JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.182.44

209.50.182.44 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 9%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.182.44

Whois 209.50.182.44

IP Abuse Reports for 209.50.182.44:

This IP address has been reported a total of 20 times from 13 distinct sources. 209.50.182.44 was first reported on October 16th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-05-19 22:27:17 (2 weeks ago)	Known malicious PHP file or CMS probe	Web App Attack
🇱🇻 garmtech.com	2026-05-07 18:52:15 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 21-52.209.50.182.44.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 21-52.209.50.182.44.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-05 11:28:58 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 14-28.209.50.182.44.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 14-28.209.50.182.44.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇬🇧 relianoid.com	2026-01-13 14:52:18 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2026-01-07 14:23:27 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 09:23:22.246148 2026] [security2:error] [pid 27801:tid 27801] [client 209.50.182.44:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "caspina.com"] [uri "/.svn/wc.db"] [unique_id "aV5sWtkaAhp9eSOqXs2HHAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-03 13:44:45 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.03 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.03 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 myagent.site	2026-01-01 05:37:04 (5 months ago)	Blocking for trying to access an exploit file: /wordpress//kickstart.php	Hacking
🇺🇸 myagent.site	2026-01-01 02:44:08 (5 months ago)	Blocking for trying to access an exploit file: /wp//kickstart.php	Hacking
🇬🇧 venus.launch.bz	2025-12-31 19:56:15 (5 months ago)	(wpscan) WordPress probe detected from 209.50.182.44 (DE/Germany/-)	Hacking
🇺🇸 TPI-Abuse	2025-12-30 16:14:12 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 11:14:07.025316 2025] [security2:error] [pid 21689:tid 21689] [client 209.50.182.44:40967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.hicom.net"] [uri "/.svn/wc.db"] [unique_id "aVP6T9fY4QGbEFaquSrRwAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:09:25 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:09:21.576155 2025] [security2:error] [pid 22043:tid 22092] [client 209.50.182.44:35213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sylvestconsulting.com"] [uri "/.git/HEAD"] [unique_id "aVIbEeo-JHkotc-RqBJZIAAAAVA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 03:41:09 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.44 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:41:02.268803 2025] [security2:error] [pid 2566013:tid 2566025] [client 209.50.182.44:21579] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jedelectric.com"] [uri "/.env"] [unique_id "aVH4TppwqS-pohtV-2wYDQAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-09 23:51:30 (5 months ago)	wordpress-trap	Web App Attack
🇧🇾 lns.bz	2025-11-28 21:01:10 (6 months ago)	Banned for trying to access xmlrpc [BY]	Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.96.139.170

🇺🇸 191.101.33.115

🇺🇸 162.220.232.11

🇯🇵 160.251.206.106

🇺🇸 152.32.149.47

🇺🇸 147.185.132.88

🇮🇳 128.185.199.22

🇺🇸 104.224.30.93

🇰🇷 43.133.252.44

🇫🇷 185.177.72.10

🇨🇳 183.217.4.138

🇺🇸 147.185.132.30

🇺🇸 147.185.132.27

🇨🇳 125.124.42.183

🇷🇺 95.84.137.185

🇷🇺 46.39.239.86

🇸🇬 35.198.249.73

🇺🇸 35.170.167.74

🇯🇵 205.234.148.85

🇮🇩 203.17.87.167