JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.180.240

209.50.180.240 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.180.240

Whois 209.50.180.240

IP Abuse Reports for 209.50.180.240:

This IP address has been reported a total of 13 times from 3 distinct sources. 209.50.180.240 was first reported on October 1st 2025, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-11-26 12:16:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:16:16.151645 2025] [security2:error] [pid 10474:tid 10474] [client 209.50.180.240:30639] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.debhill.com"] [uri "/.env"] [unique_id "aSbvkDV9EgNITj7ySWHAOAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:47:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:46:59.767659 2025] [security2:error] [pid 3738122:tid 3738141] [client 209.50.180.240:34253] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.tributetomarilyn.com"] [uri "/.svn/wc.db"] [unique_id "aSbao1b15STYbNZie7hOKAAAAUE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:35:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:35:06.286693 2025] [security2:error] [pid 26388:tid 26388] [client 209.50.180.240:38313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.d-sinema.com"] [uri "/.git/HEAD"] [unique_id "aSa7ugGG-oljkQLNUfnMewAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:37:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:37:47.997110 2025] [security2:error] [pid 22283:tid 22283] [client 209.50.180.240:60305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.ladymcollection.com"] [uri "/.env"] [unique_id "aSagO7vDghJJGm79Q0eq9AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:28:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:28:17.686300 2025] [security2:error] [pid 18827:tid 18965] [client 209.50.180.240:23453] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "photo.gallery.the-aquifer.com"] [uri "/.env"] [unique_id "aSZXscTvREaKfhuVq1p60AAAAYk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:10:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:10:37.317958 2025] [security2:error] [pid 24481:tid 24481] [client 209.50.180.240:56247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "benkatkin.passy.us"] [uri "/.env"] [unique_id "aSZTjYfMVk7iJgpBNP9t6wAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:19:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:19:45.745885 2025] [security2:error] [pid 14156:tid 14156] [client 209.50.180.240:42343] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pitigliano.montepulciano.org"] [uri "/.git/HEAD"] [unique_id "aSZHoXdOnWFc24MTP3mBXAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:02:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:02:25.562074 2025] [security2:error] [pid 6763:tid 6763] [client 209.50.180.240:53953] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.harrygant.com"] [uri "/.env"] [unique_id "aSZDkag4qnwHT6sKbohDBQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:41:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:41:02.227015 2025] [security2:error] [pid 9077:tid 9077] [client 209.50.180.240:12773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.psychtraining.org"] [uri "/.svn/wc.db"] [unique_id "aSP9_ipEJC5nhkW7jzh57AAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-23 16:58:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 11:58:28.398591 2025] [security2:error] [pid 31262:tid 31262] [client 209.50.180.240:31119] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.barigby.com"] [uri "/.git/HEAD"] [unique_id "aSM9NEJUES-Bk0tvrkfKcwAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-08 00:33:10 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 209.50.180.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 07 19:33:04.072903 2025] [security2:error] [pid 13158:tid 13158] [client 209.50.180.240:31293] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.radtraininginc.net\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.radtraininginc.net"] [uri "/s3cmd.ini"] [unique_id "aQ6PwBwxhjod5vMLpoWHigAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2025-10-10 04:08:39 (8 months ago)	Wordpress malicious attack:[sshd]	Web App Attack
🇮🇹 Rosh	2025-10-01 13:49:33 (8 months ago)	[10/01/25 15:49:32] SSH: illegal login attempts	Brute-Force SSH

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 193.233.86.212

🇻🇳 27.79.1.14

🇬🇧 188.240.59.53

🇨🇴 186.146.235.58

🇳🇱 176.65.149.135

🇵🇰 103.134.74.251

🇳🇱 91.92.40.10

🇷🇴 80.94.92.152

🇺🇸 72.92.158.38

🇺🇸 47.190.8.73

🇧🇼 41.216.209.74

🇷🇴 193.46.255.86

🇧🇷 187.120.72.123

🇧🇷 187.8.64.94

🇨🇴 179.1.33.34

🇺🇸 170.187.165.219

🇵🇹 161.230.217.176

🇺🇸 161.35.100.199

🇮🇩 103.247.13.193

🇨🇭 85.5.148.125