JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.182.148

209.50.182.148 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.182.148

Whois 209.50.182.148

IP Abuse Reports for 209.50.182.148:

This IP address has been reported a total of 10 times from 8 distinct sources. 209.50.182.148 was first reported on October 27th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 AlexEventfahrtenIPDB	2026-06-01 05:30:39 (1 week ago)	[Mon Jun 01 07:30:39.063005 2026] [authz_core:error] [pid 35135:tid 35135] [client 209.50.182.148:16 ... show more [Mon Jun 01 07:30:39.063005 2026] [authz_core:error] [pid 35135:tid 35135] [client 209.50.182.148:16179] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php [Mon Jun 01 07:30:39.105662 2026] [authz_core:error] [pid 35135:tid 35135] [client 209.50.182.148:16179] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php, referer: https://alex-eventfahrten.de/wp-login.php ... show less	Brute-Force Web App Attack
🇳🇿 Antinson	2026-05-07 11:04:01 (1 month ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇧🇷 hostseries	2026-01-16 17:34:53 (4 months ago)	Trigger: LF_DISTATTACK	Brute-Force
🇦🇺 MAGIC	2025-12-26 01:14:26 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-24 09:43:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:42:58.201739 2025] [security2:error] [pid 23082:tid 23082] [client 209.50.182.148:27749] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.caddydad.com"] [uri "/.svn/wc.db"] [unique_id "aSQoorjxBu-WFt2Henj6nQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:47:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:47:42.758345 2025] [security2:error] [pid 1535:tid 1535] [client 209.50.182.148:10527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.haco.us"] [uri "/.env"] [unique_id "aSP_jvUzdYWY7kkw7fcPnQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-24 05:40:02 (6 months ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2025-11-14 04:00:22 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 209.50.182.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 209.50.182.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 23:00:11.812342 2025] [security2:error] [pid 32484:tid 32484] [client 209.50.182.148:14891] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.cs-mall.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.cs-mall.com"] [uri "/s3cmd.ini"] [unique_id "aRapS2vx3qwzN9cAFcaHoQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ps-center	2025-10-27 12:23:24 (7 months ago)	C1-W: TCP-Scanner. Port: 22	Port Scan

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 175.118.127.138

🇨🇳 121.4.20.64

🇳🇱 89.21.67.152

🇵🇭 49.145.10.58

🇳🇱 45.148.10.141

🇩🇴 38.156.235.204

🇧🇪 34.77.173.210

🇨🇭 34.65.172.232

🇧🇪 34.62.110.125

🇧🇪 34.38.164.152

🇵🇪 201.230.121.219

🇧🇷 200.175.61.207

🇸🇪 185.246.130.20

🇿🇦 102.129.53.240

🇷🇴 85.186.244.106

🇩🇪 34.185.137.115

🇬🇧 34.153.170.225

🇮🇩 34.101.224.155

🇯🇵 34.84.116.139

🇳🇱 34.32.181.181