JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.182.195

209.50.182.195 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 3%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.182.195

Whois 209.50.182.195

IP Abuse Reports for 209.50.182.195:

This IP address has been reported a total of 19 times from 8 distinct sources. 209.50.182.195 was first reported on October 16th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-09 03:30:25 (1 week ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
Anonymous	2026-01-19 07:12:55 (5 months ago)	[19/Jan/2026:18:12:54 +1100] "GET /wp-admin/index.php HTTP/1.1" 301 302 "http://[X].[X]/wp-admin/ind ... show more [19/Jan/2026:18:12:54 +1100] "GET /wp-admin/index.php HTTP/1.1" 301 302 "http://[X].[X]/wp-admin/index.php" "Opera/9.80 (Windows NT 6.1; WOW64; MRA 6.1 (build 6683)) Presto/2.12.388 Version/12.14" show less	Hacking Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:02:02 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-27 08:12:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 03:12:08.399021 2025] [security2:error] [pid 20421:tid 20421] [client 209.50.182.195:26995] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.cormanleigh.com"] [uri "/.git/HEAD"] [unique_id "aSgH2HgbwI-Ns7PEg3rITgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 04:35:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 23:35:21.367479 2025] [security2:error] [pid 11834:tid 11834] [client 209.50.182.195:25993] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.alaskadreamspublishing.com"] [uri "/.svn/wc.db"] [unique_id "aSfVCVkIXqVpZo6wMB2sGAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-11-26 22:59:17 (6 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2025-11-25. show less	Hacking Web App Attack SSH
🇱🇻 garmtech.com	2025-11-26 22:01:37 (6 months ago)	Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ... show more Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:24:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:24:35.357607 2025] [security2:error] [pid 31378:tid 31378] [client 209.50.182.195:48433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.paguilar.com"] [uri "/.svn/wc.db"] [unique_id "aSVLo8bpiLBzgiEBayo-4wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:55:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:55:13.518244 2025] [security2:error] [pid 18022:tid 18022] [client 209.50.182.195:56707] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.i-brochures.com"] [uri "/.env"] [unique_id "aSVEwQi9lMkfhB1bGid4QgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:21:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:21:14.565541 2025] [security2:error] [pid 20662:tid 20662] [client 209.50.182.195:19393] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.modalguitarist.com"] [uri "/.svn/wc.db"] [unique_id "aSU8yrScDUNgeMAwU0xrFwAAAC8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:21:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:21:22.994046 2025] [security2:error] [pid 32700:tid 32710] [client 209.50.182.195:57347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "siraceservices.xxxmain.com"] [uri "/.env"] [unique_id "aSUuwrcrjRrp2J9TXtynOQAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:49:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:49:19.959903 2025] [security2:error] [pid 4232:tid 4232] [client 209.50.182.195:18463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.dannisinn.com"] [uri "/.env"] [unique_id "aSUnP74OFzEAkxaVMdg8ogAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:09:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:09:38.847021 2025] [security2:error] [pid 5050:tid 5050] [client 209.50.182.195:40839] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.winestoria.com"] [uri "/.env"] [unique_id "aSUd8k7Ciy1YVD8FUrDwNAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:32:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:32:07.681334 2025] [security2:error] [pid 27460:tid 27460] [client 209.50.182.195:47041] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.rahmanou.com"] [uri "/.svn/wc.db"] [unique_id "aSUVJ-tJI5hOxvDjCqvNOQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:08:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:08:18.095064 2025] [security2:error] [pid 29399:tid 29399] [client 209.50.182.195:26739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.vanemby.com"] [uri "/.env"] [unique_id "aSUPkoISyn9QVqEvK0ElBwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.198.160.68

🇧🇷 189.0.71.236

🇰🇷 211.249.46.33

🇵🇪 200.215.248.19

🇲🇴 182.93.50.90

🇸🇬 152.42.190.92

🇺🇸 104.21.68.226

🇨🇳 101.126.31.191

🇸🇬 84.75.148.139

🇩🇪 64.89.163.152

🇺🇸 64.62.197.219

🇨🇳 58.221.244.34

🇳🇱 45.148.10.147

🇯🇵 43.167.157.80

🇺🇸 24.115.91.71

🇪🇸 217.160.226.51

🇨🇦 216.73.162.15

🇰🇷 210.118.224.138

🇹🇭 203.154.91.10

🇺🇸 198.98.62.211