JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.169.94

209.50.169.94 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.169.94

Whois 209.50.169.94

IP Abuse Reports for 209.50.169.94:

This IP address has been reported a total of 47 times from 13 distinct sources. 209.50.169.94 was first reported on September 26th 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-09 15:53:56 (5 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇮🇩 Burayot	2026-02-19 05:00:32 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 209.50.169.94 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 209.50.169.94 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 04:07:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:07:28.193666 2026] [security2:error] [pid 2180775:tid 2180775] [client 209.50.169.94:63365] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kittysalterations.com"] [uri "/test/.git/config"] [unique_id "aZaMgGoRtRCcWc0ggB8shAAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 03:00:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:59:54.827129 2026] [security2:error] [pid 18721:tid 18721] [client 209.50.169.94:9577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kengarysp.com"] [uri "/dev/.git/config"] [unique_id "aZZ8qmCoYGymtSQ4xRi-CAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 02:32:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:32:36.552387 2026] [security2:error] [pid 24173:tid 24173] [client 209.50.169.94:32233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kcmastercleaners.com"] [uri "/admin/.env"] [unique_id "aZZ2RFX5VKxtGxliRE1fLQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 00:27:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 19:27:31.789764 2026] [security2:error] [pid 25679:tid 25679] [client 209.50.169.94:34735] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "voltbox.com"] [uri "/admin/.git/config"] [unique_id "aZZY87zFPblfXhP6_XErmQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-18 20:05:30 (3 months ago)	Blocking for trying to access an exploit file: /app/.env	Hacking
🇺🇸 TPI-Abuse	2026-02-18 16:50:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 11:50:38.378749 2026] [security2:error] [pid 13331:tid 13331] [client 209.50.169.94:46355] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "z-mgmt.com"] [uri "/site/.git/config"] [unique_id "aZXt3muKTGve1DB6b76yLgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 13:00:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 08:00:03.985056 2026] [security2:error] [pid 670:tid 670] [client 209.50.169.94:18431] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wfowisdom.com"] [uri "/site/.git/config"] [unique_id "aZW30yZeeBVoOqOa7M3PEQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:27:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:27:26.081556 2026] [security2:error] [pid 6274:tid 6274] [client 209.50.169.94:20259] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webjemm.com"] [uri "/frontend/.env"] [unique_id "aZWwLlnbHUYUPLpJRaLw6gAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-18 12:05:29 (3 months ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 11:56:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.169.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 06:56:45.360495 2026] [security2:error] [pid 18387:tid 18387] [client 209.50.169.94:48381] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "warshaw1.com"] [uri "/.env.save"] [unique_id "aZWo_V0yG9vmMuRbSZxu0QAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-12-28 11:24:28 (5 months ago)	Form spam	Web Spam
🇮🇹 VHosting	2025-12-23 21:25:16 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-11-29 10:15:28 (6 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.29 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.29 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇿🇲 102.23.122.235

🇨🇳 36.135.93.37

🇰🇷 34.22.82.157

🇯🇵 8.216.4.247

🇩🇪 213.209.159.242

🇧🇪 198.235.24.209

🇳🇱 176.65.139.22

🇹🇹 161.0.246.193

🇪🇬 154.177.212.14

🇺🇸 64.62.197.114

🇵🇾 45.228.139.138

🇺🇸 34.22.40.255

🇸🇬 8.219.165.219

🇬🇧 195.206.182.198

🇺🇸 185.191.171.17

🇮🇱 109.186.15.169

🇵🇰 103.72.1.123

🇵🇱 87.251.64.156

🇲🇦 81.192.46.32

🇷🇴 80.94.92.130