JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.184.129

209.50.184.129 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 30%: ?

30%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.184.129

Whois 209.50.184.129

IP Abuse Reports for 209.50.184.129:

This IP address has been reported a total of 14 times from 7 distinct sources. 209.50.184.129 was first reported on November 13th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-15 04:14:54 (2 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇲🇽 octageeks.com	2026-06-12 04:07:08 (5 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇫🇷 ELYAZ	2026-06-12 02:36:14 (5 days ago)	(y4) Failed scan -byebye- from 209.50.184.129 (ES/Spain/-): (CF_ENABLE)	Hacking
🇲🇽 octageeks.com	2026-06-01 04:08:57 (2 weeks ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇦🇺 MAGIC	2026-05-30 00:02:59 (2 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇲🇽 octageeks.com	2026-05-29 04:08:41 (2 weeks ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇺🇸 lostswordfish.com	2026-05-27 08:30:05 (2 weeks ago)	Wordfence waf block on taussigtravel	Web App Attack
🇫🇷 pm33	2026-05-25 22:30:16 (3 weeks ago)	Wordpress login attempts	Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 06:39:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:39:17.367446 2025] [security2:error] [pid 16825:tid 16893] [client 209.50.184.129:13035] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rammep.digital4z.com"] [uri "/.svn/wc.db"] [unique_id "aSaglYpGi0qyZ6NgFD3JggAAAIo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:35:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:35:47.858319 2025] [security2:error] [pid 12793:tid 12793] [client 209.50.184.129:25487] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "portfolio.hotelausland.com"] [uri "/.git/HEAD"] [unique_id "aSaRs20hA7tbA5b5uFyJ-wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:18:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:17:58.681126 2025] [security2:error] [pid 3365543:tid 3365652] [client 209.50.184.129:41281] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ingeconsultcr.com.bbpuertadelsol.com"] [uri "/.env"] [unique_id "aSZxZmzJ-U6IElkF6xOK3wAAAcM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:44:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:44:34.502313 2025] [security2:error] [pid 5425:tid 5442] [client 209.50.184.129:11087] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.zechesfinancialservices.com"] [uri "/.git/HEAD"] [unique_id "aSZbgloBK930f_mgSwG0XQAAAU8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:03:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:03:20.487401 2025] [security2:error] [pid 16094:tid 16094] [client 209.50.184.129:11281] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.perkowski.net"] [uri "/.git/HEAD"] [unique_id "aSZDyN04CTgyDsMZK2GqHQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2025-11-13 04:46:44 (7 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /s3cmd.ini (Rule ID: 920440) - URL file extension is restricted by policy show less	Hacking SQL Injection Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4004:1002::129

🇺🇸 164.90.129.12

🇳🇱 154.83.186.147

🇮🇳 2401:4900:16cd:d893:7c9a:538c:4ec6:c412

🇺🇸 199.195.249.83

🇨🇳 117.187.175.118

🇰🇷 112.185.27.108

🇮🇳 103.97.215.11

🇩🇪 87.106.134.4

🇧🇷 43.164.192.40

🇰🇷 14.55.144.22

🇨🇳 14.22.49.32

🇻🇳 1.53.242.84

🇺🇸 195.184.76.7

🇩🇪 193.124.20.243

🇵🇭 119.92.76.210

🇨🇳 116.228.233.93

🇸🇪 104.23.221.71

🇷🇺 81.222.176.130

🇯🇵 47.74.41.182