JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.101.250.169

165.101.250.169 was found in our database!

This IP was reported 299 times. Confidence of Abuse is 100%: ?

100%

ISP	JOY SERVICES
Usage Type	Data Center/Web Hosting/Transit
ASN	AS152565
Domain Name	joy.services
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.101.250.169

Whois 165.101.250.169

IP Abuse Reports for 165.101.250.169:

This IP address has been reported a total of 299 times from 133 distinct sources. 165.101.250.169 was first reported on May 5th 2026, and the most recent report was 25 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 4server	2026-06-25 03:48:50 (25 minutes ago)	[ThuJun2505:48:46.5472632026][security2:error][pid1422450:tid1422460][client165.101.250.169:0]ModSec ... show more [ThuJun2505:48:46.5472632026][security2:error][pid1422450:tid1422460][client165.101.250.169:0]ModSecurity:Accessdeniedwithcode403$phase2$.OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded$TotalScore:5$\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"allegraravizza.it\"][uri\"/.git/config\"][unique_id\"ajylHmpNtMIIxfkiDzA4mwAAAIc\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-06-25 02:41:56 (1 hour ago)	git/env leak probe	Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 02:00:06 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 165.101.250.169 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 165.101.250.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 22:00:00.986796 2026] [security2:error] [pid 19701:tid 19701] [client 165.101.250.169:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barryherbach.com"] [uri "/.git/config"] [unique_id "ajyLoN_7TS0zy2zoIlU4rAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 zam	2026-06-21 16:54:42 (3 days ago)	165.101.250.169 - - [21/Jun/2026:16:54:37 +0000] "GET //www.sql HTTP/1.1" 404 81174 165.101.250.169 ... show more 165.101.250.169 - - [21/Jun/2026:16:54:37 +0000] "GET //www.sql HTTP/1.1" 404 81174 165.101.250.169 - - [21/Jun/2026:16:54:37 +0000] "GET //sql.sql HTTP/1.1" 404 81174 165.101.250.169 - - [21/Jun/2026:16:54:37 +0000] "GET /db_backup.sql HTTP/1.1" 404 81174 165.101.250.169 - - [21/Jun/2026:16:54:37 +0000] "GET /dump.sql HTTP/1.1" 404 81174 165.101.250.169 - - [21/Jun/2026:16:54:37 +0000] "GET /wp-content/mysql.sql HTTP/1.1" 404 81174 {"log":"165.101.250.169 - - [21/Jun/2026:16:54:37 +0000] "GET /backup.sql HTTP/1.1" 404 81 show less	Web App Attack
🇺🇸 slay3r9903	2026-06-21 13:16:55 (3 days ago)	IP address blocked by Cloudflare security rules due to suspicious activity and security violations.	Hacking Bad Web Bot
🇬🇧 consul.to	2026-06-21 12:30:02 (3 days ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-06-21 10:35:55 (3 days ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇩🇪 todix	2026-06-21 07:15:34 (3 days ago)	Web App Attack Exploid from 165.101.250.169	Web App Attack
Anonymous	2026-06-21 04:32:50 (3 days ago)	(mod_security) mod_security triggered on hostname [redacted] 165.101.250.169 (IN/India/-)	SQL Injection
🇺🇸 antlac1	2026-06-21 03:41:58 (4 days ago)	crowdsecurity/http-sensitive-files	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-06-21 00:58:02 (4 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 4server	2026-06-20 17:49:08 (4 days ago)	[SatJun2019:49:04.9603722026][security2:error][pid3870580:tid3870603][client165.101.250.169:0]ModSec ... show more [SatJun2019:49:04.9603722026][security2:error][pid3870580:tid3870603][client165.101.250.169:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"giftech.ch\"][uri\"/giftech.ch_db.sql\"][unique_id\"ajbSkOotac1IFpUeNNtOPgAAABQ\"] show less	Port Scan Brute-Force Web App Attack
Anonymous	2026-06-20 16:46:27 (4 days ago)	Blocked by ModSec and CSF	Port Scan
🇳🇱 e.fierstra	2026-06-20 14:07:15 (4 days ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇺🇸 [email protected]	2026-06-20 13:05:22 (4 days ago)	Fail2Ban jail apache-json-scanners detected activity on 2026-06-20T13:05:22Z	Brute-Force

Showing 1 to 15 of 299 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 217.217.253.96

🇩🇪 193.124.20.232

🇪🇸 176.82.231.113

🇮🇳 152.52.246.94

🇫🇮 147.185.133.65

🇺🇸 66.94.102.203

🇳🇱 51.158.248.123

🇬🇧 35.203.210.28

🇬🇧 193.176.29.7

🇬🇧 192.250.239.58

🇳🇱 185.223.235.9

🇧🇴 181.188.176.242

🇨🇳 120.48.199.28

🇨🇳 113.56.35.44

🇩🇪 69.5.169.233

🇩🇪 69.5.169.10

🇨🇳 59.50.188.114

🇺🇸 20.168.120.8

🇺🇸 162.216.150.65

🇦🇺 159.196.14.229