JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.186.53

209.50.186.53 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.186.53

Whois 209.50.186.53

IP Abuse Reports for 209.50.186.53:

This IP address has been reported a total of 15 times from 7 distinct sources. 209.50.186.53 was first reported on October 1st 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-09 12:18:42 (1 week ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇲🇹 Malta	2026-05-17 09:19:11 (1 month ago)	209.50.186.53 - - [17/May/2026:11:19:11 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows N ... show more 209.50.186.53 - - [17/May/2026:11:19:11 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" show less	Hacking Web App Attack
🇱🇻 garmtech.com	2026-04-02 06:34:33 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 13:14:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 08:14:33.537476 2025] [security2:error] [pid 23237:tid 23237] [client 209.50.186.53:56567] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "psicotanato.com"] [uri "/.svn/wc.db"] [unique_id "aTlyOXUyHZqcQeT0YEFUpAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 09:38:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 04:38:21.158038 2025] [security2:error] [pid 28700:tid 28700] [client 209.50.186.53:48185] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sergioaurell.com"] [uri "/.env"] [unique_id "aTacjTKlHA15qBKzdY2AqgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 03:49:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 22:49:45.281416 2025] [security2:error] [pid 5599:tid 5599] [client 209.50.186.53:50089] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "portcitybluessociety.com"] [uri "/.git/HEAD"] [unique_id "aTZK2Qoll325mR0XumPmcgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 13:45:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:45:32.555282 2025] [security2:error] [pid 3578:tid 3578] [client 209.50.186.53:31981] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jimmyshakes.org"] [uri "/.env"] [unique_id "aTWE_FBZNIXe7ZiOrH7yGQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:51:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:51:47.400998 2025] [security2:error] [pid 27232:tid 27232] [client 209.50.186.53:31671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davidmoisan.org"] [uri "/.svn/wc.db"] [unique_id "aTV4YyaSHpBqOhUBqW-yXQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:22:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:22:20.827157 2025] [security2:error] [pid 25926:tid 25926] [client 209.50.186.53:41279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bencramer.org"] [uri "/.svn/wc.db"] [unique_id "aTVxfN4A2xTVE2BFY0YIqQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 04:34:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 23:34:21.595190 2025] [security2:error] [pid 23793:tid 23793] [client 209.50.186.53:38117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "igmdesigns.com"] [uri "/.git/HEAD"] [unique_id "aTJgzbJN2pFQxOqKERznDAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 03:44:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.186.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:44:26.306956 2025] [security2:error] [pid 21751:tid 21751] [client 209.50.186.53:24085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "personalizedbabynapkins.com"] [uri "/.env"] [unique_id "aTJVGgx8fseSlnOjK1TDmwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-04 09:12:07 (6 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇪🇸 10dencehispahard SL	2025-11-19 07:44:22 (7 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-10-30 14:22:50 (7 months ago)	WordPress Brute Force	Brute-Force
🇮🇩 fazar	2025-10-01 04:07:38 (8 months ago)	IP address filtered by [ssh-iptables] for suspicious activities (ckg02).	Brute-Force SSH

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 118.193.32.119

🇳🇱 45.198.224.115

🇧🇪 198.235.24.218

🇨🇳 183.202.245.142

🇳🇱 213.152.161.54

🇺🇸 173.8.207.1

🇵🇰 137.59.146.223

🇨🇳 120.239.57.239

🇨🇳 118.196.86.3

🇹🇼 114.32.253.248

🇨🇳 110.53.27.159

🇻🇳 103.199.16.90

🇳🇱 81.19.216.84

🇺🇸 178.92.10.38

🇦🇫 149.54.62.170

🇺🇸 138.186.136.233

🇱🇺 64.89.160.135

🇳🇱 45.148.10.157

🇧🇷 191.253.116.156

🇰🇷 119.196.213.196