JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.184.132

209.50.184.132 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 27%: ?

27%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.184.132

Whois 209.50.184.132

IP Abuse Reports for 209.50.184.132:

This IP address has been reported a total of 21 times from 10 distinct sources. 209.50.184.132 was first reported on November 2nd 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 london2038.com	2026-06-24 10:24:07 (1 day ago)	Detected by WP fail2ban 2026-06-24T12:24:06.796055+02:00 wordpress: Authentication attempt from 209. ... show more Detected by WP fail2ban 2026-06-24T12:24:06.796055+02:00 wordpress: Authentication attempt from 209.50.184.132 show less	Brute-Force Web App Attack
🇫🇷 ELYAZ	2026-06-20 06:02:00 (5 days ago)	(y4) Failed scan -byebye- from 209.50.184.132 (ES/Spain/-): (CF_ENABLE)	Hacking
🇺🇸 bpolson	2026-06-15 17:11:02 (1 week ago)	WordPress Hacking/Scanning. (s1)	Hacking Web App Attack
🇲🇽 octageeks.com	2026-06-15 04:15:11 (1 week ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇺🇸 xmission.com	2025-12-30 23:40:16 (5 months ago)	Blocked by UFW (TCP on 80) Source port: 27597 TTL: 52 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 27597 TTL: 52 Packet length: 60 TOS: 0x00 This report (for 209.50.184.132) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:38 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-29 09:06:14 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:06:10.121753 2025] [security2:error] [pid 31972:tid 31972] [client 209.50.184.132:26351] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "frank-klimas.com"] [uri "/.git/HEAD"] [unique_id "aVJEgunWIQoVK0rKjXJI9AAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:50:20 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:50:17.595224 2025] [security2:error] [pid 27610:tid 27610] [client 209.50.184.132:29483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tribwatch.com"] [uri "/.env"] [unique_id "aVJAyYHY4WUirXXrTo5mqAAAACk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 07:46:01 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 02:45:53.058089 2025] [security2:error] [pid 23954:tid 23954] [client 209.50.184.132:48973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stinnetthomeinspection.com"] [uri "/.git/HEAD"] [unique_id "aVIxsQZU1lPUlJlKCjfhUgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:34:13 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:34:06.471462 2025] [security2:error] [pid 30433:tid 30433] [client 209.50.184.132:42743] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "safwalu.com"] [uri "/.svn/wc.db"] [unique_id "aVIg3gEhdlQkNVnKHMEuMQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 JCB	2025-12-26 13:47:00 (5 months ago)	209.50.184.132 - - [26/Dec/2025:12:28:35 +0200] "GET /wordpress//installer.php HTTP/1.1" 404 236	Web App Attack
🇺🇸 xmission.com	2025-12-18 05:44:12 (6 months ago)	Blocked by UFW (TCP on 80) Source port: 22859 TTL: 52 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 22859 TTL: 52 Packet length: 60 TOS: 0x00 This report (for 209.50.184.132) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
Anonymous	2025-12-10 22:26:21 (6 months ago)	wordpress-trap	Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 21:53:19 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 16:53:15.108069 2025] [security2:error] [pid 9025:tid 9025] [client 209.50.184.132:27977] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|13waggoners.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "13waggoners.com"] [uri "/database.sql"] [unique_id "aSoZywxQ2XySJLP-yLLS4AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:18:19 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:18:12.475867 2025] [security2:error] [pid 17180:tid 17180] [client 209.50.184.132:48395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fedeoliva.com"] [uri "/.env"] [unique_id "aSVYNGyGSMIXRNStst3-IQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.141

🇨🇳 118.178.146.133

🇺🇸 104.243.43.55

🇺🇸 43.173.77.239

🇨🇳 14.103.127.195

🇬🇪 195.54.179.244

🇺🇸 172.237.136.213

🇻🇳 103.252.123.105

🇮🇳 103.47.17.84

🇺🇸 91.230.168.235

🇧🇷 45.205.1.246

🇺🇸 45.146.55.140

🇰🇷 34.64.58.156

🇭🇰 23.249.28.115

🇨🇳 1.24.16.29

🇧🇷 190.2.67.181

🇺🇸 162.216.149.109

🇺🇸 138.197.204.198

🇺🇸 128.245.248.42

🇩🇪 95.169.191.176