JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.160.102

209.50.160.102 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.160.102

Whois 209.50.160.102

IP Abuse Reports for 209.50.160.102:

This IP address has been reported a total of 27 times from 13 distinct sources. 209.50.160.102 was first reported on September 28th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cyfordtechnologies.com	2026-05-05 04:28:39 (1 month ago)	High-abuse ASN prefix: 209.50. : Reported by Cyford API	Web App Attack
Anonymous	2026-03-23 08:52:41 (2 months ago)	Forum/form spam	Web Spam
🇺🇸 cyfordtechnologies.com	2026-03-21 00:31:58 (2 months ago)	High-abuse ASN prefix: 209.50. : Reported by Cyford API	Web App Attack
Anonymous	2026-01-27 22:56:15 (4 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-29 05:28:17 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:28:09.890852 2025] [security2:error] [pid 12427:tid 12427] [client 209.50.160.102:57705] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antiterrorismbooks.com"] [uri "/.env"] [unique_id "aVIRaacXcYKEJdrcmiV73AAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 Valhalla	2025-12-29 04:23:35 (5 months ago)	/.aws/credentials	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 03:43:57 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:43:52.016726 2025] [security2:error] [pid 7006:tid 7006] [client 209.50.160.102:24941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chipnado.com"] [uri "/.git/HEAD"] [unique_id "aVH4-GfhvrRlVvfUArfhAgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-12-28 03:04:08 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-12-12 14:24:55 (6 months ago)	botnet	DDoS Attack
🇦🇺 MAGIC	2025-12-07 00:01:51 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 ambor	2025-11-26 20:12:42 (6 months ago)	Spam submission via ambor.com contact form. User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/ ... show more Spam submission via ambor.com contact form. User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68. Timestamp: 2025-11-26T20:12:42.769Z show less	Web Spam
🇺🇸 ambor	2025-11-26 19:56:22 (6 months ago)	Spam submission via ambor.com contact form. User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/ ... show more Spam submission via ambor.com contact form. User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68. Timestamp: 2025-11-26T19:56:22.598Z show less	Web Spam
🇺🇸 TPI-Abuse	2025-11-25 06:14:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:14:13.294021 2025] [security2:error] [pid 3787:tid 3787] [client 209.50.160.102:11077] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.dodgersboosterclub.com"] [uri "/.git/HEAD"] [unique_id "aSVJNR-wZUvaQB4Q0NAtHgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:07:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:07:03.852775 2025] [security2:error] [pid 19869:tid 19869] [client 209.50.160.102:43507] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.judgehall.com"] [uri "/.svn/wc.db"] [unique_id "aSUPR7rVfqQWKk4hI07NyQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:35:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:35:00.968515 2025] [security2:error] [pid 13892:tid 13892] [client 209.50.160.102:35741] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.talamancareserve.com"] [uri "/.svn/wc.db"] [unique_id "aST5tHZkIoQueH4X5OGDswAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 192.178.119.18

🇺🇸 173.239.254.144

🇸🇪 172.234.104.44

🇨🇳 163.142.180.187

🇺🇸 162.217.162.142

🇺🇸 162.216.149.64

🇹🇭 150.95.82.21

🇫🇮 147.185.133.29

🇺🇸 135.237.126.135

🇮🇳 117.252.245.41

🇻🇳 116.99.171.61

🇮🇳 103.30.65.122

🇨🇳 59.48.40.6

🇳🇱 45.142.193.118

🇲🇦 41.249.166.183

🇺🇸 192.241.135.167

🇮🇳 178.236.185.252

🇺🇸 162.243.8.173

🇩🇪 157.230.119.211

🇺🇸 152.53.81.25