JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.188.96

209.50.188.96 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.188.96

Whois 209.50.188.96

IP Abuse Reports for 209.50.188.96:

This IP address has been reported a total of 14 times from 7 distinct sources. 209.50.188.96 was first reported on October 7th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-05-24 04:07:05 (2 weeks ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇦🇱 cheatmaster.store	2026-02-27 01:38:05 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: Canada Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
🇺🇸 nowyouknow	2025-12-12 07:38:00 (6 months ago)	(From [email protected]) Do you want to find out how daily email automation helps you make mon ... show more (From [email protected]) Do you want to find out how daily email automation helps you make money? Visit https://rb.gy/uxe0l2 show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-12-10 12:00:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 06:59:59.221802 2025] [security2:error] [pid 26151:tid 26151] [client 209.50.188.96:25239] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "inmosantanora.com"] [uri "/.env"] [unique_id "aTlgv0e3b2sRXvLVkXvrhAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 19:36:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 14:36:13.367495 2025] [security2:error] [pid 15669:tid 15669] [client 209.50.188.96:28225] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "makaihe.com"] [uri "/.svn/wc.db"] [unique_id "aTh6LZq4NWOHVaYTUMsRuQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:29:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:29:22.111369 2025] [security2:error] [pid 31404:tid 31404] [client 209.50.188.96:58283] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brevardzen.org"] [uri "/.svn/wc.db"] [unique_id "aTVzItHEAbP2CFYxtwJ63QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 17:31:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 12:31:31.328598 2025] [security2:error] [pid 20569:tid 20569] [client 209.50.188.96:39735] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "herston.net"] [uri "/.git/HEAD"] [unique_id "aTRoc87P1X1jE5nNhYcC3QAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:16:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:16:34.574374 2025] [security2:error] [pid 27806:tid 27806] [client 209.50.188.96:15635] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shannonmatter.com"] [uri "/.git/HEAD"] [unique_id "aTK_Euhu1PHyMMi8KdATdAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:50:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:50:48.881325 2025] [security2:error] [pid 23704:tid 23704] [client 209.50.188.96:22577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "imagesbyaubrey.com"] [uri "/.env"] [unique_id "aTK5CDt03UDd6Dpj2hBr3QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-21 18:46:49 (6 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/21 12:34:57	Port Scan Brute-Force Exploited Host Web App Attack
Anonymous	2025-11-03 20:53:00 (7 months ago)	Unauthorized connection attempt	Brute-Force
🇺🇸 TPI-Abuse	2025-10-23 16:35:13 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 209.50.188.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 23 12:35:08.917005 2025] [security2:error] [pid 23199:tid 23199] [client 209.50.188.96:9791] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|phantomkennels.com\|F\|2"] [data "[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "phantomkennels.com"] [uri "/[email protected]"] [unique_id "aPpZPKu0Y-BGvEZw4GozMgAAABE"], referer: http://phantomkennels.com show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-10-14 12:42:49 (7 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-10-07 15:10:59 (8 months ago)	Form spam	Web Spam

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇿 197.219.208.58

🇧🇪 198.235.24.213

🇲🇿 197.219.228.242

🇧🇷 186.215.191.192

🇹🇭 182.232.234.108

🇨🇳 171.211.85.34

🇺🇸 107.174.33.105

🇵🇱 89.68.245.7

🇷🇴 2.57.122.177

🇰🇷 1.250.67.190

🇮🇹 216.128.11.219

🇩🇪 213.209.159.227

🇷🇺 213.180.203.19

🇧🇷 200.149.213.242

🇮🇳 182.95.113.74

🇳🇱 160.119.76.60

🇧🇷 154.64.14.253

🇨🇳 111.26.106.119

🇨🇳 111.26.62.39

🇵🇹 94.63.58.201