JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.162.215

209.50.162.215 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.162.215

Whois 209.50.162.215

IP Abuse Reports for 209.50.162.215:

This IP address has been reported a total of 46 times from 14 distinct sources. 209.50.162.215 was first reported on September 26th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-20 04:49:57 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 23:49:53.480968 2026] [security2:error] [pid 30675:tid 30675] [client 209.50.162.215:57451] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jimhake.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jimhake.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZfn8cNw0DGRXpvBBgzNvwAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 stinpriza	2026-01-07 19:51:04 (5 months ago)	Web App Attack	Web App Attack
🇳🇱 i-turnradio.nl	2025-12-19 00:50:41 (5 months ago)	2025-12-19 @ 01:50:40 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 17:18:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 12:18:07.955645 2025] [security2:error] [pid 16195:tid 16195] [client 209.50.162.215:57025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "candid-about-candida.com"] [uri "/.git/HEAD"] [unique_id "aS8fT6kDKfiyQ935OqXPxwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 14:29:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 09:29:04.682629 2025] [security2:error] [pid 28215:tid 28215] [client 209.50.162.215:38163] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grabagame.com"] [uri "/.env"] [unique_id "aS73sOtOOGdvRIaGp3UqYgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 06:44:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 01:44:15.176790 2025] [security2:error] [pid 32617:tid 32617] [client 209.50.162.215:46797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rlarms.com"] [uri "/.git/HEAD"] [unique_id "aS6Kv-GulUUYxbBiyR6KTgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:07:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:06:57.072866 2025] [security2:error] [pid 30665:tid 30665] [client 209.50.162.215:30187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waynejarvi.com"] [uri "/.git/HEAD"] [unique_id "aS5l4Q9_PXM0Smels4Jx4AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 afleventoffice.com.au	2025-12-01 13:49:08 (6 months ago)	GET /.git/HEAD HTTP/1.1	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:10:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:10:17.409752 2025] [security2:error] [pid 29230:tid 29230] [client 209.50.162.215:52091] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.jessmay.com"] [uri "/.git/HEAD"] [unique_id "aSUeGf72MBW2iSRqCWeD9QAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:51:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:51:30.092095 2025] [security2:error] [pid 22011:tid 22011] [client 209.50.162.215:13113] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "allafricanfashion.bodybuildbid.com"] [uri "/.git/HEAD"] [unique_id "aSUZsiCGmIM2nlveGQdcDQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:54:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:54:40.802863 2025] [security2:error] [pid 14349:tid 14349] [client 209.50.162.215:43125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.catsandtentacles.com"] [uri "/.git/HEAD"] [unique_id "aSUMYJLjbAW9mCB2Lh-pjwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:14:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:13:46.002285 2025] [security2:error] [pid 304:tid 304] [client 209.50.162.215:54573] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.anniversarymatchbooks.com"] [uri "/.svn/wc.db"] [unique_id "aSQFqiQso39C3Zw5oPr3tQAAACs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:22:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:22:36.548964 2025] [security2:error] [pid 18464:tid 18464] [client 209.50.162.215:9957] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.jonathanwilsonphotography.com"] [uri "/.git/HEAD"] [unique_id "aSPrnPsFl0Qb6npesPkJewAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-17 05:07:46 (6 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.11.17 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.11.17 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 2a06:4882:5000::68

🇬🇧 193.163.125.68

🇮🇳 154.221.35.72

🇻🇳 103.179.172.233

🇱🇹 81.30.98.62

🇺🇸 66.132.195.80

🇺🇸 66.132.186.246

🇳🇱 45.148.10.183

🇦🇺 34.40.225.110

🇬🇧 2a06:4882:5000::65

🇺🇸 209.90.232.251

🇮🇳 152.59.154.184

🇮🇩 143.20.49.38

🇺🇸 142.111.152.104

🇨🇦 138.197.135.119

🇩🇪 104.207.52.95

🇷🇴 80.96.186.3

🇺🇸 65.111.9.220

🇺🇸 54.211.150.188

🇺🇸 34.23.73.52