JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.180.7

209.50.180.7 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.180.7

Whois 209.50.180.7

IP Abuse Reports for 209.50.180.7:

This IP address has been reported a total of 15 times from 8 distinct sources. 209.50.180.7 was first reported on October 13th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇱🇻 garmtech.com	2026-03-18 08:12:04 (3 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 10-12.209.50.180.7.web-spammer ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 10-12.209.50.180.7.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇭🇺 bcsaba	2025-12-27 05:55:54 (5 months ago)	Joomla spam 209.50.180.7 - - [27/Dec/2025:06:55:52 +0100] "GET /index.php?option=com_easyblog&view=d ... show more Joomla spam 209.50.180.7 - - [27/Dec/2025:06:55:52 +0100] "GET /index.php?option=com_easyblog&view=dashboard&layout=write HTTP/1.1" 404 789 "https://REDACTED" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" show less	Web App Attack
🇵🇱 sefinek.net	2025-12-16 00:06:43 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-25 06:25:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:24:30.032840 2025] [security2:error] [pid 18634:tid 18634] [client 209.50.180.7:19871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.burlison.com"] [uri "/.svn/wc.db"] [unique_id "aSVLntnH_WsBTf8l_qx-1gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:15:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:15:50.716736 2025] [security2:error] [pid 25978:tid 25978] [client 209.50.180.7:33497] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.earthtwoworkshop.com"] [uri "/.env"] [unique_id "aSU7hjuJuLdpWerrbtpt5QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:34:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:33:59.534012 2025] [security2:error] [pid 16824:tid 16824] [client 209.50.180.7:35537] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.listitwithsteve.com"] [uri "/.git/HEAD"] [unique_id "aSUxtwVtJc0Sc0Ne5RxckwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:16:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:16:36.534818 2025] [security2:error] [pid 6639:tid 6639] [client 209.50.180.7:34501] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nifeconsult.com"] [uri "/.git/HEAD"] [unique_id "aSUtpI8luUXyrY16ZpAH3AAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:06:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:06:37.202256 2025] [security2:error] [pid 31498:tid 31515] [client 209.50.180.7:45167] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "roanoke.charlottesvilleclosets.com"] [uri "/.svn/wc.db"] [unique_id "aSUPLfow9dE5SYd00VRbWgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:04:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:04:05.864966 2025] [security2:error] [pid 23156:tid 23156] [client 209.50.180.7:46287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cmangano.com.ithacalions.com"] [uri "/.env"] [unique_id "aSP1VXLERaGq0F71qlXFvwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:47:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:47:32.285564 2025] [security2:error] [pid 521:tid 521] [client 209.50.180.7:47165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cassies.jbaydeliveries.com"] [uri "/.svn/wc.db"] [unique_id "aSPxdAtG4aJZyrmGoCNVOAAAACw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:32:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:32:38.093910 2025] [security2:error] [pid 20078:tid 20078] [client 209.50.180.7:49551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.alexscollay.com"] [uri "/.git/HEAD"] [unique_id "aSPf5js2AZVgLsvR88RktgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 tecnicorioja	2025-10-17 22:01:55 (8 months ago)	wp-login attack [17/Oct/2025:19:02:12	Brute-Force Web App Attack
🇺🇸 nationaleventpros.com	2025-10-15 07:47:31 (8 months ago)	WordPress login attempt	Brute-Force
Anonymous	2025-10-13 11:57:09 (8 months ago)	WordPress Brute Force	Brute-Force

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇨 200.7.215.156

🇺🇸 139.55.21.87

🇨🇳 117.15.95.172

🇰🇷 106.248.238.187

🇨🇳 180.153.236.21

🇻🇳 171.231.195.144

🇧🇷 143.137.33.255

🇺🇸 141.11.88.21

🇨🇭 107.189.29.12

🇷🇺 91.244.113.178

🇺🇸 66.132.224.15

🇰🇷 59.10.106.46

🇷🇺 37.28.177.141

🇯🇵 35.77.196.154

🇮🇩 34.128.111.153

🇺🇸 18.222.74.3

🇳🇮 190.212.217.250

🇨🇳 180.153.236.236

🇨🇳 117.50.130.128

🇮🇹 93.92.75.58