JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.169.164

209.50.169.164 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 9%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.169.164

Whois 209.50.169.164

IP Abuse Reports for 209.50.169.164:

This IP address has been reported a total of 26 times from 13 distinct sources. 209.50.169.164 was first reported on September 26th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-04 19:09:02 (2 weeks ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇬🇧 PeravixGroup	2026-05-03 14:58:44 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HI ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 TPI-Abuse	2025-12-29 11:48:59 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 06:48:53.117945 2025] [security2:error] [pid 2946:tid 2946] [client 209.50.169.164:35977] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "endersworkshop.com"] [uri "/.env"] [unique_id "aVJqpVOC-n1961228v3dMgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 09:02:39 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:02:33.901942 2025] [security2:error] [pid 20404:tid 20404] [client 209.50.169.164:39459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "capitalacc.com"] [uri "/.git/HEAD"] [unique_id "aVJDqWNTxdf3xcW-BKCFNwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:23:33 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:23:25.800626 2025] [security2:error] [pid 11848:tid 11848] [client 209.50.169.164:13679] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "callbobh.com"] [uri "/.git/HEAD"] [unique_id "aVI6fbEmXUqYGZ08ITYsZgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:05:00 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:04:53.017421 2025] [security2:error] [pid 20919:tid 20919] [client 209.50.169.164:54577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "embeddedtrade.com"] [uri "/.git/HEAD"] [unique_id "aVIL9dFx8L4xP39CT_RSugAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:43:46 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:43:43.968173 2025] [security2:error] [pid 22044:tid 22118] [client 209.50.169.164:56081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barstowstationtoo.com"] [uri "/.git/HEAD"] [unique_id "aVIG_w2dUHoRkDjmH6S-kQAAAY8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 03:25:41 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:25:37.867033 2025] [security2:error] [pid 29639:tid 29639] [client 209.50.169.164:12315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sandiego1on1strippers.com"] [uri "/.env"] [unique_id "aVH0sdahnBPnGsLuQuSP6gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-08 10:35:32 (6 months ago)	botnet	DDoS Attack
🇪🇪 Unwasted	2025-11-07 12:52:52 (7 months ago)	Odoo contact form spam	Web Spam Blog Spam
Anonymous	2025-11-02 16:26:12 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 10:23:59	Port Scan Brute-Force Exploited Host Web App Attack
🇦🇺 MAGIC	2025-10-31 02:05:49 (7 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇧🇷 hostseries	2025-10-27 06:16:36 (7 months ago)	Trigger: LF_DISTATTACK	Brute-Force
🇺🇸 FherdezSoft-TechMX	2025-10-18 12:29:14 (8 months ago)	Invalid user admin60404 from 209.50.169.164 port 12721	Brute-Force SSH
Anonymous	2025-10-18 11:44:11 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.18 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.18 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 188.225.47.120

🇮🇹 188.152.238.126

🇨🇳 122.114.241.136

🇷🇴 80.94.92.165

🇧🇪 34.78.29.97

🇺🇸 2607:f8b0:4023:1006::127

🇸🇬 185.200.116.70

🇨🇳 121.229.156.40

🇨🇳 120.227.118.114

🇨🇳 112.86.225.78

🇺🇸 74.249.185.108

🇳🇿 45.133.7.49

🇻🇳 14.248.83.33

🇳🇱 212.8.242.38

🇩🇪 193.124.20.243

🇨🇳 175.30.48.230

🇨🇭 20.250.14.139

🇩🇪 167.71.60.5

🇺🇸 74.114.29.24

🇳🇱 45.198.224.244