JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.187.238

209.50.187.238 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.187.238

Whois 209.50.187.238

IP Abuse Reports for 209.50.187.238:

This IP address has been reported a total of 5 times from 2 distinct sources. 209.50.187.238 was first reported on November 24th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-25 05:29:45 (3 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-29.209.50.187.238.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-29.209.50.187.238.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-04-24 00:09:58 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 03-09.209.50.187.238.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 03-09.209.50.187.238.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-04-13 23:25:10 (2 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:07:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:07:19.564926 2025] [security2:error] [pid 22716:tid 22716] [client 209.50.187.238:22953] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.disenowebprofesional.com"] [uri "/.env"] [unique_id "aSQgRxM5zKw-qq49MYXeKQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:08:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:08:07.381438 2025] [security2:error] [pid 22425:tid 22425] [client 209.50.187.238:35849] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "momokuwait.gulftelecom.com"] [uri "/.svn/wc.db"] [unique_id "aSPoN3k4b5kYJvakMn3bCQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 206.189.158.17

🇧🇷 185.194.204.183

🇮🇹 185.77.51.26

🇨🇦 184.107.244.93

🇩🇪 139.19.117.129

🇨🇳 124.174.125.210

🇺🇸 74.208.140.41

🇨🇳 27.24.141.88

🇺🇸 20.163.16.165

🇳🇱 91.92.40.204

🇷🇴 80.94.95.242

🇲🇾 49.125.201.70

🇺🇸 20.127.157.56

🇲🇦 160.176.80.91

🇮🇩 103.27.250.50

🇿🇦 102.64.36.237

🇸🇬 97.74.88.143

🇬🇧 92.60.127.186

🇳🇱 91.92.40.52

🇫🇷 83.171.249.194