JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.162.99

209.50.162.99 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 13%: ?

13%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.162.99

Whois 209.50.162.99

IP Abuse Reports for 209.50.162.99:

This IP address has been reported a total of 20 times from 13 distinct sources. 209.50.162.99 was first reported on September 28th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 CBJ	2026-05-10 13:14:18 (3 weeks ago)	fail2ban: apache-proxy ...	Web App Attack
🇺🇸 cyfordtechnologies.com	2026-04-30 21:00:22 (1 month ago)	High-abuse ASN prefix: 209.50. : Reported by Cyford API	Web App Attack
Anonymous	2026-04-20 05:33:19 (1 month ago)	Forum/form spam	Web Spam
🇳🇱 DrLex0	2026-03-26 04:09:47 (2 months ago)	Crawler impersonating GoogleBot, fetching URLs prohibited by robots.txt. The whole DREI-K-TECH-GMBH ... show more Crawler impersonating GoogleBot, fetching URLs prohibited by robots.txt. The whole DREI-K-TECH-GMBH ASN may be considered a piece of shit and firewalled. 209.50.162.99 443 - [26/Mar/2026:04:09:47 +0000] "GET [redacted] HTTP/1.1" 200 16141 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-21 14:08:06 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 09:08:00.991506 2026] [security2:error] [pid 15451:tid 15451] [client 209.50.162.99:20531] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arrowhead30.com"] [uri "/.svn/wc.db"] [unique_id "aXDdwIfFZOIJxAJAf8O2CAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-01-20 21:48:18 (4 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
Anonymous	2025-12-08 02:37:25 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 07:15:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:15:11.432621 2025] [security2:error] [pid 958588:tid 958588] [client 209.50.162.99:31279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.strawberryhillchristmas.com"] [uri "/.env"] [unique_id "aSVXf8RuWwLgc3U4lAwXRAAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:26:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:26:34.585098 2025] [security2:error] [pid 32479:tid 32479] [client 209.50.162.99:41453] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.frickandfracks.com"] [uri "/.git/HEAD"] [unique_id "aSQWuu5tt0JAtko6YT1K4QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:30:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:30:45.597377 2025] [security2:error] [pid 6137:tid 6137] [client 209.50.162.99:51299] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.walterceron.com"] [uri "/.git/HEAD"] [unique_id "aSPtha1D1cG5clHC7ocAsQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:52:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:51:59.912560 2025] [security2:error] [pid 3176:tid 3176] [client 209.50.162.99:39929] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.angelaridgwaydressage.com"] [uri "/.git/HEAD"] [unique_id "aSPWX4Ea0RG1FzcdGMDuXQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-11-20 12:16:42 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-15 18:09:34 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 209.50.162.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 15 13:09:29.918755 2025] [security2:error] [pid 30294:tid 30294] [client 209.50.162.99:10057] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.mardensmith.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.mardensmith.com"] [uri "/s3cmd.ini"] [unique_id "aRjB2S4ju2AIPyM4pwlVDwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-10-20 16:39:04 (7 months ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection
🇧🇷 hostseries	2025-10-13 06:00:26 (7 months ago)	Trigger: LF_DISTATTACK	Brute-Force

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 172.96.179.9

🇳🇱 89.248.167.131

🇲🇽 187.210.77.100

🇳🇱 172.253.7.212

🇳🇱 87.121.69.138

🇳🇱 85.121.127.137

🇳🇱 45.154.98.38

🇦🇪 20.203.42.204

🇺🇸 20.81.47.184

🇻🇳 1.54.215.189

🇯🇵 207.56.228.128

🇮🇳 182.76.66.186

🇺🇸 147.185.132.40

🇰🇷 112.161.42.97

🇷🇴 92.118.39.236

🇫🇷 86.217.21.47

🇮🇳 45.123.217.22

🇧🇬 45.88.138.44

🇨🇳 222.223.177.118

🇮🇶 185.158.22.150