JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.181.153

209.50.181.153 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.181.153

Whois 209.50.181.153

IP Abuse Reports for 209.50.181.153:

This IP address has been reported a total of 22 times from 8 distinct sources. 209.50.181.153 was first reported on October 22nd 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 LSPCCU	2026-06-03 20:24:27 (2 weeks ago)	TSEC Honeypot Network report. Threat score: 68/100. Categories: Hacking. Honeypot: ssh-telnet, cowri ... show more TSEC Honeypot Network report. Threat score: 68/100. Categories: Hacking. Honeypot: ssh-telnet, cowrie. Context: 209. show less	Hacking
🇺🇸 mnsf	2026-02-16 00:05:41 (4 months ago)	Scanning/Probing (26)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-02-15 12:50:27 (4 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 mnsf	2026-02-14 23:05:57 (4 months ago)	Scanning/Probing (24)	Brute-Force Web App Attack
Anonymous	2026-01-31 20:14:13 (4 months ago)	Banned by SPAMHAUS DROP list	DDoS Attack Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-07 13:50:20 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 08:50:15.177438 2026] [security2:error] [pid 6331:tid 6331] [client 209.50.181.153:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nyemdr-online.com"] [uri "/.env"] [unique_id "aV5kl8JtzTIMfCfrNf8HTQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-01-05 22:00:27 (5 months ago)	block ruleset 486D2EE5E731CC049D1E480D68D04DFFE28AADF1	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-27 14:15:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 09:15:06.722342 2025] [security2:error] [pid 7649:tid 7649] [client 209.50.181.153:51629] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.modestosoftwater.net"] [uri "/.svn/wc.db"] [unique_id "aShc6vcfk6BLZgKupEqz7gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 16:34:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 11:34:10.786321 2025] [security2:error] [pid 14281:tid 14281] [client 209.50.181.153:19169] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.futurbike.it"] [uri "/.git/HEAD"] [unique_id "aScsAp0xgPWqFHTFq9Wt_QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-11-25 07:10:04 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 06:20:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:20:45.861333 2025] [security2:error] [pid 25508:tid 25508] [client 209.50.181.153:47923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.professionalpartyplanner.org"] [uri "/.git/HEAD"] [unique_id "aSVKvdfBt8nR11mrJqpiCQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:18:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:18:47.618802 2025] [security2:error] [pid 22845:tid 22845] [client 209.50.181.153:17235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.mavikalem.org"] [uri "/.svn/wc.db"] [unique_id "aSU8N6pX0e9IDzyyI6qbrQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:30:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:30:40.300964 2025] [security2:error] [pid 25196:tid 25196] [client 209.50.181.153:37937] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.hendersonsign.com"] [uri "/.svn/wc.db"] [unique_id "aSUw8PDPyQ-dfunJWImF5QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:17:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:17:19.413126 2025] [security2:error] [pid 23979:tid 23979] [client 209.50.181.153:23785] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.shaunthomas.com"] [uri "/.git/HEAD"] [unique_id "aSUfv84bhlK4_ANhIO-YrwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:31:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.181.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:31:48.665254 2025] [security2:error] [pid 15330:tid 15330] [client 209.50.181.153:35495] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.theavgroup.com"] [uri "/.svn/wc.db"] [unique_id "aSUVFF8RtSVGlGwkK4MoYAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.148

🇺🇸 45.156.129.128

🇬🇧 18.171.30.58

🇧🇷 187.111.28.131

🇺🇸 135.237.126.220

🇨🇳 125.75.110.72

🇨🇦 85.217.149.18

🇸🇬 47.82.48.35

🇳🇱 45.148.10.183

🇳🇱 31.56.209.8

🇺🇸 208.109.52.213

🇰🇬 185.53.229.110

🇺🇸 145.223.7.27

🇺🇸 100.29.192.117

🇷🇴 92.118.39.57

🇷🇺 84.201.243.44

🇱🇹 45.227.254.170

🇺🇸 40.124.171.82

🇺🇸 13.86.112.154

🇩🇪 213.209.159.228