JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.173.232

209.50.173.232 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 15%: ?

15%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.173.232

Whois 209.50.173.232

IP Abuse Reports for 209.50.173.232:

This IP address has been reported a total of 33 times from 14 distinct sources. 209.50.173.232 was first reported on September 28th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-16 12:19:27 (1 month ago)	RdpGuard detected brute-force attempt on RD-WEB	Brute-Force
🇪🇸 librebit	2026-05-13 23:58:13 (1 month ago)	Brute force	Brute-Force
Anonymous	2026-05-13 03:33:37 (1 month ago)	Multiple failed login attemps RDS-Web-Access-Server	Brute-Force Web App Attack
Anonymous	2026-04-28 01:20:22 (1 month ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-11 04:41:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 23:41:48.351701 2025] [security2:error] [pid 24322:tid 24322] [client 209.50.173.232:17669] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "toberoocrafts.com"] [uri "/.env"] [unique_id "aTpLjMKScvroij7yeh0GawAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 13:18:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 08:18:49.040842 2025] [security2:error] [pid 10148:tid 10148] [client 209.50.173.232:48279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "greatnorthernstrategies.com"] [uri "/.git/HEAD"] [unique_id "aTbQOdHv5F-QQWIEDueF-wAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 15:17:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:17:21.362733 2025] [security2:error] [pid 32590:tid 32590] [client 209.50.173.232:20165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tcmu.org"] [uri "/.git/HEAD"] [unique_id "aTWagfFjUjeTU2CjYi7KVwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:22:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:22:13.264203 2025] [security2:error] [pid 3244:tid 3330] [client 209.50.173.232:56213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "behaviorhealth.org"] [uri "/.svn/wc.db"] [unique_id "aTVxdRZM9fDlQx0ArsClWAAAAIA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 spamverify.com	2025-12-07 00:05:20 (6 months ago)	Honeypot Hit: Port Scan (80) HTTP	Web Spam Blog Spam Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 16:00:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 11:00:29.216998 2025] [security2:error] [pid 2130:tid 2130] [client 209.50.173.232:20625] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "essav.net"] [uri "/.svn/wc.db"] [unique_id "aTRTHUXPlgQpUws-Egqi-wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 12:46:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 07:46:02.818827 2025] [security2:error] [pid 23917:tid 23935] [client 209.50.173.232:9619] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deeplykneaded.net"] [uri "/.svn/wc.db"] [unique_id "aTQlis_nzCr_Cfjc6tHaqAAAANA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 14:42:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 09:42:28.388969 2025] [security2:error] [pid 27756:tid 27756] [client 209.50.173.232:56385] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "littlebiglebanon.com"] [uri "/.svn/wc.db"] [unique_id "aTLvVN_wLh5Z8wMSjAjFnAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-30 13:03:57 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 03:56:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:56:40.636907 2025] [security2:error] [pid 27155:tid 27155] [client 209.50.173.232:59309] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.wandcompany.com"] [uri "/.env"] [unique_id "aSUo-BcAkLKRgIT54g2NyAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:53:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:53:24.275505 2025] [security2:error] [pid 15101:tid 15124] [client 209.50.173.232:17325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.maryschalkdesign.com"] [uri "/.env"] [unique_id "aSUaJKNKS2jdjfTVKRdWiAAAARQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4002:c00::124

🇳🇱 159.223.3.98

🇺🇸 151.245.32.125

🇮🇷 185.213.165.138

🇮🇹 79.34.10.35

🇳🇱 45.142.193.142

🇺🇸 34.26.151.132

🇺🇸 3.129.187.38

🇺🇸 2607:f8b0:4002:c1b::128

🇺🇸 180.178.51.42

🇷🇴 141.98.83.240

🇨🇳 120.26.210.195

🇦🇪 92.99.77.247

🇳🇱 91.92.40.46

🇿🇦 41.76.213.108

🇭🇰 223.197.248.209

🇵🇰 122.50.1.97

🇺🇸 104.248.119.14

🇩🇪 91.107.185.174

🇺🇸 73.27.33.174