JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.171.142

209.50.171.142 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.171.142

Whois 209.50.171.142

IP Abuse Reports for 209.50.171.142:

This IP address has been reported a total of 17 times from 8 distinct sources. 209.50.171.142 was first reported on September 27th 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-12-27 13:03:09 (5 months ago)	2025-12-27T15:03:09.435328+02:00 zanati wp(www.sahpa.co.za)[193597]: Blocked authentication attempt ... show more 2025-12-27T15:03:09.435328+02:00 zanati wp(www.sahpa.co.za)[193597]: Blocked authentication attempt for [email protected] from 209.50.171.142 ... show less	Web App Attack
🇺🇸 inspectorgdgt	2025-12-24 22:00:00 (5 months ago)	VPN brute-force login attempts observed (bulk report).	Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 11:21:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:21:41.175819 2025] [security2:error] [pid 2063:tid 2063] [client 209.50.171.142:12757] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "art4mm.performingartsguild.com"] [uri "/.env"] [unique_id "aSbixfZTN6A_HsMkFsKJjwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:54:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:54:01.108896 2025] [security2:error] [pid 6199:tid 6199] [client 209.50.171.142:28081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.pappakotis.com"] [uri "/.env"] [unique_id "aSbcSZFVYHeiVWjbUrsILQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:57:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:57:39.654571 2025] [security2:error] [pid 23033:tid 23033] [client 209.50.171.142:52329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.oldmaninthepeanut.com"] [uri "/.env"] [unique_id "aSaW01HhPtNkDL-w_1eHOAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:50:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:50:11.764207 2025] [security2:error] [pid 30972:tid 30972] [client 209.50.171.142:37027] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.hakanararat.com"] [uri "/.env"] [unique_id "aSQqU4I_N9ugj00E7yy3jAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:47:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:47:26.570145 2025] [security2:error] [pid 17425:tid 17425] [client 209.50.171.142:28123] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.tonytremblayauthor.com"] [uri "/.svn/wc.db"] [unique_id "aSQbnpp_4hc90p4LQMjN7wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:24:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.171.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:24:05.963273 2025] [security2:error] [pid 13943:tid 14040] [client 209.50.171.142:30095] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.faceliftnewyork.com.aafm.us"] [uri "/.env"] [unique_id "aSQIFepgfj-qx9CvqmSa8AAAAg0"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 07:32:50 (7 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-11-13 22:57:20 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-17 19:58:24 (8 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇨🇦 wil.com	2025-10-13 20:16:04 (8 months ago)	GlobalProtect login attempts with user tanjajackson.	VPN IP Brute-Force
🇧🇪 cmbplf	2025-10-07 23:27:30 (8 months ago)	1.402 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
Anonymous	2025-10-07 14:22:57 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.07 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-01 16:17:17 (8 months ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.10.01 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.10.01 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.78.69.178

🇺🇸 172.217.107.21

🇺🇸 162.216.150.46

🇵🇭 149.30.149.144

🇨🇳 123.144.135.117

🇨🇳 118.212.121.124

🇮🇩 114.10.43.156

🇳🇱 93.123.109.184

🇨🇦 85.217.149.23

🇺🇸 43.162.112.238

🇬🇧 35.203.210.107

🇩🇿 197.204.246.178

🇺🇸 162.216.150.86

🇺🇸 74.139.88.174

🇺🇸 66.132.186.224

🇺🇸 65.49.20.107

🇳🇱 45.148.10.183

🇺🇸 216.218.206.75

🇨🇭 209.99.190.113

🇹🇼 198.235.24.126