JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.160.148

209.50.160.148 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.160.148

Whois 209.50.160.148

IP Abuse Reports for 209.50.160.148:

This IP address has been reported a total of 26 times from 11 distinct sources. 209.50.160.148 was first reported on September 28th 2025, and the most recent report was 5 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-15 22:13:17 (5 minutes ago)	(y4) Failed scan -byebye- from 209.50.160.148 (US/United States/-): (CF_ENABLE)	Hacking
🇬🇷 setupgr	2026-06-15 17:08:06 (5 hours ago)	(mod_security) mod_security (id:900001) triggered by 209.50.160.148: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:900001) triggered by 209.50.160.148: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 15 20:08:05.662649 2026] [security2:error] [pid 1917013:tid 1917187] [client 209.50.160.148:50805] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: setworldup.com"] [severity "CRITICAL"] [tag "security"] [hostname "setworldup.com"] [uri "/wp-login.php"] [unique_id "ajAxdUEA9pRZS3vlJ2utcQAAAJI"], referer: https://setworldup.com/wp-login.php show less	Port Scan
🇬🇧 relianoid.com	2026-02-04 15:41:22 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇬🇧 relianoid.com	2026-01-22 15:20:32 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇬🇧 relianoid.com	2026-01-02 02:37:26 (5 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇲🇹 Malta	2025-12-31 13:39:16 (5 months ago)	209.50.160.148 - - [31/Dec/2025:14:39:15 +0100] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 209.50.160.148 - - [31/Dec/2025:14:39:15 +0100] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.207 Safari/537.36" show less	Hacking Web App Attack
🇬🇧 relianoid.com	2025-12-27 03:12:58 (5 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
Anonymous	2025-12-08 11:27:14 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-26 00:39:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:39:47.351971 2025] [security2:error] [pid 29998:tid 29998] [client 209.50.160.148:50563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.maycockfamily.com"] [uri "/.git/HEAD"] [unique_id "aSZMU84yFKXpWNBfz64e1gAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:17:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:17:01.177010 2025] [security2:error] [pid 19037:tid 19037] [client 209.50.160.148:38361] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fishleadership.org"] [uri "/.env"] [unique_id "aSZG_cDxhGXj354DvN7I3gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:40:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:40:29.052576 2025] [security2:error] [pid 27439:tid 27544] [client 209.50.160.148:44495] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "behaviorhealth.org"] [uri "/.git/HEAD"] [unique_id "aSQZ_QdRJ-GlrOkYv17vFAAAAM0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:31:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:31:14.937876 2025] [security2:error] [pid 17546:tid 17546] [client 209.50.160.148:31907] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "asterioland.com"] [uri "/.svn/wc.db"] [unique_id "aSQJwtHeCTADkB8LuUD-jAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:23:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:23:30.539594 2025] [security2:error] [pid 22771:tid 22771] [client 209.50.160.148:57377] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adn-media.net"] [uri "/.svn/wc.db"] [unique_id "aSPr0kKPeG3rcMslIZZCZgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:36:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:36:26.154406 2025] [security2:error] [pid 2893:tid 2907] [client 209.50.160.148:44071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.absurdotron.com"] [uri "/.svn/wc.db"] [unique_id "aSPgyiZWVzJkk5khHgNiWAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 07:25:26 (6 months ago)	WP probing for vulnerabilities	Hacking Exploited Host

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 201.63.52.54

🇰🇷 158.180.79.132

🇨🇭 147.161.246.252

🇸🇬 128.199.226.142

🇰🇷 121.141.243.81

🇮🇹 93.92.78.2

🇺🇸 64.131.86.2

🇮🇩 36.64.131.68

🇺🇸 173.239.221.19

🇿🇦 172.253.249.210

🇨🇳 101.126.89.144

🇳🇱 45.148.10.152

🇺🇸 45.33.109.17

🇭🇰 43.249.0.242

🇩🇪 34.159.184.16

🇳🇱 213.124.221.2

🇺🇸 136.119.154.67

🇨🇳 117.34.85.168

🇨🇳 116.232.22.43

🇨🇳 106.89.59.104