JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.167.50

209.50.167.50 was found in our database!

This IP was reported 45 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.167.50

Whois 209.50.167.50

IP Abuse Reports for 209.50.167.50:

This IP address has been reported a total of 45 times from 23 distinct sources. 209.50.167.50 was first reported on September 27th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-05-12 23:59:23 (3 weeks ago)	ThreatBook Intelligence: Spam,Gateway more details on https://threatbook.io/ip/209.50.167.50 2026-05 ... show more ThreatBook Intelligence: Spam,Gateway more details on https://threatbook.io/ip/209.50.167.50 2026-05-12 21:47:49 / 2026-05-12 22:10:39 / 2026-05-12 21:50:08 / 2026-05-12 21:24:19 / show less	Web App Attack
🇬🇧 PeravixGroup	2026-05-07 06:21:15 (1 month ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 cyfordtechnologies.com	2026-05-03 18:27:02 (1 month ago)	High-abuse ASN prefix: 209.50. : Reported by Cyford API	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-03-04 01:01:50 (3 months ago)	Forum/form spam	Web Spam
Anonymous	2026-02-15 05:55:09 (3 months ago)	Forum/form spam	Web Spam
🇳🇱 i-turnradio.nl	2026-01-16 20:11:15 (4 months ago)	2026-01-16 21:11:15 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:12:01 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:11:56.352941 2025] [security2:error] [pid 24079:tid 24079] [client 209.50.167.50:57939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "canonflorida.com"] [uri "/.env"] [unique_id "aVINnNYoZd1wYN4ePe7fQAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:12:30 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:12:26.454661 2025] [security2:error] [pid 23536:tid 23536] [client 209.50.167.50:60957] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mezensen.com"] [uri "/.git/HEAD"] [unique_id "aVH_qiT1ZL9mWnaOQbIPjwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 01:20:18 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 20:20:10.575210 2025] [security2:error] [pid 7423:tid 7423] [client 209.50.167.50:10891] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "williamgilcher.com"] [uri "/.env"] [unique_id "aVHXSsqpVzzsJcMUkp82dgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 16:16:23 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 11:16:17.381259 2025] [security2:error] [pid 3923:tid 3923] [client 209.50.167.50:10263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "butterflygolem.com"] [uri "/.svn/wc.db"] [unique_id "aVFX0XXtSQOEykI-7DQsLAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 14:13:53 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 09:13:50.128919 2025] [security2:error] [pid 21209:tid 21209] [client 209.50.167.50:29637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "i-med.com"] [uri "/.git/HEAD"] [unique_id "aVE7HkT69sfcrYEBYoJcRAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 13:24:54 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 08:24:48.621420 2025] [security2:error] [pid 30121:tid 30121] [client 209.50.167.50:9407] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wpwlv.com"] [uri "/.env"] [unique_id "aVEvoOeyTucIfHfEpVHoUAAAAC0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 11:05:06 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.167.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 06:05:00.509322 2025] [security2:error] [pid 24705:tid 24705] [client 209.50.167.50:52299] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "uswebforce.com"] [uri "/.svn/wc.db"] [unique_id "aVEO3EO7giQsZstHt24t8wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 loadsoporte	2025-12-28 06:34:42 (5 months ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force

Showing 1 to 15 of 45 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 115.190.171.196

🇭🇰 43.128.60.40

🇨🇳 223.109.255.145

🇮🇩 210.79.142.221

🇬🇧 185.216.145.182

🇻🇳 171.244.41.203

🇸🇪 171.25.158.68

🇷🇴 151.242.191.232

🇮🇩 103.97.140.96

🇫🇷 62.72.37.112

🇭🇰 47.242.144.15

🇧🇷 200.108.174.4

🇧🇷 129.121.42.236

🇸🇬 128.199.118.234

🇨🇳 123.245.66.94

🇲🇦 102.103.35.174

🇺🇸 62.146.228.149

🇮🇩 43.129.33.244

🇺🇸 2620:171:f3:f0:9999::228

🇳🇱 185.211.155.31