JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.175.96

209.50.175.96 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.175.96

Whois 209.50.175.96

IP Abuse Reports for 209.50.175.96:

This IP address has been reported a total of 40 times from 12 distinct sources. 209.50.175.96 was first reported on September 4th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 sms.ru	2026-02-11 23:28:53 (3 months ago)	/api/.git/config	Web App Attack
🇱🇺 conseilgouz	2026-02-11 20:55:26 (3 months ago)	are-17 : Block hidden directories=>/.env(/)	Hacking
🇩🇪 kommunos	2026-02-10 06:22:13 (3 months ago)	/v2/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:30:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:30:16.773383 2026] [security2:error] [pid 878609:tid 878651] [client 209.50.175.96:30747] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettleofgold.com"] [uri "/.env"] [unique_id "aYp8GIl0Zv13If8rJtj7MAAAAUM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:00:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:00:53.087829 2026] [security2:error] [pid 28569:tid 28569] [client 209.50.175.96:48095] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "katharinanitzpon.com"] [uri "/.env"] [unique_id "aYpZFRpw5g-vyL5CmK96WQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:12:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:12:35.715528 2026] [security2:error] [pid 28020:tid 28020] [client 209.50.175.96:59735] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "horizontravelgroup.com"] [uri "/.env.staging"] [unique_id "aYpNw8lzCu4I0idzxvu-rAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:39:08 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:39:00.069446 2026] [security2:error] [pid 24995:tid 24995] [client 209.50.175.96:25369] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hongkonger.org"] [uri "/.env.local"] [unique_id "aYpF5PLRCuQUTe6hRmXkUQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-14 09:52:07 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-26 08:34:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:34:39.020559 2025] [security2:error] [pid 32344:tid 32344] [client 209.50.175.96:47443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.starktigers75.com"] [uri "/.svn/wc.db"] [unique_id "aSa7n5KkbrOuhwUpCEZJuQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:03:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:03:35.023425 2025] [security2:error] [pid 20851:tid 20851] [client 209.50.175.96:32255] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.koshland.us"] [uri "/.git/HEAD"] [unique_id "aSaYN8BsNDRFrrkvUfknDAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 04:06:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 23:06:43.201058 2025] [security2:error] [pid 1885:tid 1885] [client 209.50.175.96:23273] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.skomaxentertainment.com"] [uri "/.git/HEAD"] [unique_id "aSZ809CuVb_dlXTgljsAtwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:13:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:13:27.471243 2025] [security2:error] [pid 6169:tid 6169] [client 209.50.175.96:57049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kelting.net"] [uri "/.git/HEAD"] [unique_id "aSZiR34u7jvYUD1QzuhRXQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 ingroscart.it	2025-11-24 11:14:58 (6 months ago)	(mod_security) mod_security triggered on hostname [redacted] 209.50.175.96 (US/United States/-)	SQL Injection
🇱🇻 garmtech.com	2025-11-24 10:23:36 (6 months ago)	Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ... show more Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:54:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.175.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:54:19.336437 2025] [security2:error] [pid 19623:tid 19623] [client 209.50.175.96:58829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.denvercitymotorparts.com"] [uri "/.env"] [unique_id "aSQBG6OZL8sKGSmVBpUZCgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.67

🇭🇰 118.26.37.26

🇹🇼 106.1.188.238

🇮🇳 103.25.47.94

🇧🇬 79.124.40.126

🇪🇸 79.117.246.166

🇫🇮 74.125.112.28

🇩🇪 69.5.169.251

🇧🇷 45.189.96.158

🇺🇸 20.84.153.206

🇨🇳 14.103.112.5

🇺🇸 2600:3c02::2000:8aff:fe49:e335

🇵🇦 190.32.246.14

🇷🇺 188.254.102.55

🇸🇬 185.200.116.75

🇨🇳 120.229.69.96

🇹🇼 111.70.43.168

🇬🇧 95.154.200.52

🇱🇹 77.90.185.16

🇺🇸 45.79.207.110