JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.187.215

209.50.187.215 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.187.215

Whois 209.50.187.215

IP Abuse Reports for 209.50.187.215:

This IP address has been reported a total of 14 times from 8 distinct sources. 209.50.187.215 was first reported on November 13th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 10dencehispahard SL	2026-01-26 09:53:00 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇮🇹 VHosting	2026-01-02 18:10:06 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇯🇵 Valhalla	2026-01-02 06:52:42 (5 months ago)	/wp/kickstart.php	Hacking Web App Attack
🇷🇺 OK	2025-12-20 08:22:05 (5 months ago)	HTTP/HTTPS	Hacking Web App Attack
🇳🇱 Mangelot Hosting	2025-12-18 19:59:29 (5 months ago)	(php_susp_dir) srv101 PHP in suspicious dir 209.50.187.215 (CA/Canada/-): 1 in the last 3600 secs; P ... show more (php_susp_dir) srv101 PHP in suspicious dir 209.50.187.215 (CA/Canada/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
Anonymous	2025-12-13 17:51:29 (6 months ago)	Probing to gain illegal access	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:51:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:51:07.154344 2025] [security2:error] [pid 6731:tid 6731] [client 209.50.187.215:26285] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mantality.onlyincanada-eh.com"] [uri "/.env"] [unique_id "aSa_e7X-HgsVdwbY39KeQAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:33:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:33:45.091944 2025] [security2:error] [pid 1702:tid 1702] [client 209.50.187.215:17901] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.davidocchino.com"] [uri "/.env"] [unique_id "aSa7aVpleGo6AQE4akplUwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:08:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:08:38.561343 2025] [security2:error] [pid 30723:tid 30723] [client 209.50.187.215:24109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "springbrookconstruction.mordesign1.com"] [uri "/.git/HEAD"] [unique_id "aSZTFl2pB7y0CNzHUC1LOAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:44:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:44:30.010880 2025] [security2:error] [pid 23517:tid 23517] [client 209.50.187.215:59649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.microkerneltechnologies.com"] [uri "/.svn/wc.db"] [unique_id "aSZNbsmNl406l6NPPy91xQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:32:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:32:05.393520 2025] [security2:error] [pid 10252:tid 10252] [client 209.50.187.215:54447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.notepromd.com"] [uri "/.svn/wc.db"] [unique_id "aSQmFXGvXLpJWk2J120NsAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:26:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:26:16.013998 2025] [security2:error] [pid 5576:tid 5576] [client 209.50.187.215:38307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ladylilacfarm.com"] [uri "/.env"] [unique_id "aSQWqObTYobEpD-BHwd-QgAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:43:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:42:44.986961 2025] [security2:error] [pid 27554:tid 27554] [client 209.50.187.215:46067] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.toyz.net"] [uri "/.git/HEAD"] [unique_id "aSP-ZIjtQSAIiP3svT1NnAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-13 18:55:32 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/13 12:53:26	Port Scan Brute-Force Exploited Host Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 185.42.21.94

🇺🇦 176.119.88.227

🇹🇼 118.233.9.15

🇲🇾 47.250.131.82

🇩🇪 31.76.111.27

🇨🇳 1.83.125.225

🇺🇸 2604:a880:400:d1:0:4:9638:f001

🇪🇸 217.160.226.51

🇬🇧 185.247.137.78

🇫🇷 88.166.15.77

🇮🇳 66.116.224.161

🇱🇹 46.29.234.127

🇺🇸 40.124.175.226

🇺🇸 34.1.19.235

🇺🇸 20.169.104.218

🇳🇱 192.42.116.66

🇧🇷 191.240.37.46

🇧🇷 190.115.84.25

🇺🇸 150.107.36.186

🇺🇸 23.177.184.40