JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.160.193

209.50.160.193 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.160.193

Whois 209.50.160.193

IP Abuse Reports for 209.50.160.193:

This IP address has been reported a total of 28 times from 15 distinct sources. 209.50.160.193 was first reported on September 30th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-22 21:50:00 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 00-49.209.50.160.193.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 00-49.209.50.160.193.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-18 23:51:00 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-50.209.50.160.193.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-50.209.50.160.193.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
Anonymous	2026-04-27 12:31:55 (1 month ago)	Forum/form spam	Web Spam
🇬🇧 relianoid.com	2026-02-25 08:32:25 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 fbarela	2026-01-24 22:00:19 (4 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
Anonymous	2025-12-31 05:27:58 (5 months ago)	"GET /.env HTTP/1.1"	Hacking Web App Attack
🇩🇪 iNetWorker	2025-12-30 10:26:43 (5 months ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 10:22:14 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 05:21:40.556190 2025] [security2:error] [pid 19084:tid 19084] [client 209.50.160.193:13583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.trafficstopper.com"] [uri "/.svn/wc.db"] [unique_id "aVOntPe-21KJmkphHxr5FgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 instant	2025-12-30 06:50:04 (5 months ago)	30.12.2025 06:50:04 Git repository scan (/.git)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:19:38 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:19:17.804848 2025] [security2:error] [pid 17357:tid 17357] [client 209.50.160.193:26701] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keyspring-niseko.com"] [uri "/.env"] [unique_id "aVIPVe1wFaZGfH5Q_Z42EgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-15 14:06:48 (6 months ago)	botnet	DDoS Attack
🇦🇺 2000cn.com.au	2025-12-02 00:51:26 (6 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:37:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:37:47.143026 2025] [security2:error] [pid 18213:tid 18213] [client 209.50.160.193:20633] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.hotspringstips.com"] [uri "/.svn/wc.db"] [unique_id "aSZZ6-a1NeTCXOwGuCpNQgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:36:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:36:38.749935 2025] [security2:error] [pid 2585:tid 2585] [client 209.50.160.193:52249] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.supportourlibrary.org"] [uri "/.svn/wc.db"] [unique_id "aSVOdvmEyaS7u793knFPIQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:31:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:30:55.305550 2025] [security2:error] [pid 7288:tid 7288] [client 209.50.160.193:28829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.merrittconst.com"] [uri "/.git/HEAD"] [unique_id "aSQXv5peU3_BG6QtCnmZ5AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.218.206.66

🇩🇪 213.209.159.11

🇩🇪 194.187.176.121

🇫🇷 193.186.4.105

🇨🇦 181.214.153.100

🇫🇷 172.71.232.82

🇧🇷 45.70.53.159

🇮🇳 103.67.92.194

🇺🇸 100.29.192.101

🇫🇷 85.217.140.40

🇬🇷 83.235.16.111

🇳🇱 51.158.205.203

🇩🇪 51.89.26.16

🇬🇧 35.203.210.192

🇫🇷 5.135.59.0

🇺🇸 207.241.234.200

🇵🇪 190.119.132.43

🇻🇳 116.102.97.134

🇹🇭 110.171.103.62

🇸🇬 47.84.131.50