JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.187.48

209.50.187.48 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.187.48

Whois 209.50.187.48

IP Abuse Reports for 209.50.187.48:

This IP address has been reported a total of 7 times from 1 distinct source. 209.50.187.48 was first reported on October 30th 2025, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-11-25 04:57:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:57:09.800047 2025] [security2:error] [pid 19476:tid 19476] [client 209.50.187.48:17635] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.ckelectricri.com"] [uri "/.env"] [unique_id "aSU3JfntGNPdug2amXh2WQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:19:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:19:28.558004 2025] [security2:error] [pid 15659:tid 15659] [client 209.50.187.48:27581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.beachcitytshirts.com"] [uri "/.svn/wc.db"] [unique_id "aSUuULjFItITvvYMtvEgjQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:01:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:00:49.576754 2025] [security2:error] [pid 1816810:tid 1816970] [client 209.50.187.48:36909] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.acornway.com"] [uri "/.svn/wc.db"] [unique_id "aSUp8ZGZcKt2mCqV6A-4dAAAAlI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:56:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:56:14.262436 2025] [security2:error] [pid 22681:tid 22681] [client 209.50.187.48:21191] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.ibeautyexchange.com"] [uri "/.git/HEAD"] [unique_id "aSUazgPyb0prIvk4AJnEawAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:14:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:14:23.916037 2025] [security2:error] [pid 659211:tid 659211] [client 209.50.187.48:44409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.patricksaad.com"] [uri "/.git/HEAD"] [unique_id "aSUQ_58fnK9eu-x0VFV9gwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:04:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:04:05.897381 2025] [security2:error] [pid 17707:tid 17707] [client 209.50.187.48:36105] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.supaskills.com"] [uri "/.env"] [unique_id "aSTydREz4rTQh6XXM9N3YAAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-30 14:42:04 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 209.50.187.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 30 10:41:57.164011 2025] [security2:error] [pid 16652:tid 16652] [client 209.50.187.48:40149] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fitzmail.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fitzmail.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQN5NbYFvP53C_hk1F22CgAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 183.82.145.55

🇮🇳 168.144.81.184

🇫🇮 147.185.133.183

🇮🇩 103.186.193.163

🇨🇳 42.180.4.166

🇭🇰 23.91.97.170

🇮🇳 20.244.18.126

🇺🇸 198.62.4.224

🇷🇺 194.226.139.194

🇰🇭 175.100.35.103

🇺🇸 172.234.25.243

🇮🇩 103.185.43.218

🇮🇳 103.169.154.4

🇷🇺 95.167.225.76

🇺🇸 74.7.241.0

🇨🇳 218.93.165.83

🇩🇪 167.94.146.38

🇺🇸 162.216.150.9

🇧🇷 129.121.50.245

🇨🇳 119.114.58.169