19453] [client 209.50.180.183:58889] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kendylcelina.com"] [uri "/app/.env"] [unique_id "aYpzDAF7mDOMLUrMmNVENgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:12:18 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:12:11.192864 2026] [security2:error] [pid 11732:tid 11732] [client 209.50.180.183:54801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "horizonsoundchicago.com"] [uri "/admin/.env"] [unique_id "aYpNq48IlnSpKeaP1bjHnQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-12-27 08:15:49 (5 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇩🇪 big-cloud.nl	2025-11-29 11:18:01 (6 months ago)	Try to access /xmlrpc.php	Web App Attack
🇦🇺 oncord	2025-10-19 20:22:19 (8 months ago)	Form spam	Web Spam
🇩🇪 FeG Deutschland	2025-10-12 02:52:55 (8 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇦🇺 oncord	2025-10-10 15:11:31 (8 months ago)	Form spam	Web Spam

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.146.80.107

🇬🇧 193.163.125.101

🇺🇸 162.216.150.214

🇪🇸 90.71.113.33

🇩🇪 69.5.169.168

🇺🇸 65.49.1.136

🇺🇸 64.62.197.42

🇺🇸 50.114.172.201

🇨🇳 36.106.167.15

🇬🇧 35.203.210.127

🇨🇳 222.219.232.57

🇺🇸 192.226.69.58

🇷🇺 185.94.111.1

🇺🇸 162.216.150.66

🇺🇸 152.32.150.26

🇨🇳 120.48.135.189

🇭🇰 101.36.111.38

🇩🇪 91.92.240.42

🇱🇻 81.30.98.75

🇺🇸 68.225.46.14