JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.173.64

209.50.173.64 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 17%: ?

17%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.173.64

Whois 209.50.173.64

IP Abuse Reports for 209.50.173.64:

This IP address has been reported a total of 34 times from 16 distinct sources. 209.50.173.64 was first reported on September 29th 2025, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 LSPCCU	2026-06-03 20:23:42 (6 days ago)	TSEC Honeypot Network report. Threat score: 70/100. Categories: Hacking. Honeypot: ssh-telnet, cowri ... show more TSEC Honeypot Network report. Threat score: 70/100. Categories: Hacking. Honeypot: ssh-telnet, cowrie. Context: 209. show less	Hacking
🇦🇺 oncord	2026-05-25 17:50:35 (2 weeks ago)	Form spam	Web Spam
🇺🇸 oncord	2026-05-21 20:42:09 (2 weeks ago)	Form spam	Web Spam
🇱🇻 garmtech.com	2026-05-10 11:40:57 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 14-40.209.50.173.64.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 14-40.209.50.173.64.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇷🇸 Smel	2025-12-31 06:52:40 (5 months ago)	SIP/5060 Probe, Scan, BF, Hack -	Fraud VoIP Port Scan Hacking Brute-Force
🇺🇸 myagent.site	2025-12-29 15:38:58 (5 months ago)	Blocking for trying to access an exploit file: /wp//kickstart.php	Hacking
Anonymous	2025-12-26 00:45:20 (5 months ago)	wordpress-trap	Web App Attack
🇳🇱 i-turnradio.nl	2025-12-17 20:34:31 (5 months ago)	2025-12-17 @ 21:34:30 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
Anonymous	2025-12-06 21:14:17 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-02 22:10:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 17:10:17.787095 2025] [security2:error] [pid 12026:tid 12026] [client 209.50.173.64:22601] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "corstratinc.com"] [uri "/.svn/wc.db"] [unique_id "aS9jyQvPBTfBIyZED-52kQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2025-12-02 19:15:37 (6 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:37:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:36:58.376870 2025] [security2:error] [pid 21147:tid 21147] [client 209.50.173.64:51851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "harmonyexpos.com"] [uri "/.git/HEAD"] [unique_id "aS6XGhqgFFkRJM0buGCetAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 02:23:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 21:22:54.525487 2025] [security2:error] [pid 6294:tid 6294] [client 209.50.173.64:57881] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teamgravity.ca"] [uri "/.svn/wc.db"] [unique_id "aS5NfiKDIu5zM9J-mCAqQgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:08:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.173.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.173.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:08:49.711415 2025] [security2:error] [pid 19819:tid 19819] [client 209.50.173.64:36099] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.dogdom.com"] [uri "/.git/HEAD"] [unique_id "aSa1kWRjoLEAjsvF31nQ-QAAABM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 185.242.3.226

🇩🇪 152.53.22.30

🇸🇬 139.59.227.143

🇺🇸 65.49.1.231

🇺🇸 2602:fb54:1a00::37

🇭🇰 223.197.178.95

🇺🇸 152.32.236.147

🇨🇳 118.248.224.104

🇫🇷 91.196.152.22

🇺🇸 71.6.242.110

🇦🇿 46.32.170.48

🇮🇳 45.248.33.200

🇸🇪 45.130.200.129

🇮🇱 34.165.71.203

🇻🇳 14.191.156.64

🇯🇵 160.251.197.41

🇺🇸 152.32.149.206

🇺🇸 66.228.34.203

🇩🇪 45.135.141.20

🇨🇳 39.156.65.17