JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.172.152

209.50.172.152 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.172.152

Whois 209.50.172.152

IP Abuse Reports for 209.50.172.152:

This IP address has been reported a total of 27 times from 10 distinct sources. 209.50.172.152 was first reported on September 26th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 LSPCCU	2026-05-10 05:09:41 (1 month ago)	TSEC Honeypot Network report. Threat score: 68/100. Categories: Hacking. Honeypot: ssh-telnet, cowri ... show more TSEC Honeypot Network report. Threat score: 68/100. Categories: Hacking. Honeypot: ssh-telnet, cowrie. Context: IP observed in Suricata network metadata. show less	Hacking
🇱🇻 garmtech.com	2026-03-28 18:32:22 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 20-32.209.50.172.152.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 20-32.209.50.172.152.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:39 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-12-15 13:08:26 (6 months ago)	botnet	DDoS Attack
Anonymous	2025-11-27 11:59:02 (6 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.27 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.27 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 11:24:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:24:06.583320 2025] [security2:error] [pid 1721:tid 1721] [client 209.50.172.152:12651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ggaccounting.services"] [uri "/.git/HEAD"] [unique_id "aSbjVkSnYnRFKo70dbd4qwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:19:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:18:58.110893 2025] [security2:error] [pid 14713:tid 14713] [client 209.50.172.152:47999] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.kokr.org"] [uri "/.svn/wc.db"] [unique_id "aSbUEv2pFJG1SGBkPOu6sgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:37:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:37:23.646200 2025] [security2:error] [pid 3538472:tid 3538576] [client 209.50.172.152:32319] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.strengthsmatter.com"] [uri "/.git/HEAD"] [unique_id "aSaSE-I4WXb68rdDW0Nd5wAAAYc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:03:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:03:27.916275 2025] [security2:error] [pid 24630:tid 24630] [client 209.50.172.152:35575] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.centrehastingssportandphysio.com"] [uri "/.svn/wc.db"] [unique_id "aSZf76DEvwRVMLUEqtI8nwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:31:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:31:41.269959 2025] [security2:error] [pid 22989:tid 22989] [client 209.50.172.152:19721] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ontimelogistiks.com"] [uri "/.git/HEAD"] [unique_id "aSUVDfQ0bQTcfEt_ZawqcQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:30:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:30:46.393438 2025] [security2:error] [pid 22544:tid 22544] [client 209.50.172.152:35477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.techsunlimited.net"] [uri "/.git/HEAD"] [unique_id "aSQlxuaOPijTZX9XuFbUIAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:11:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:10:56.715899 2025] [security2:error] [pid 23466:tid 23466] [client 209.50.172.152:11899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.asiaan.net"] [uri "/.git/HEAD"] [unique_id "aSQTEDYPdxujynoXkE4EHwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 MirrorImageGaming	2025-11-24 05:38:29 (6 months ago)	GET /.git/HEAD HTTP/1.1- Mozilla/5.0 (WindowsNT 10.0; Win64;x64; rv:121.0) Gecko/20100101Firefox/121 ... show more GET /.git/HEAD HTTP/1.1- Mozilla/5.0 (WindowsNT 10.0; Win64;x64; rv:121.0) Gecko/20100101Firefox/121.0 show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:21:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:21:39.079429 2025] [security2:error] [pid 12126:tid 12126] [client 209.50.172.152:53547] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.brbcoin.com"] [uri "/.git/HEAD"] [unique_id "aSPdU-U9fI_-PfIXqjMwXwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-16 06:26:53 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.16 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.11.16 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.90.244.21

🇸🇬 118.26.111.107

🇳🇱 91.92.40.6

🇺🇸 2a03:2880:f800:6::

🇩🇪 213.209.159.231

🇷🇴 193.46.255.154

🇺🇸 162.216.149.248

🇺🇸 162.216.149.54

🇺🇸 146.190.153.30

🇺🇸 143.198.238.87

🇩🇪 138.68.79.173

🇨🇳 112.94.253.181

🇺🇸 92.118.228.100

🇨🇴 69.6.234.27

🇳🇱 45.198.224.18

🇳🇱 45.148.10.121

🇺🇸 44.203.62.109

🇺🇸 207.90.244.20

🇺🇸 164.92.106.15

🇺🇸 143.198.150.150