JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.164.201

209.50.164.201 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.164.201

Whois 209.50.164.201

IP Abuse Reports for 209.50.164.201:

This IP address has been reported a total of 37 times from 17 distinct sources. 209.50.164.201 was first reported on September 27th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cyfordtechnologies.com	2026-03-10 08:44:05 (3 months ago)	High-abuse ASN prefix: 209.50. : Reported by Cyford API	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:04:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:04:24.546458 2026] [security2:error] [pid 9829:tid 9852] [client 209.50.164.201:43601] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madring.click"] [uri "/backend/.env"] [unique_id "aYqgOE2gXiz6axLwsMS6_wAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:48:45 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:48:40.840008 2026] [security2:error] [pid 474:tid 474] [client 209.50.164.201:51537] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keyston.net"] [uri "/config/.env"] [unique_id "aYqAaDvcq0Y054QttrWErgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 openstrike.co.uk	2025-12-22 08:49:19 (5 months ago)	9 packets to port 2083	Port Scan
Anonymous	2025-12-03 22:57:25 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-26 21:32:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 16:31:57.012787 2025] [security2:error] [pid 27661:tid 27661] [client 209.50.164.201:30179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "admin.turedinmobiliaria.com"] [uri "/.git/HEAD"] [unique_id "aSdxzU2YOlcb8SenV4Gf0QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 12:07:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:07:19.243785 2025] [security2:error] [pid 16408:tid 16408] [client 209.50.164.201:16017] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.nvafc.com"] [uri "/.env"] [unique_id "aSbtd6Li7rrCllde8abMBQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:12:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:12:09.056513 2025] [security2:error] [pid 16568:tid 16568] [client 209.50.164.201:52139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kfvoss.wexfordcap.com"] [uri "/.env"] [unique_id "aSZwCTIlVrSNm5QnPgwnHAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:04:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:04:03.837016 2025] [security2:error] [pid 4924:tid 4924] [client 209.50.164.201:12233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.personalizedbabyshowernapkins.com"] [uri "/.svn/wc.db"] [unique_id "aSZgE4wNJAt4_DUE4UkoUwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:15:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:15:33.625133 2025] [security2:error] [pid 17466:tid 17489] [client 209.50.164.201:9621] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.transiit.org"] [uri "/.git/HEAD"] [unique_id "aSZUtZvX96wK2APxLO0tjwAAANU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:08:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:08:25.707368 2025] [security2:error] [pid 17324:tid 17324] [client 209.50.164.201:15235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.muranelli.com"] [uri "/.svn/wc.db"] [unique_id "aSZE-arPx9qyu4t_JqCjrAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:05:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.164.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:04:58.703192 2025] [security2:error] [pid 13098:tid 13098] [client 209.50.164.201:59083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.lollytalk.com"] [uri "/.env"] [unique_id "aSP1iiOrE_SXArYvFhBL-AAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-11-18 04:42:54 (7 months ago)	(From [email protected]) Multiverse AI - The Only Platform That Gives You Access To Eve ... show more (From [email protected]) Multiverse AI - The Only Platform That Gives You Access To Every Top AI Model — In Every Version — All Inside A Single, Beautifully Simple Dashboard. https://ai108.online/MultiverseAI ChatGPT (3.5 → 4.5 → 4o → 5 → Turbo → Nano) Gemini (1.5 Pro → 2.0 Flash) Claude (3 Opus → Sonnet → Haiku) Grok (1 through 4) DALL·E, Veo, Kling, ElevenLabs, DeepSeek, FLUX, LLaMA & more And yes — you get every future version included automatically. https://ai108.online/MultiverseAI to UNSUBSCRIBE: https://ai108.online/unsubscribe?domain=discoverfamilychiro.com Address: 108 West Street Comstock Park, MI 48721 show less	Phishing Web Spam
🇺🇸 nowyouknow	2025-11-18 02:46:06 (7 months ago)	(From [email protected]) Multiverse AI - The Only Platform That Gives You Access To Every T ... show more (From [email protected]) Multiverse AI - The Only Platform That Gives You Access To Every Top AI Model — In Every Version — All Inside A Single, Beautifully Simple Dashboard. https://ai108.online/MultiverseAI ChatGPT (3.5 → 4.5 → 4o → 5 → Turbo → Nano) Gemini (1.5 Pro → 2.0 Flash) Claude (3 Opus → Sonnet → Haiku) Grok (1 through 4) DALL·E, Veo, Kling, ElevenLabs, DeepSeek, FLUX, LLaMA & more And yes — you get every future version included automatically. https://ai108.online/MultiverseAI to UNSUBSCRIBE: https://ai108.online/unsubscribe?domain=griffithchiropractic.com Address: 108 West Street Comstock Park, MI 48721 show less	Phishing Web Spam
🇺🇸 nowyouknow	2025-11-16 18:08:26 (7 months ago)	(From [email protected]) The Hidden Goldmine gets people in front of 5,000,000+ buyers that ... show more (From [email protected]) The Hidden Goldmine gets people in front of 5,000,000+ buyers that pay over and over again all while AI takes care of all of the “work”. https://bookmarket.expert/TheHiddenGoldmine to UNSUBSCRIBE: https://bookmarket.expert/unsubscribe?domain=sunshinechiro.com Address: 108 West Street Comstock Park, MI 48721 show less	Phishing Web Spam

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 223.197.186.7

🇸🇦 188.51.221.82

🇭🇰 118.193.32.92

🇷🇺 85.30.212.24

🇨🇴 179.33.186.15

🇺🇸 178.93.131.212

🇺🇸 143.42.1.191

🇫🇷 51.75.24.58

🇳🇱 45.148.10.62

🇲🇳 202.179.4.22

🇰🇪 197.237.61.235

🇧🇷 179.224.24.99

🇩🇪 167.94.145.28

🇺🇸 162.216.150.100

🇺🇸 162.216.149.115

🇹🇷 85.105.210.170

🇩🇪 69.5.169.69

🇮🇳 49.37.219.124

🇦🇿 37.61.112.223

🇮🇳 2409:40e6:3c:c51c:2414:f41:b0ac:528f