AbuseIPDB » 209.50.184.185
209.50.184.185
This IP was reported 8 times. Confidence of
Abuse
is 0% : ?
ISP
3xK Tech GmbH
Usage Type
Data Center/Web Hosting/Transit
ASN
AS200373
Domain Name
3xktech.cloud
Country
π©πͺ
Germany
City
Berlin, State of Berlin
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 209.50.184.185 :
This IP address has been reported a total of
8
times from
5 distinct
sources.
209.50.184.185 was first reported on
October 7th 2025 , and the most recent report was
1 day ago
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
π¬π·
setupgr
2026-06-11 05:54:19
(1 day ago)
(mod_security) mod_security (id:900001) triggered by 209.50.184.185: 1 in the last 86400 secs; Ports ...
show more
(mod_security) mod_security (id:900001) triggered by 209.50.184.185: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 11 08:54:15.874384 2026] [security2:error] [pid 2070000:tid 2070049] [client 209.50.184.185:60169] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.cpanagiotou.gr"] [severity "CRITICAL"] [tag "security"] [hostname "mail.cpanagiotou.gr"] [uri "/wp-login.php"] [unique_id "aipNh__NU8LTVBV2DmFrmQAAAM0"], referer: https://mail.cpanagiotou.gr/wp-login.php
show less
Port Scan
πΊπΈ
TPI-Abuse
2026-02-09 18:58:53
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.184.185 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.184.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 13:58:42.641364 2026] [security2:error] [pid 17241:tid 17241] [client 209.50.184.185:34809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fynyx.com"] [uri "/site/.git/config"] [unique_id "aYouYhPj_v-iiC5sXEkWTwAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-09 09:55:50
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.184.185 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.184.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 04:55:47.004591 2026] [security2:error] [pid 14645:tid 14705] [client 209.50.184.185:44541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gabegabel.com"] [uri "/admin/.git/config"] [unique_id "aYmvIym3-PEOeDnUV2Q9kgAAAFc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-08 23:34:58
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.184.185 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.184.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 08 18:34:54.487405 2026] [security2:error] [pid 13113:tid 13113] [client 209.50.184.185:20343] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fsmfl.com"] [uri "/.env"] [unique_id "aYkdnv_oSQMzNmeFYLuBygAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-27 19:48:03
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 209.50.184.185 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 209.50.184.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:47:53.408937 2025] [security2:error] [pid 18569:tid 18569] [client 209.50.184.185:53557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bikiniadvice.com"] [uri "/.env"] [unique_id "aSiq6Ve_U4LyccGkkGiLFAAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2025-11-02 18:03:42
(7 months ago)
This IP was involved in an brute force and password spray attack on 2025/11/02 07:32:53
Port Scan
Brute-Force
Exploited Host
Web App Attack
π³π±
EGP Abuse Dept
2025-10-18 02:14:42
(7 months ago)
Unauthorized connection to SSH port 22
Port Scan
Hacking
SSH
π©πͺ
Packets-Decreaser.NET
2025-10-07 17:13:55
(8 months ago)
Incoming Layer 7 Flood Detected
DDoS Attack
Web Spam
Showing 1 to
8
of 8 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: