JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.190.96

209.50.190.96 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.190.96

Whois 209.50.190.96

IP Abuse Reports for 209.50.190.96:

This IP address has been reported a total of 23 times from 6 distinct sources. 209.50.190.96 was first reported on October 2nd 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-05-28 22:05:48 (2 weeks ago)	Scanning/Probing (24)	Brute-Force Web App Attack
🇺🇸 nyt	2026-05-26 13:48:54 (2 weeks ago)	WP Config Probe	Web App Attack
Anonymous	2026-01-30 07:37:54 (4 months ago)	wordpress-trap	Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 09:55:45 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇺🇸 TPI-Abuse	2025-11-26 12:01:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:01:14.622914 2025] [security2:error] [pid 9371:tid 9371] [client 209.50.190.96:24069] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dildog.com"] [uri "/.env"] [unique_id "aSbsCg0aXq2RWDzw7_9RGwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:44:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:44:16.506077 2025] [security2:error] [pid 12316:tid 12316] [client 209.50.190.96:48169] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.bitcointoolfair.com"] [uri "/.git/HEAD"] [unique_id "aSbaAFTQLZCCTmbMiOvrIQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:33:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:32:57.556872 2025] [security2:error] [pid 6770:tid 6770] [client 209.50.190.96:34533] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.scrunchiebutt.com"] [uri "/.env"] [unique_id "aSaRCThIuZOw1IpJV05qxgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:30:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:30:06.558940 2025] [security2:error] [pid 14028:tid 14028] [client 209.50.190.96:38305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.devinfrymire.com"] [uri "/.env"] [unique_id "aSZYHqZ-VJyLGMdW5e5GwQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:46:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:46:35.287375 2025] [security2:error] [pid 10747:tid 10755] [client 209.50.190.96:9831] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.aisapy.com"] [uri "/.env"] [unique_id "aSU0q12GfO2s-Qdwr6d54gAAAIM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:16:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:16:13.734181 2025] [security2:error] [pid 1817001:tid 1817056] [client 209.50.190.96:33803] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.nordicatrio.com"] [uri "/.env"] [unique_id "aSUtjWR1ttxeyDpsCa9Q_wAAAZE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:39:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:39:31.326652 2025] [security2:error] [pid 27727:tid 27733] [client 209.50.190.96:56277] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.metrobaselexpoforum.org"] [uri "/.svn/wc.db"] [unique_id "aSUW4_eXMnwYTnmV60PWxQAAAMQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:25:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:25:00.225678 2025] [security2:error] [pid 1373:tid 1373] [client 209.50.190.96:37589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.doctorbalog.com"] [uri "/.svn/wc.db"] [unique_id "aSUFbGT626OsgccB7I0hnQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:00:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:00:53.349474 2025] [security2:error] [pid 32221:tid 32221] [client 209.50.190.96:40705] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.toddgoranson.com"] [uri "/.svn/wc.db"] [unique_id "aSTxtVj-QO7XCriwmXqeAgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:22:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:22:46.530097 2025] [security2:error] [pid 640:tid 640] [client 209.50.190.96:47513] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.3beeze.com"] [uri "/.svn/wc.db"] [unique_id "aSQj5uYe8kOT4rWYBPRbqwAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:13:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.190.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:13:19.669960 2025] [security2:error] [pid 27042:tid 27042] [client 209.50.190.96:55693] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.revision.ws"] [uri "/.svn/wc.db"] [unique_id "aSQTn4pGUrj5X_nMgO-DlwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a01:ecc0:40:97c::2

🇺🇸 209.126.4.130

🇧🇪 198.235.24.162

🇷🇴 193.46.255.86

🇱🇹 185.169.4.123

🇮🇩 182.160.54.167

🇰🇷 175.119.225.68

🇪🇸 172.110.219.251

🇹🇭 118.27.146.111

🇷🇺 95.165.142.8

🇳🇱 93.123.72.183

🇨🇳 47.102.128.255

🇸🇪 31.220.15.61

🇳🇱 172.253.82.210

🇿🇦 105.225.23.218

🇮🇶 65.20.146.109

🇬🇧 35.203.211.84

🇺🇸 34.24.86.156

🇬🇧 193.32.209.240

🇬🇧 185.216.145.184