JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.165.92

209.50.165.92 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.165.92

Whois 209.50.165.92

IP Abuse Reports for 209.50.165.92:

This IP address has been reported a total of 26 times from 15 distinct sources. 209.50.165.92 was first reported on September 27th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 cyfordtechnologies.com	2026-03-22 15:02:49 (2 months ago)	High-abuse ASN prefix: 209.50. : Reported by Cyford API	Web App Attack
🇮🇹 VHosting	2025-12-22 21:09:49 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-10 20:26:52 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-08 20:54:50 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 15:54:42.438356 2025] [security2:error] [pid 669:tid 669] [client 209.50.165.92:45283] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trompelart.com"] [uri "/.svn/wc.db"] [unique_id "aTc7Eps3w_cL_hx3uLC6pgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 02:24:19 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 21:24:12.372300 2025] [security2:error] [pid 15526:tid 15581] [client 209.50.165.92:17715] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "danelandia.com"] [uri "/.svn/wc.db"] [unique_id "aTY2zLU8QwutFxQ8nz8BhAAAARc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 23:54:03 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 18:53:58.746230 2025] [security2:error] [pid 20885:tid 20885] [client 209.50.165.92:41549] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "innolympics.com"] [uri "/.git/HEAD"] [unique_id "aTYTlkzr9IgfZa7WqGxDkwAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-12-06 01:59:24 (6 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 209.50.165.92 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 209.50.165.92 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 14:59:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 09:59:04.047242 2025] [security2:error] [pid 26421:tid 26421] [client 209.50.165.92:53391] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pamplonaserviciotecnico.com"] [uri "/.git/HEAD"] [unique_id "aTLzOOZERDKXgxI8kx7UTQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:36:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:36:22.440459 2025] [security2:error] [pid 30255:tid 30255] [client 209.50.165.92:11491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "turn-keyit.com"] [uri "/.svn/wc.db"] [unique_id "aTLDtsHSYUeUleH2CVe6OQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-04 05:40:18 (6 months ago)	botnet	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2025-11-30 13:09:59 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-27 19:00:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:00:00.396199 2025] [security2:error] [pid 27539:tid 27539] [client 209.50.165.92:9881] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "accommodation-perthairport.com"] [uri "/.git/HEAD"] [unique_id "aSifsDCkCtFipDJ1OIiROQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oncord	2025-11-20 17:27:25 (6 months ago)	Form spam	Web Spam
Anonymous	2025-11-14 20:14:01 (6 months ago)	(wp-php-upload-includes) Block attempt to access .php in uploads wordpress uploads or well-known 209 ... show more (wp-php-upload-includes) Block attempt to access .php in uploads wordpress uploads or well-known 209.50.165.92 (US/United States/-) show less	Brute-Force

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.146.52

🇫🇮 147.185.133.225

🇨🇦 99.249.161.165

🇻🇪 38.183.113.83

🇬🇧 195.206.182.198

🇺🇸 173.244.60.155

🇺🇸 172.203.204.225

🇮🇩 165.101.230.18

🇺🇸 154.83.197.128

🇺🇸 97.90.16.100

🇳🇱 86.54.31.32

🇷🇴 80.94.92.167

🇺🇸 64.62.156.172

🇳🇱 45.148.10.151

🇧🇷 179.208.226.100

🇦🇪 91.72.240.5

🇵🇰 72.255.59.150

🇳🇱 45.198.224.5

🇬🇧 35.203.211.251

🇬🇧 31.171.130.113