JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.165.75

209.50.165.75 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 20%: ?

20%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.165.75

Whois 209.50.165.75

IP Abuse Reports for 209.50.165.75:

This IP address has been reported a total of 28 times from 12 distinct sources. 209.50.165.75 was first reported on September 27th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 F242	2026-06-14 19:07:53 (2 days ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇩🇪 georgengelmann	2026-06-12 06:29:37 (4 days ago)	Failed login attempt for root	Brute-Force Web App Attack
Anonymous	2026-06-09 22:29:00 (1 week ago)	Tried to gain access using the admin account. Looks like a botnet.	Brute-Force Bad Web Bot
Anonymous	2025-12-11 03:35:59 (6 months ago)	botnet	DDoS Attack
🇷🇸 Smel	2025-12-03 12:52:31 (6 months ago)	HTTP/80/443/8080 Unauthorized Probe, Hack -	Hacking Web App Attack
Anonymous	2025-11-29 10:29:42 (6 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.29 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.29 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 02:06:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:06:20.808753 2025] [security2:error] [pid 2130:tid 2130] [client 209.50.165.75:9813] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.goodpage.com"] [uri "/.git/HEAD"] [unique_id "aSUPHCQ5zmjgaUxPLPw10AAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:18:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:18:49.156652 2025] [security2:error] [pid 14634:tid 14634] [client 209.50.165.75:13231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.professionalpartyplanner.org"] [uri "/.svn/wc.db"] [unique_id "aSUD-fhuu-WiJ8gBm-ndcgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:37:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:37:52.620078 2025] [security2:error] [pid 7099:tid 7099] [client 209.50.165.75:29485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "518-windows.callalbany.com"] [uri "/.git/HEAD"] [unique_id "aST6YAQCEvv51FQS-ToT1wAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:51:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:51:53.104424 2025] [security2:error] [pid 15971:tid 15971] [client 209.50.165.75:38659] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.narrowacresbees.com"] [uri "/.env"] [unique_id "aSQquZGB00E50HSrF9d1JAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:00:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:59:51.381500 2025] [security2:error] [pid 15888:tid 15888] [client 209.50.165.75:11541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.highaltitudebaking.com"] [uri "/.git/HEAD"] [unique_id "aSQeh5NXtFmrXSQ6PbGhGgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:09:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:09:40.654667 2025] [security2:error] [pid 12103:tid 12140] [client 209.50.165.75:18927] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.theaquifer.giere.us"] [uri "/.git/HEAD"] [unique_id "aSQSxOd3pxroRSWDTtp6hQAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:24:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:22:47.998826 2025] [security2:error] [pid 24763:tid 24763] [client 209.50.165.75:14557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.macroprintbooks.com"] [uri "/.env"] [unique_id "aSQHx9LkcE6feSssgP2aowAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 07:29:24 (6 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-11-16 19:56:22 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.16 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.16 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.216.224.85

🇺🇸 147.185.132.184

🇮🇩 103.154.231.122

🇬🇧 92.40.176.205

🇺🇸 38.148.249.2

🇳🇱 5.61.209.224

🇧🇷 205.210.31.237

🇺🇸 195.184.76.112

🇺🇸 193.34.75.59

🇨🇳 117.182.88.219

🇺🇸 95.164.235.80

🇵🇱 83.168.89.194

🇺🇸 70.89.116.5

🇺🇸 64.62.197.139

🇳🇱 45.148.10.147

🇹🇼 36.238.213.91

🇳🇱 204.76.203.219

🇭🇰 203.196.8.6

🇲🇳 202.72.245.146

🇧🇪 198.235.24.236