JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.170.245

209.50.170.245 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.170.245

Whois 209.50.170.245

IP Abuse Reports for 209.50.170.245:

This IP address has been reported a total of 22 times from 12 distinct sources. 209.50.170.245 was first reported on September 27th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-01-28 15:21:20 (4 months ago)	wordpress-trap	Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 09:34:57 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇱🇻 garmtech.com	2026-01-17 23:20:21 (4 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇮🇹 VHosting	2025-12-30 02:55:11 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇩🇪 F242	2025-12-29 00:57:11 (5 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:00:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:00:08.456198 2025] [security2:error] [pid 19502:tid 19502] [client 209.50.170.245:14509] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thingstodonude.com"] [uri "/.svn/wc.db"] [unique_id "aSU32FRmOBRv-2qvK5AR4gAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:52:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:52:25.457692 2025] [security2:error] [pid 1647140:tid 1647178] [client 209.50.170.245:28259] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.accuball.com"] [uri "/.env"] [unique_id "aSUZ6cWdNO_bFaD03ZYsGAAAAMA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:20:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:20:26.528713 2025] [security2:error] [pid 30871:tid 30871] [client 209.50.170.245:44589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.transportdelivery.com"] [uri "/.git/HEAD"] [unique_id "aSUSahbLPSQvnpC_rce68gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:54:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:54:37.917790 2025] [security2:error] [pid 27427:tid 27427] [client 209.50.170.245:50313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pointillistic.com"] [uri "/.git/HEAD"] [unique_id "aST-TUOo3mZEQA6J36oxBQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:24:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:24:53.762744 2025] [security2:error] [pid 5194:tid 5194] [client 209.50.170.245:23091] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "us.abecasis.com"] [uri "/.git/HEAD"] [unique_id "aST3VZJTDwmqc1cFXxSCPwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 09:09:15 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2025-10-20 14:26:33 (7 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
Anonymous	2025-10-19 01:18:54 (7 months ago)	sshd	Brute-Force SSH
Anonymous	2025-10-18 05:52:03 (7 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.18 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.18 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 wil.com	2025-10-17 15:57:25 (7 months ago)	GlobalProtect login attempts with user roundsr.	VPN IP Brute-Force

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 195.178.191.5

🇳🇬 152.32.142.188

🇺🇸 66.132.224.83

🇺🇸 66.132.172.219

🇷🇴 2.57.121.25

🇧🇷 205.210.31.130

🇻🇪 201.249.87.201

🇦🇷 149.107.228.145

🇺🇸 129.212.184.120

🇨🇦 85.217.149.51

🇩🇪 80.133.241.82

🇺🇸 35.196.211.152

🇺🇸 15.204.187.245

🇮🇳 223.188.42.150

🇨🇳 223.106.19.237

🇫🇷 194.226.169.22

🇧🇷 131.100.242.102

🇺🇸 216.180.246.226

🇮🇩 182.8.64.3

🇺🇸 144.31.35.184