JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.160.214

209.50.160.214 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 23%: ?

23%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.160.214

Whois 209.50.160.214

IP Abuse Reports for 209.50.160.214:

This IP address has been reported a total of 40 times from 18 distinct sources. 209.50.160.214 was first reported on September 26th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-05-30 12:16:21 (3 weeks ago)	(y4) Failed scan -byebye- from 209.50.160.214 (US/United States/-): (CF_ENABLE)	Hacking
🇺🇸 lostswordfish.com	2026-05-27 13:34:05 (4 weeks ago)	Wordfence waf block on registrymatters	Web App Attack
🇲🇽 octageeks.com	2026-05-26 04:18:08 (1 month ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇲🇹 Malta	2026-05-26 02:32:17 (1 month ago)	209.50.160.214 - - [26/May/2026:04:32:17 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 209.50.160.214 - - [26/May/2026:04:32:17 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15" show less	Hacking Web App Attack
🇫🇷 pm33	2026-05-25 23:06:31 (1 month ago)	Wordpress login attempts	Brute-Force
🇺🇸 LSPCCU	2026-05-11 07:20:34 (1 month ago)	TSEC Honeypot Network report. Threat score: 70/100. Categories: Hacking. Honeypot: ssh-telnet, cowri ... show more TSEC Honeypot Network report. Threat score: 70/100. Categories: Hacking. Honeypot: ssh-telnet, cowrie. Context: IP observed in Suricata network metadata. show less	Hacking
🇩🇪 iNetWorker	2026-04-13 17:46:21 (2 months ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 octageeks.com	2026-04-04 04:45:27 (2 months ago)	Wordpress malicious attack:[octaxmlrpc]	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (3 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-03-19 21:17:52 (3 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-11 02:27:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 21:27:31.005209 2025] [security2:error] [pid 26561:tid 26561] [client 209.50.160.214:16619] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goatedlottosecrets.com"] [uri "/.env"] [unique_id "aTosE6QOax8AwiOe5648WwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-09 07:23:34 (6 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-08 04:06:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 23:06:03.270852 2025] [security2:error] [pid 2352:tid 2352] [client 209.50.160.214:18467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tdcparole.com"] [uri "/.git/HEAD"] [unique_id "aTZOq7y4txrAM6VFAmZ8pAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 20:09:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 15:08:56.250694 2025] [security2:error] [pid 6012:tid 6012] [client 209.50.160.214:14471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "roselockecasting.com"] [uri "/.env"] [unique_id "aTXe2EbRzxdKNvsfXXr09AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 14:08:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.160.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.160.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 09:08:51.415138 2025] [security2:error] [pid 2696:tid 2696] [client 209.50.160.214:11643] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "midcityrotary.org"] [uri "/.git/HEAD"] [unique_id "aTWKc71vW5Zi7Nd1djunYwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 185.121.15.184

🇩🇿 172.68.255.138

🇬🇧 81.19.219.214

🇷🇺 212.8.228.114

🇮🇳 172.70.192.140

🇨🇳 171.104.81.222

🇮🇳 168.144.95.137

🇺🇸 163.5.171.45

🇮🇩 143.20.49.38

🇨🇳 123.245.84.91

🇨🇳 123.160.235.122

🇨🇳 111.113.88.87

🇨🇦 96.55.168.79

🇳🇱 91.92.40.44

🇷🇺 46.229.184.62

🇺🇸 40.119.24.130

🇨🇳 39.78.253.175

🇺🇸 20.127.220.33

🇬🇧 2a06:4880:c000::ee

🇺🇸 216.244.95.154