JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.168.12

209.50.168.12 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.168.12

Whois 209.50.168.12

IP Abuse Reports for 209.50.168.12:

This IP address has been reported a total of 20 times from 9 distinct sources. 209.50.168.12 was first reported on October 3rd 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 rdpguard.com	2026-05-25 15:30:46 (3 weeks ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇮🇹 VHosting	2025-12-23 22:25:19 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 octageeks.com	2025-11-28 05:09:57 (6 months ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:35:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.168.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.168.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:35:23.886623 2025] [security2:error] [pid 16554:tid 16554] [client 209.50.168.12:14187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.eckerberg.net"] [uri "/.svn/wc.db"] [unique_id "aSVcOzFup_jBpn42sE7teQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:15:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.168.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.168.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:15:52.590145 2025] [security2:error] [pid 1816810:tid 1816972] [client 209.50.168.12:39867] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.wwwhst.com"] [uri "/.svn/wc.db"] [unique_id "aSVXqJGZcKt2mCqV6A_d_wAAAlM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:16:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.168.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.168.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:16:08.483258 2025] [security2:error] [pid 9277:tid 9277] [client 209.50.168.12:27783] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "csems.org"] [uri "/.svn/wc.db"] [unique_id "aSURaImfBJf5oQkepiN3eQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:57:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.168.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.168.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:56:57.614685 2025] [security2:error] [pid 31970:tid 31970] [client 209.50.168.12:11175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anthraxbook.com"] [uri "/.env"] [unique_id "aSQBuUCM8Yj5G25UVDZ2awAAAC8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:45:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.168.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.168.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:45:08.135385 2025] [security2:error] [pid 10285:tid 10285] [client 209.50.168.12:59179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aiamur.com"] [uri "/.env"] [unique_id "aSPw5M2KX1tDWY43IlXlBAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-21 22:47:40 (6 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.21 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-14 14:24:20 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-11-11 00:14:43 (7 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.11.11 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.11.11 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-06 15:40:37 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.06 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.06 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 webgobe	2025-10-22 13:50:34 (7 months ago)	wew-Joomla User : try to access forms...	Hacking
Anonymous	2025-10-17 07:39:52 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.17 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.17 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 wil.com	2025-10-16 21:44:20 (7 months ago)	GlobalProtect login attempts with user sqm.	VPN IP Brute-Force

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.241.136.95

🇳🇱 176.65.139.43

🇪🇸 172.110.221.82

🇨🇦 142.160.240.20

🇧🇷 138.219.155.167

🇻🇳 103.154.62.14

🇺🇸 66.132.195.26

🇮🇳 52.140.76.154

🇺🇸 50.6.248.168

🇱🇹 45.227.254.170

🇩🇪 213.209.159.228

🇭🇰 199.45.155.105

🇺🇸 162.216.149.206

🇩🇪 151.243.11.37

🇬🇧 123.58.207.140

🇬🇧 45.82.76.110

🇺🇸 34.134.176.5

🇨🇳 27.155.92.28

🇧🇷 187.85.146.201

🇺🇸 172.215.239.215