JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.162.174

209.50.162.174 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 12%: ?

12%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.162.174

Whois 209.50.162.174

IP Abuse Reports for 209.50.162.174:

This IP address has been reported a total of 29 times from 16 distinct sources. 209.50.162.174 was first reported on September 27th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-05-06 02:27:15 (1 month ago)	Excessive 404/403 errors	Brute-Force
🇱🇻 garmtech.com	2026-05-01 14:41:40 (1 month ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
Anonymous	2026-04-14 03:05:53 (1 month ago)	Blocked: Reason='Possible SQL injection activity (246/60 min)'; Requests=246	SQL Injection
🇺🇸 TPI-Abuse	2026-01-08 12:43:51 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 08 07:43:46.883790 2026] [security2:error] [pid 26523:tid 26523] [client 209.50.162.174:26825] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "darkestdaysclan.com"] [uri "/.git/HEAD"] [unique_id "aV-mgu2bN4dlY1QsnTsPxQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-07 18:13:40 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 13:13:33.211876 2026] [security2:error] [pid 24709:tid 24709] [client 209.50.162.174:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "caspina.com"] [uri "/.env"] [unique_id "aV6iTUtNf6rrvr4BpLhjKQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 21:35:07 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 16:35:01.368627 2025] [security2:error] [pid 11370:tid 11370] [client 209.50.162.174:40057] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|brookspowell.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "brookspowell.com"] [uri "/mail to: [email protected]"] [unique_id "aVRFhT2RsG78Cmgg-nnGpQAAAAk"], referer: http://brookspowell.com show less	Brute-Force Bad Web Bot Web App Attack
🇭🇷 IgorS.zg.hr	2025-12-30 11:37:32 (5 months ago)	Web application attack detected by fail2ban	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:27:41 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:27:36.737067 2025] [security2:error] [pid 5762:tid 5762] [client 209.50.162.174:22429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "five21.com"] [uri "/.git/HEAD"] [unique_id "aVIRSAdYnNA_B6nDT0ajTwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2025-12-25 03:35:41 (5 months ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN US/United States/-	Web App Attack
Anonymous	2025-12-25 01:50:41 (5 months ago)	(WPLOGIN) WP Login Attack 209.50.162.174 (US/United States/-): 10 in the last 3600 secs; Ports: ; D ... show more (WPLOGIN) WP Login Attack 209.50.162.174 (US/United States/-): 10 in the last 3600 secs; Ports: ; Direction: 1 show less	Brute-Force SSH
🇩🇪 Roper123	2025-12-18 12:34:52 (5 months ago)	WP-LOGIN brute-force	Web App Attack
🇺🇸 nowyouknow	2025-12-16 20:17:52 (5 months ago)	(From [email protected]) Supercharge purechirowellness.com rankings, increase your online exposu ... show more (From [email protected]) Supercharge purechirowellness.com rankings, increase your online exposure and build powerful backlinks! BonusBacklinks.com - we provide daily backlinks and bring website traffic to your page EVERY DAY: + Get 85% OFF + Strong daily backlinks + Real web traffic + Price as low as $1 + Bonus coupon codes: https://BonusBacklinks.com/85offer BonusBacklinks.com - daily seo backlinks and website traffic to skyrocket your page everyday show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-25 05:06:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:06:09.059834 2025] [security2:error] [pid 15144:tid 15144] [client 209.50.162.174:23531] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.helpkccare.org"] [uri "/.svn/wc.db"] [unique_id "aSU5QYiOfNQbgLCqzrJDYQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:31:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:31:02.238894 2025] [security2:error] [pid 29943:tid 29943] [client 209.50.162.174:55703] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.pseudosphere.com"] [uri "/.git/HEAD"] [unique_id "aSUxBrhvwOMa59nhxWbL0QAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:51:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:50:57.756943 2025] [security2:error] [pid 24342:tid 24342] [client 209.50.162.174:15567] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "communication.ic1.biz"] [uri "/.svn/wc.db"] [unique_id "aSUnoZ2UKRoTCWTFFPLoeAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 2a0b:4140:d89a::2

🇺🇸 216.218.206.109

🇵🇱 195.211.10.2

🇫🇷 172.68.151.103

🇺🇸 162.216.18.241

🇳🇿 121.73.168.113

🇨🇳 115.231.78.11

🇰🇪 102.204.89.100

🇳🇱 45.156.87.253

🇸🇬 43.134.42.6

🇨🇳 223.64.119.33

🇩🇪 213.209.159.242

🇩🇪 213.209.159.238

🇻🇳 160.191.54.23

🇲🇽 148.222.152.54

🇮🇳 103.251.212.229

🇸🇦 51.39.213.115

🇱🇹 45.227.254.170

🇹🇷 45.158.14.124

🇧🇷 45.4.179.3