JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.164.79

209.50.164.79 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 13%: ?

13%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.164.79

Whois 209.50.164.79

IP Abuse Reports for 209.50.164.79:

This IP address has been reported a total of 39 times from 12 distinct sources. 209.50.164.79 was first reported on September 27th 2025, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 lostswordfish.com	2026-06-10 11:56:05 (6 days ago)	Wordfence waf block on advocates4change	Web App Attack
🇺🇸 dtorrer	2026-06-10 09:52:50 (6 days ago)	Brute-force general attack.	Brute-Force
🇧🇪 voormedia	2026-01-30 18:35:50 (4 months ago)	Accessed trap at '/wp-login.php'	Web App Attack
Anonymous	2025-12-10 22:35:45 (6 months ago)	botnet	DDoS Attack
🇦🇺 MAGIC	2025-12-07 00:02:03 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-02 22:20:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 17:20:33.280359 2025] [security2:error] [pid 31918:tid 31918] [client 209.50.164.79:22825] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aridscapes.com"] [uri "/.svn/wc.db"] [unique_id "aS9mMZixc_d6HzcxrZsoXgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 21:28:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 16:28:39.059218 2025] [security2:error] [pid 16789:tid 16789] [client 209.50.164.79:33459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idahouspsa.com"] [uri "/.svn/wc.db"] [unique_id "aS9aBzdb0Nc9-yN_ZXascgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-02 10:46:56 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-02 08:12:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:12:28.335190 2025] [security2:error] [pid 17630:tid 17630] [client 209.50.164.79:14283] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cnphilos.com"] [uri "/.env"] [unique_id "aS6fbG_CUIeUD6OKcr3uDgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 06:01:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 01:01:43.559481 2025] [security2:error] [pid 27318:tid 27318] [client 209.50.164.79:23943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "slusarczyk.com"] [uri "/.svn/wc.db"] [unique_id "aS6Ax3i2NZzFu89MAI3tWgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:52:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:52:00.398826 2025] [security2:error] [pid 13310:tid 13310] [client 209.50.164.79:31645] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "partyblockwedding.com"] [uri "/.git/HEAD"] [unique_id "aS5wcMoJZsCNe79-mITZVAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:09:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:09:04.956251 2025] [security2:error] [pid 22924:tid 22924] [client 209.50.164.79:32131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "smsindustries.com"] [uri "/.env"] [unique_id "aS5mYHGKRcXI7uhga5SD3AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-11-30 13:09:54 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-26 22:05:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 17:05:24.979949 2025] [security2:error] [pid 15337:tid 15337] [client 209.50.164.79:11391] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.televisonic.com"] [uri "/.git/HEAD"] [unique_id "aSd5pJq_uG6_qysUl_3WEAAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:42:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:42:24.485084 2025] [security2:error] [pid 25269:tid 25269] [client 209.50.164.79:39343] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.cactusstarvineyard.com"] [uri "/.svn/wc.db"] [unique_id "aSP-ULKGjjyyOmMyrnlXIwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 2a10:4646:190::af4f:1a36

🇦🇷 186.148.224.83

🇳🇱 185.242.226.90

🇦🇴 154.116.254.157

🇨🇳 116.248.120.197

🇰🇷 115.178.75.242

🇺🇸 98.121.239.176

🇷🇺 93.171.61.206

🇹🇼 83.147.14.74

🇳🇱 82.39.86.153

🇳🇱 45.148.10.183

🇺🇸 45.3.49.187

🇧🇪 35.187.41.22

🇨🇳 8.130.151.239

🇺🇸 207.241.173.38

🇨🇳 182.244.0.150

🇳🇱 176.65.149.178

🇺🇸 172.190.13.234

🇺🇸 168.62.199.219

🇩🇪 167.99.240.151