JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.185.146

209.50.185.146 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.185.146

Whois 209.50.185.146

IP Abuse Reports for 209.50.185.146:

This IP address has been reported a total of 7 times from 4 distinct sources. 209.50.185.146 was first reported on November 2nd 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-20 05:32:12 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 209.50.185.146 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 209.50.185.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 00:32:09.636463 2026] [security2:error] [pid 20418:tid 20418] [client 209.50.185.146:14527] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|cobbwebb.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cobbwebb.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aZfx2aD4tKjsCo_A42OSvwAAABE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 09:51:03 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇱🇻 garmtech.com	2026-01-23 10:30:45 (4 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇺🇸 TPI-Abuse	2025-11-24 09:42:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.185.146 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.185.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:41:57.161785 2025] [security2:error] [pid 19477:tid 19477] [client 209.50.185.146:29291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.pardescommunications.com"] [uri "/.git/HEAD"] [unique_id "aSQoZSf08jdQCkP29mgV-AAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:04:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.185.146 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.185.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:04:35.898235 2025] [security2:error] [pid 14322:tid 14322] [client 209.50.185.146:36799] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.bowdens-landing.com"] [uri "/.git/HEAD"] [unique_id "aSP1c7RamcDbhx6XX2U4nQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:52:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.185.146 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.185.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:52:36.977890 2025] [security2:error] [pid 3965259:tid 3965342] [client 209.50.185.146:44073] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.annybelle.org"] [uri "/.git/HEAD"] [unique_id "aSPklMHsvdKIeQe-cM8SdwAAAVE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-02 17:58:44 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 06:54:08	Port Scan Brute-Force Exploited Host Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 185.232.14.222

🇮🇩 182.253.156.184

🇷🇺 176.15.23.44

🇫🇮 147.185.133.70

🇿🇦 102.165.66.170

🇹🇭 101.109.172.251

🇩🇪 82.198.227.50

🇺🇸 67.205.143.145

🇺🇸 64.236.193.27

🇺🇸 57.141.20.71

🇳🇱 45.148.10.157

🇸🇬 43.134.114.37

🇬🇧 35.203.211.116

🇮🇳 35.154.64.133

🇧🇪 34.62.36.252

🇷🇴 2.57.121.112

🇨🇳 1.94.17.74

🇨🇦 207.134.141.194

🇸🇬 188.166.215.16

🇺🇸 172.253.85.247