JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.165.119

209.50.165.119 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 23%: ?

23%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.165.119

Whois 209.50.165.119

IP Abuse Reports for 209.50.165.119:

This IP address has been reported a total of 29 times from 17 distinct sources. 209.50.165.119 was first reported on September 27th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-17 02:55:34 (4 days ago)	Web App Attack	Web App Attack
🇩🇪 iNetWorker	2026-06-06 19:39:07 (2 weeks ago)	trolling for resource vulnerabilities	Web App Attack
🇫🇮 inlink.ltd	2026-06-06 19:13:50 (2 weeks ago)	dot file probe	Web App Attack
🇪🇸 librebit	2026-05-17 05:08:16 (1 month ago)	Brute force	Brute-Force
🇬🇧 consul.to	2026-02-15 12:50:40 (4 months ago)	Web attack/malicious scanning detected	Web App Attack
🇮🇩 Burayot	2026-02-15 02:46:32 (4 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 209.50.165.119 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 209.50.165.119 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇫🇷 dynamix	2026-02-14 21:53:27 (4 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 MirrorImageGaming	2026-02-14 21:27:42 (4 months ago)	80 → 443 GET /backup/.git/config HTTP/1.1 - Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/53 ... show more 80 → 443 GET /backup/.git/config HTTP/1.1 - Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 show less	Web App Attack
🇮🇹 VHosting	2025-12-23 21:30:09 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-09 00:14:43 (6 months ago)	botnet	DDoS Attack
Anonymous	2025-12-03 02:41:17 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 04:36:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:36:46.143228 2025] [security2:error] [pid 22236:tid 22236] [client 209.50.165.119:17011] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.keystonebrass.com"] [uri "/.git/HEAD"] [unique_id "aSUyXnagRPkN6IBf_VBUcwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:14:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:14:20.353577 2025] [security2:error] [pid 14167:tid 14167] [client 209.50.165.119:26049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.ramoundos-systems.com"] [uri "/.svn/wc.db"] [unique_id "aSUtHH63zcyn9GOan3bEZQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:03:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:03:36.839955 2025] [security2:error] [pid 27727:tid 27736] [client 209.50.165.119:38357] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.stephanie.stauffer.name"] [uri "/.env"] [unique_id "aSUciPeXMnwYTnmV60PcCgAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:35:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.165.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.165.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:35:14.369557 2025] [security2:error] [pid 30781:tid 30781] [client 209.50.165.119:15995] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.thecrimsonpirate.com"] [uri "/.env"] [unique_id "aSUV4v8fkAox0leL3Dp5WgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 47.77.182.54

🇺🇸 2607:f8b0:400e:c07::128

🇺🇸 2604:a880:400:d1:0:4:9e8d:d001

🇸🇬 193.37.32.3

🇸🇬 152.42.190.92

🇺🇸 134.209.120.216

🇰🇷 111.171.125.94

🇬🇪 91.239.206.123

🇨🇳 60.223.254.202

🇨🇳 58.42.8.7

🇳🇱 45.148.10.240

🇳🇱 5.187.35.142

🇳🇱 185.132.53.27

🇸🇬 165.245.185.54

🇧🇬 93.94.141.115

🇺🇸 20.102.98.53

🇺🇸 216.25.89.140

🇨🇦 205.250.25.62

🇳🇱 193.176.31.209

🇬🇧 193.163.125.86