JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.170.92

209.50.170.92 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.170.92

Whois 209.50.170.92

IP Abuse Reports for 209.50.170.92:

This IP address has been reported a total of 27 times from 10 distinct sources. 209.50.170.92 was first reported on September 26th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 mnsf	2026-02-13 14:06:50 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇫🇷 dynamix	2026-02-13 07:38:36 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:39:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:39:49.010887 2026] [security2:error] [pid 14040:tid 14040] [client 209.50.170.92:51303] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garrettkirkland.com"] [uri "/dev/.git/config"] [unique_id "aYpUJR6-UTANOO-lr5QiKAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:40:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:40:34.274791 2026] [security2:error] [pid 22601:tid 22601] [client 209.50.170.92:41025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gacstoday.com"] [uri "/frontend/.env"] [unique_id "aYo4MtOAVcUmfL6ThUsdywAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:16:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:16:47.162569 2026] [security2:error] [pid 19338:tid 19411] [client 209.50.170.92:20967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "g3-contracting.com"] [uri "/.env"] [unique_id "aYoyn4WE2kxo01YgpUqZiAAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-24 03:26:15 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-11-25 05:36:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:36:13.525471 2025] [security2:error] [pid 3768:tid 3768] [client 209.50.170.92:58413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.proof.bonefrog.com"] [uri "/.svn/wc.db"] [unique_id "aSVATZv_sOR9LTpFzg1XbgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:25:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:25:03.836647 2025] [security2:error] [pid 22995:tid 22995] [client 209.50.170.92:35209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rbmediaworks.com"] [uri "/.git/HEAD"] [unique_id "aSUvnxwiEJHMPhaRGCtDrAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:01:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:00:56.765801 2025] [security2:error] [pid 1817001:tid 1817042] [client 209.50.170.92:32625] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.inal.org"] [uri "/.svn/wc.db"] [unique_id "aSUp-GR1ttxeyDpsCa9LcwAAAYM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:21:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:21:00.160828 2025] [security2:error] [pid 9690:tid 9690] [client 209.50.170.92:21569] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.emmtrucking.com"] [uri "/.svn/wc.db"] [unique_id "aSUSjMmMiFbwCJT1QP7AGQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:32:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:32:47.183711 2025] [security2:error] [pid 29231:tid 29231] [client 209.50.170.92:49071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.vtwins.us"] [uri "/.svn/wc.db"] [unique_id "aSUHP7a4mhe03f25qPVgAwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:26:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.170.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:25:59.967008 2025] [security2:error] [pid 21634:tid 21634] [client 209.50.170.92:33615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.articulaterecords.com"] [uri "/.git/HEAD"] [unique_id "aST3lylrSHWpQBKqMJg6XQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-28 23:14:22 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇱🇻 garmtech.com	2025-10-21 11:29:23 (7 months ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 213.218.243.59

🇪🇬 197.44.15.210

🇨🇷 179.48.248.245

🇷🇺 178.205.178.239

🇮🇩 163.7.3.220

🇸🇬 101.100.194.252

🇭🇰 101.79.165.43

🇸🇬 4.194.131.131

🇸🇬 150.109.21.93

🇭🇰 114.111.54.189

🇫🇷 85.217.140.11

🇮🇹 57.131.51.229

🇬🇧 35.203.210.51

🇨🇳 14.103.117.85

🇰🇷 220.80.223.144

🇹🇼 198.235.24.56

🇧🇷 186.226.238.135

🇨🇴 129.222.203.206

🇳🇱 86.54.31.46

🇺🇸 71.6.134.229