JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.182.71

209.50.182.71 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.182.71

Whois 209.50.182.71

IP Abuse Reports for 209.50.182.71:

This IP address has been reported a total of 24 times from 8 distinct sources. 209.50.182.71 was first reported on October 12th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-26 12:05:54 (1 week ago)	[osotir.org] httpd-login-spray-site: sites=agonistes.gr.synathlountes; logs=/var/log/httpd/domains/a ... show more [osotir.org] httpd-login-spray-site: sites=agonistes.gr.synathlountes; logs=/var/log/httpd/domains/agonistes.gr.synathlountes.log; samples=site_wide=true \| distinct_ips=11 \| /wp-login.php show less	Hacking Web App Attack
🇦🇺 MAGIC	2025-12-26 02:10:56 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇷 Little Iguana	2025-12-07 09:42:21 (6 months ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇨🇴 adalbertoreyes.org	2025-12-03 16:06:24 (6 months ago)	CategoryPortScan	Port Scan
🇺🇸 TPI-Abuse	2025-12-02 23:03:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 18:03:33.337985 2025] [security2:error] [pid 3909:tid 3909] [client 209.50.182.71:9633] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mrsreclamation.com"] [uri "/.git/HEAD"] [unique_id "aS9wRVa8lC_qCUo9CKJi0QAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:36:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:36:35.077018 2025] [security2:error] [pid 9173:tid 9173] [client 209.50.182.71:23813] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "perthdps.com"] [uri "/.svn/wc.db"] [unique_id "aS6lE7HDIEK_tvfZFx6yUwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:48:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:48:12.770163 2025] [security2:error] [pid 12080:tid 12080] [client 209.50.182.71:43455] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thermalsoftware.com"] [uri "/.git/HEAD"] [unique_id "aS5vjJD3qlhy1F6sa7c6iwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 06:43:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 01:42:53.529772 2025] [security2:error] [pid 1913:tid 1913] [client 209.50.182.71:49307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.stardancertantra.com"] [uri "/.git/HEAD"] [unique_id "aSfy7Vu4-aep3_Q92iNPVQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 06:20:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 01:20:39.002105 2025] [security2:error] [pid 16583:tid 16583] [client 209.50.182.71:20235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.phenoxcaribbean.com"] [uri "/.svn/wc.db"] [unique_id "aSfttyQXiSU1LZm3nkFDDQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 Asimar	2025-11-27 00:26:02 (6 months ago)	(mod_security) mod_security triggered on hostname [redacted] 209.50.182.71 (DE/Germany/-): (CF_ENAB ... show more (mod_security) mod_security triggered on hostname [redacted] 209.50.182.71 (DE/Germany/-): (CF_ENABLE) show less	SQL Injection
🇺🇸 TPI-Abuse	2025-11-26 09:36:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:36:05.477864 2025] [security2:error] [pid 7778:tid 7778] [client 209.50.182.71:40083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.peteringrassia.com"] [uri "/.env"] [unique_id "aSbKBUho-kvDSwRbpSzUygAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:44:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:43:53.223250 2025] [security2:error] [pid 927608:tid 927608] [client 209.50.182.71:52305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.newcitypark.com"] [uri "/.env"] [unique_id "aSVQKdokOSOu8AGIUr03lwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:04:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:04:18.279708 2025] [security2:error] [pid 3152:tid 3152] [client 209.50.182.71:20591] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.keystonebrass.com"] [uri "/.git/HEAD"] [unique_id "aSVG4toJMiOBZVcelod99QAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:06:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:06:19.487587 2025] [security2:error] [pid 26410:tid 26410] [client 209.50.182.71:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.perl-photo.com"] [uri "/.git/HEAD"] [unique_id "aSU5Sxt2cnp0Mf9zfKMjUQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:41:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.182.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:41:36.577297 2025] [security2:error] [pid 5601:tid 5601] [client 209.50.182.71:45611] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.swampoodlegrounds.com"] [uri "/.git/HEAD"] [unique_id "aSUzgDKs3LuQccCeC3ugGAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.134.84

🇮🇳 163.53.176.201

🇮🇳 152.32.156.136

🇮🇳 103.250.184.80

🇺🇸 57.141.20.33

🇳🇬 165.154.11.37

🇺🇸 164.90.151.212

🇩🇪 139.59.153.237

🇷🇴 92.118.39.62

🇳🇱 45.148.10.141

🇺🇸 34.162.131.183

🇧🇪 34.156.241.237

🇺🇸 2607:f8b0:4023:100d::12d

🇧🇷 190.89.137.81

🇲🇽 189.158.26.76

🇵🇰 175.107.1.243

🇳🇬 165.154.176.251

🇵🇰 154.57.199.46

🇸🇬 101.47.156.170

🇫🇷 91.196.152.219