JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.166.207

209.50.166.207 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.166.207

Whois 209.50.166.207

IP Abuse Reports for 209.50.166.207:

This IP address has been reported a total of 31 times from 21 distinct sources. 209.50.166.207 was first reported on September 27th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-17 05:23:16 (2 weeks ago)	Brute force	Brute-Force
🇺🇸 ShadowWhisperer	2026-05-07 12:07:31 (4 weeks ago)	DOCKER port scan / probe. GET /secrets	Port Scan
🇺🇸 myagent.site	2026-03-27 00:03:24 (2 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇩🇪 kommunos	2026-02-10 06:22:08 (3 months ago)	/config/.env	Web App Attack
Anonymous	2026-02-10 04:31:25 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-09 23:01:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.166.207 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.166.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:01:46.727469 2026] [security2:error] [pid 11233:tid 11233] [client 209.50.166.207:55409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kdgsf.xyz"] [uri "/.env"] [unique_id "aYpnWlpJhDVxrWeZWZfwCAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-09 20:19:34 (3 months ago)	Blocking for trying to access an exploit file: /.env.local	Hacking
🇬🇧 relianoid.com	2026-02-02 22:35:55 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2025-11-29 00:22:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.166.207 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.166.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 19:22:33.350437 2025] [security2:error] [pid 17847:tid 17847] [client 209.50.166.207:17033] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abneyfoundation.org"] [uri "/.env.bak"] [unique_id "aSo8yZBGSO2g0eyWDb3WzQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 COMAITE	2025-11-28 15:55:37 (6 months ago)	Suspicious URL access.	Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 14:52:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.166.207 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.166.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 09:51:55.780586 2025] [security2:error] [pid 7113:tid 7113] [client 209.50.166.207:21545] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ambarsolar.com"] [uri "/.env.bak"] [unique_id "aSm3C3hF8eRKy2-1xDEdPgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 13:50:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.166.207 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.166.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 08:50:00.464009 2025] [security2:error] [pid 4317:tid 4317] [client 209.50.166.207:48427] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "amazinghydraulics.com"] [uri "/wp-config.php.old"] [unique_id "aSmoiEl4cS8HPIj6LiLKZAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-11-14 23:23:43 (6 months ago)	(From [email protected]) THE FASTEST WAY TO CREATE, PUBLISH, & PROFIT FROM EBOOKS… NO WRIT ... show more (From [email protected]) THE FASTEST WAY TO CREATE, PUBLISH, & PROFIT FROM EBOOKS… NO WRITING REQUIRED PROFIT-READY EBOOKS with covers, TOC, chapters, sections, links, images, & content! https://viewbet-24.site/eBookWriterAI to UNSUBSCRIBE: https://viewbet-24.site/unsubscribe?domain=ferrignochiropractic.com Address: 209 West Street Comstock Park, MI 49321 show less	Phishing Web Spam
Anonymous	2025-11-13 21:40:43 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.86

🇨🇳 180.184.84.77

🇹🇬 156.38.73.89

🇷🇴 92.118.39.223

🇷🇺 88.205.172.170

🇺🇸 74.179.68.15

🇺🇸 73.30.91.185

🇺🇸 64.72.74.162

🇲🇦 45.216.141.103

🇧🇷 45.205.1.247

🇳🇱 45.148.145.60

🇳🇱 45.148.10.152

🇮🇳 20.204.24.244

🇨🇳 183.61.109.222

🇺🇸 172.236.111.128

🇩🇪 162.19.243.145

🇨🇳 121.29.149.160

🇨🇳 117.69.235.5

🇳🇱 88.151.32.9

🇳🇱 81.19.216.101