JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.162.213

209.50.162.213 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 36%: ?

36%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.162.213

Whois 209.50.162.213

IP Abuse Reports for 209.50.162.213:

This IP address has been reported a total of 34 times from 18 distinct sources. 209.50.162.213 was first reported on September 26th 2025, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 georgengelmann	2026-06-12 06:30:33 (3 hours ago)	Failed login attempt for r3dc0d3r	Brute-Force Web App Attack
🇲🇽 octageeks.com	2026-06-11 04:12:30 (1 day ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇫🇷 pm33	2026-06-10 16:20:57 (1 day ago)	Wordpress login attempts	Brute-Force
🇺🇸 mnsf	2026-06-04 19:09:03 (1 week ago)	Abuse Detected (2)	Brute-Force Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-04 19:08:02 (1 week ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-03-06 02:44:28 (3 months ago)	Forum/form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:48 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-27 22:54:22 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 17:54:15.815984 2025] [security2:error] [pid 29521:tid 29521] [client 209.50.162.213:41841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dolphin-view.com"] [uri "/.git/HEAD"] [unique_id "aVBjl50XueK5bMTwAuiYrwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 19:22:05 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 14:21:58.163103 2025] [security2:error] [pid 17979:tid 17979] [client 209.50.162.213:47187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "williamgilcher.com"] [uri "/.env"] [unique_id "aVAx1tdItLv9r1S0LTK35AAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 16:03:07 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 11:02:59.410487 2025] [security2:error] [pid 10924:tid 10924] [client 209.50.162.213:17499] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deanfountain.com"] [uri "/.svn/wc.db"] [unique_id "aVADMzNoRVz6LLRFjawUwwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-11 20:29:26 (6 months ago)	botnet	DDoS Attack
🇫🇮 Shaik Sai Meera	2025-12-04 18:20:13 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 06:28:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:28:54.986760 2025] [security2:error] [pid 23279:tid 23279] [client 209.50.162.213:30959] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.ingberinteriors.com"] [uri "/.env"] [unique_id "aSVMpoxXoeu6eYSZwadTKAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:51:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:51:21.084206 2025] [security2:error] [pid 14639:tid 14639] [client 209.50.162.213:41063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.northamericantrucking.com"] [uri "/.env"] [unique_id "aSVD2dX7U0YWnOiNSVKk3AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:19:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:19:40.511409 2025] [security2:error] [pid 16622:tid 16622] [client 209.50.162.213:35299] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.lacycustombuilt.com"] [uri "/.svn/wc.db"] [unique_id "aSUuXDzOSTrYxpYWWhFCfgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.236

🇧🇩 202.37.47.67

🇧🇷 179.51.153.37

🇸🇬 172.217.97.19

🇨🇳 122.96.28.162

🇵🇱 91.206.245.133

🇬🇧 35.203.210.55

🇺🇸 18.191.163.52

🇺🇸 3.145.0.81

🇧🇷 201.71.50.150

🇺🇸 138.94.219.38

🇨🇳 122.96.48.246

🇲🇲 103.59.163.135

🇩🇪 79.233.204.141

🇮🇩 43.133.148.170

🇸🇦 34.166.5.230

🇺🇸 216.180.246.10

🇸🇪 185.213.154.228

🇫🇷 176.147.160.137

🇺🇸 162.141.167.38