JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.160.142

209.50.160.142 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.160.142

Whois 209.50.160.142

IP Abuse Reports for 209.50.160.142:

This IP address has been reported a total of 27 times from 12 distinct sources. 209.50.160.142 was first reported on September 27th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-06-14 19:36:52 (1 week ago)	Form spam	Web Spam
🇨🇦 electronico	2026-06-02 02:25:22 (2 weeks ago)	209.50.160.142 - - [02/Jun/2026:13:25:22 +1100] "POST /xmlrpc.php HTTP/1.1" 301 483 "-" "Mozilla/5.0 ... show more 209.50.160.142 - - [02/Jun/2026:13:25:22 +1100] "POST /xmlrpc.php HTTP/1.1" 301 483 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" ... show less	Brute-Force Web App Attack
🇦🇺 oncord	2026-05-17 01:28:49 (1 month ago)	Form spam	Web Spam
🇨🇳 ThreatBook.io	2026-05-04 22:57:05 (1 month ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/209.50.160.142 2026-05 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/209.50.160.142 2026-05-04 06:21:47 / show less	Web App Attack
🇨🇱 ifiguero	2026-02-10 06:29:06 (4 months ago)	Web Attack (\x00\x00\x00\x00\x00). 7d ban	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:04:15 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:04:09.866005 2026] [security2:error] [pid 32308:tid 32308] [client 209.50.160.142:58577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madronabluff.com"] [uri "/.env"] [unique_id "aYqgKVstDiAR5GtJM1G02wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:05:51 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:05:40.419626 2026] [security2:error] [pid 2836:tid 2836] [client 209.50.160.142:44599] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kentsmithfamily.com"] [uri "/app/.git/config"] [unique_id "aYp2VAshvFwtMBv4SAwTqAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:19:38 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:19:30.874739 2026] [security2:error] [pid 2501550:tid 2501550] [client 209.50.160.142:23863] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotpay.co"] [uri "/backup/.git/config"] [unique_id "aYpdcie50DF-jge7PrQlgwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:03:45 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:03:39.012839 2026] [security2:error] [pid 5867:tid 5867] [client 209.50.160.142:16561] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathleenhazlett.com"] [uri "/.env.local"] [unique_id "aYpZu2DFT0W-XB5_JMOmqAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:22:21 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:22:16.583255 2026] [security2:error] [pid 1063876:tid 1063876] [client 209.50.160.142:17683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garbothemusical.net"] [uri "/config/.env"] [unique_id "aYpQCAYEYocpA2vn-qpqvgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:58:35 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:58:31.608969 2026] [security2:error] [pid 11774:tid 11774] [client 209.50.160.142:56569] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gandmaquatics.com"] [uri "/admin/.git/config"] [unique_id "aYpKd5cuU0L6p2q8g0sbfwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:17:06 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:16:59.544073 2026] [security2:error] [pid 19339:tid 19471] [client 209.50.160.142:18651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "g3-contracting.com"] [uri "/api/.env"] [unique_id "aYoyq4gSOxwRKbWl7oIO9gAAAJM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 12:01:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 07:01:20.611639 2026] [security2:error] [pid 7170:tid 7170] [client 209.50.160.142:43019] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "galysh.us"] [uri "/backend/.env"] [unique_id "aYnMkB6dvcdXNtvKY0B40gAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 01:22:18 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 08 20:22:12.854732 2026] [security2:error] [pid 199625:tid 199625] [client 209.50.160.142:60409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftiptondds.com"] [uri "/config/.env"] [unique_id "aYk2xDUTJ5E0AAB_7Mj7JgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 09:45:13 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 209.50.160.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 04:45:10.099125 2025] [security2:error] [pid 12872:tid 12872] [client 209.50.160.142:49859] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|andrsn.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "andrsn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aSlvJkmd1zIzCdHrtUCqBQAAAC8"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 211.139.164.149

🇨🇳 182.44.38.181

🇳🇱 176.65.149.212

🇺🇸 99.144.123.156

🇺🇸 98.255.189.57

🇺🇸 66.132.195.99

🇨🇳 27.215.211.56

🇨🇳 14.18.236.71

🇨🇳 218.25.89.208

🇬🇧 217.146.80.105

🇭🇰 199.45.154.181

🇮🇷 152.89.46.35

🇨🇳 122.97.212.188

🇺🇸 104.23.160.187

🇺🇸 45.130.83.92

🇻🇳 14.240.180.90

🇩🇪 2a03:fc82:2af:0:5947:68a3:6691:c1d6

🇬🇧 193.176.29.7

🇨🇷 179.48.248.245

🇻🇳 125.212.159.202