JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.187.138

209.50.187.138 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.187.138

Whois 209.50.187.138

IP Abuse Reports for 209.50.187.138:

This IP address has been reported a total of 24 times from 8 distinct sources. 209.50.187.138 was first reported on November 19th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 David Koswari	2026-06-15 06:02:00 (1 week ago)	REQ_BLOCKED_SECURITY	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇦🇺 oncord	2026-06-04 20:20:09 (2 weeks ago)	Form spam	Web Spam
🇦🇺 oncord	2026-05-27 21:14:27 (4 weeks ago)	Form spam	Web Spam
🇱🇻 garmtech.com	2026-05-16 14:37:12 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 17-37.209.50.187.138.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 17-37.209.50.187.138.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇦🇺 oncord	2026-05-14 00:19:13 (1 month ago)	Form spam	Web Spam
🇦🇺 oncord	2026-05-09 21:51:07 (1 month ago)	Form spam	Web Spam
🇦🇺 oncord	2026-04-28 07:14:29 (1 month ago)	Form spam	Web Spam
🇦🇺 oncord	2026-04-23 05:39:47 (2 months ago)	Form spam	Web Spam
🇺🇸 oncord	2026-02-14 11:02:45 (4 months ago)	Form spam	Web Spam
🇺🇸 COMPLEX	2025-12-15 05:41:10 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from CA. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protoc ... show more Triggered Cloudflare WAF (l7ddos) from CA. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
🇺🇸 nowyouknow	2025-12-08 00:05:27 (6 months ago)	(From [email protected]) Trusted seo services to super upgrade discoverfamilychiro.com web ... show more (From [email protected]) Trusted seo services to super upgrade discoverfamilychiro.com website backlinks! BonusBacklinks.com - we provide daily backlinks and drive organic clicks to your website EVERY DAY: + Get 85% SALE + Strong daily backlinks + Organic web traffic + Prices only from $1 + Bonus discount codes Check seo sales - https://tiny.cc/bonusbacklinks-coupon Or visit directly - https://BonusBacklinks.com BonusBacklinks - daily backlinks and organic traffic to increase your page every day show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-12-02 07:32:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:32:47.493251 2025] [security2:error] [pid 2014108:tid 2014108] [client 209.50.187.138:48313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sharkfamily.com"] [uri "/.env"] [unique_id "aS6WH6rhY5qLeEgfsgn6VQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 06:08:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 01:08:37.908564 2025] [security2:error] [pid 28604:tid 28604] [client 209.50.187.138:29435] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "laxwhs.com"] [uri "/.svn/wc.db"] [unique_id "aS6CZVR8_Ts4_ml4BFW1MgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:15:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:15:33.354723 2025] [security2:error] [pid 476:tid 476] [client 209.50.187.138:21069] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rosarymaker.com"] [uri "/.git/HEAD"] [unique_id "aS519c-GNNKF95B941JScQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 01:12:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.138 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 20:11:58.647560 2025] [security2:error] [pid 14747:tid 14747] [client 209.50.187.138:13777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kingfish.bet"] [uri "/.svn/wc.db"] [unique_id "aS483imcR3dYlxP4GMENdgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.90

🇰🇪 102.0.24.20

🇪🇸 77.241.48.171

🇺🇸 69.164.210.187

🇦🇪 5.38.115.48

🇻🇪 190.124.29.75

🇨🇦 174.114.39.154

🇧🇷 168.196.206.14

🇬🇧 159.253.75.162

🇫🇮 147.185.133.232

🇮🇩 125.166.135.81

🇨🇳 113.201.207.170

🇪🇸 90.175.85.149

🇺🇿 84.54.94.123

🇫🇮 65.21.113.203

🇨🇳 47.97.231.15

🇻🇳 42.1.70.175

🇻🇳 42.1.70.157

🇮🇶 37.239.76.16

🇧🇪 35.195.84.210