JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.172.61

209.50.172.61 was found in our database!

This IP was reported 42 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.172.61

Whois 209.50.172.61

IP Abuse Reports for 209.50.172.61:

This IP address has been reported a total of 42 times from 11 distinct sources. 209.50.172.61 was first reported on September 27th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-19 04:56:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:56:32.811684 2026] [security2:error] [pid 18384:tid 18384] [client 209.50.172.61:30843] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "konzel.com"] [uri "/.env.save"] [unique_id "aZaYAJ0H6ZzxYyEq8OflPgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 04:23:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:23:04.661337 2026] [security2:error] [pid 19140:tid 19140] [client 209.50.172.61:37751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "klingandi.com"] [uri "/api/.git/config"] [unique_id "aZaQKPh6k9SqY0iWapy4PAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 03:17:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 22:17:12.609962 2026] [security2:error] [pid 28869:tid 28869] [client 209.50.172.61:14333] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kewlkarz.com"] [uri "/.env.production"] [unique_id "aZaAuE6dVt8hv1mjnzknJgAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 23:37:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 18:37:18.989477 2026] [security2:error] [pid 21228:tid 21228] [client 209.50.172.61:41445] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vidalwrightlaw.com"] [uri "/dev/.git/config"] [unique_id "aZZNLoM9DnJ1pGm8SRLK_wAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 23:14:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 18:14:37.221721 2026] [security2:error] [pid 13717:tid 13717] [client 209.50.172.61:58249] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "verdeprofundo.net"] [uri "/wp/.git/config"] [unique_id "aZZH3ZOlTiJtsWO_9AajawAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 21:18:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 16:18:51.324602 2026] [security2:error] [pid 12020:tid 12020] [client 209.50.172.61:50473] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twixmixy.com"] [uri "/.git/config"] [unique_id "aZYsu-4yLJduLfCRIWmUZwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 20:08:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 15:08:00.267034 2026] [security2:error] [pid 21227:tid 21227] [client 209.50.172.61:59113] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trafficstopper.com"] [uri "/.env"] [unique_id "aZYcIIvUpKVbHyTBupAmcQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:48:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:48:12.013972 2026] [security2:error] [pid 18151:tid 18151] [client 209.50.172.61:58437] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thoughtage.org"] [uri "/.env.production"] [unique_id "aZYJbDdk2uJMlpJBCCmRqAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:46:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:46:02.635889 2026] [security2:error] [pid 29770:tid 29770] [client 209.50.172.61:50687] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "welleracore.com"] [uri "/backend/.env"] [unique_id "aZW0ivblYwrNsQBcLyGsDwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:21:48 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:21:39.679845 2026] [security2:error] [pid 12635:tid 12635] [client 209.50.172.61:42627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web-sitebuilder.com"] [uri "/.env"] [unique_id "aZWu0z0BQa86j2aS1hdLxwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:06:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:06:05.947604 2026] [security2:error] [pid 17162:tid 17162] [client 209.50.172.61:55947] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "watongalodging.com"] [uri "/frontend/.env"] [unique_id "aZWrLbAun0IYqHjF5ifLiQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 11:48:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 06:48:08.399636 2026] [security2:error] [pid 7999:tid 7999] [client 209.50.172.61:47853] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wandcompany.com"] [uri "/v2/.git/config"] [unique_id "aZWm-HZkNvATOhJhCbxDqQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:55:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:54:53.672711 2026] [security2:error] [pid 14875:tid 14875] [client 209.50.172.61:11777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kiuchi.info"] [uri "/.env.save"] [unique_id "aYqsDaVtKwzFOj25bRZhrQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:28:14 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:28:07.909748 2026] [security2:error] [pid 17784:tid 17784] [client 209.50.172.61:34041] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ianmagarzo.com"] [uri "/config/.env"] [unique_id "aYqlxwu3Zy09OyW_Ea6ZXwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 42 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a04:c300:400::1f7

🇩🇪 185.249.74.198

🇸🇪 104.23.217.141

🇹🇷 91.151.88.168

🇸🇬 43.133.61.150

🇨🇳 182.44.38.181

🇨🇱 170.82.129.8

🇺🇸 109.105.209.4

🇷🇴 94.156.152.234

🇺🇸 74.128.244.178

🇭🇰 47.76.26.151

🇸🇳 41.82.50.218

🇺🇸 40.112.183.29

🇵🇰 2400:adc7:195d:d300:9ca8:bf94:a208:113c

🇺🇸 184.154.157.176

🇨🇳 122.114.113.177

🇩🇪 18.195.191.1

🇨🇳 8.153.102.64

🇮🇩 149.129.193.163

🇬🇧 92.27.157.252