JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.183.153

209.50.183.153 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 28%: ?

28%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.183.153

Whois 209.50.183.153

IP Abuse Reports for 209.50.183.153:

This IP address has been reported a total of 19 times from 13 distinct sources. 209.50.183.153 was first reported on October 29th 2025, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇹 Malta	2026-06-27 22:33:16 (9 hours ago)	209.50.183.153 - - [28/Jun/2026:00:33:16 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 209.50.183.153 - - [28/Jun/2026:00:33:16 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇲🇽 octageeks.com	2026-06-24 04:12:30 (4 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇫🇷 ELYAZ	2026-06-22 23:06:08 (5 days ago)	(y4) Failed scan -byebye- from 209.50.183.153 (DE/Germany/-): (CF_ENABLE)	Hacking
🇲🇹 Malta	2026-06-17 02:15:36 (1 week ago)	209.50.183.153 - - [17/Jun/2026:04:15:36 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Ubu ... show more 209.50.183.153 - - [17/Jun/2026:04:15:36 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:119.0) Gecko/20100101 Firefox/119.0" show less	Hacking Web App Attack
🇫🇷 ELYAZ	2026-06-17 02:03:30 (1 week ago)	(y4) Failed scan -byebye- from 209.50.183.153 (DE/Germany/-): (CF_ENABLE)	Hacking
🇬🇧 PeravixGroup	2026-06-11 01:52:13 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 TPI-Abuse	2025-12-27 23:18:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.183.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.183.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 18:17:54.387295 2025] [security2:error] [pid 31533:tid 31533] [client 209.50.183.153:14651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kwijlen.com"] [uri "/.svn/wc.db"] [unique_id "aVBpItoO1PlEkHir3KBMewAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2025-12-27 19:05:18 (6 months ago)	trolling for resource vulnerabilities	Web App Attack
🇬🇧 FirewallGhost	2025-12-27 16:33:26 (6 months ago)	Web application attack detected: 3 hits on paths: .env	Web App Attack
🇫🇷 Thaliruth	2025-12-26 16:25:48 (6 months ago)	[26/Dec/2025:17:25:46.466571 +0100] aU63CoOAK7coVKMkmijhRgAAAAA 209.50.183.153 58662 127.0.0.1 7080 ... show more [26/Dec/2025:17:25:46.466571 +0100] aU63CoOAK7coVKMkmijhRgAAAAA 209.50.183.153 58662 127.0.0.1 7080 ... show less	Hacking
🇫🇮 Shaik Sai Meera	2025-11-26 18:35:10 (7 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 04:47:39 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.183.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.183.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:47:34.003733 2025] [security2:error] [pid 1817000:tid 1817031] [client 209.50.183.153:30487] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.internationalbusinessschool.org"] [uri "/.env"] [unique_id "aSU05piXM9qjzOaPIgQvJwAAAVM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:53:57 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.183.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.183.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:53:51.003060 2025] [security2:error] [pid 7778:tid 7778] [client 209.50.183.153:13773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "social-anxiety.disabilitiesdespair.com"] [uri "/.env"] [unique_id "aSUaP2qM-gOHxpU7Il58DQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:13:07 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.183.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.183.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:13:02.360641 2025] [security2:error] [pid 12562:tid 12562] [client 209.50.183.153:58873] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.holboxwhalesharktours.net"] [uri "/.svn/wc.db"] [unique_id "aSUQrmJ4B0_twhUcAc0bEAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:09:53 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.183.153 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.183.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:09:46.933707 2025] [security2:error] [pid 5676:tid 5676] [client 209.50.183.153:57627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.blog.ptr.com.post-therapyreconditioning.com"] [uri "/.git/HEAD"] [unique_id "aSUB2lM-GpN-NK_sPqu3owAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 93.177.118.211

🇺🇸 85.208.96.198

🇸🇬 47.84.139.62

🇺🇸 20.29.21.25

🇹🇼 221.120.74.68

🇳🇱 178.16.53.241

🇸🇪 130.49.115.64

🇺🇸 104.243.35.104

🇳🇴 93.89.113.60

🇹🇼 221.120.73.25

🇮🇳 218.248.19.102

🇰🇷 218.233.182.39

🇳🇱 192.253.248.180

🇳🇱 192.42.116.106

🇭🇰 154.198.162.75

🇺🇸 85.208.96.197

🇺🇸 65.49.1.33

🇧🇪 34.14.79.227

🇺🇸 20.171.8.150

🇰🇷 211.104.166.110