JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.163.230

209.50.163.230 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 33%: ?

33%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.163.230

Whois 209.50.163.230

IP Abuse Reports for 209.50.163.230:

This IP address has been reported a total of 24 times from 20 distinct sources. 209.50.163.230 was first reported on October 3rd 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 Progetto1	2026-06-21 15:45:11 (4 days ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇫🇷 ELYAZ	2026-06-21 10:43:20 (4 days ago)	(y4) Failed scan -byebye- from 209.50.163.230 (US/United States/-): (CF_ENABLE)	Hacking
🇩🇪 F242	2026-06-21 07:45:33 (4 days ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇫🇷 Sklurk	2026-06-20 05:02:23 (5 days ago)	Web App Attack	Web App Attack
🇫🇷 ELYAZ	2026-06-16 05:25:46 (1 week ago)	(y4) Failed scan -byebye- from 209.50.163.230 (US/United States/-): (CF_ENABLE)	Hacking
🇬🇷 setupgr	2026-06-15 16:48:24 (1 week ago)	(mod_security) mod_security (id:900001) triggered by 209.50.163.230: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:900001) triggered by 209.50.163.230: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 15 19:48:23.569978 2026] [security2:error] [pid 1917071:tid 1917258] [client 209.50.163.230:38053] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: setworldup.com"] [severity "CRITICAL"] [tag "security"] [hostname "setworldup.com"] [uri "/wp-login.php"] [unique_id "ajAs13brIXpbmq-1FoWCAgAAAQg"], referer: https://setworldup.com/wp-login.php show less	Port Scan
Anonymous	2026-05-07 23:40:28 (1 month ago)	Banned by SPAMHAUS DROP list	DDoS Attack Hacking Bad Web Bot Web App Attack
🇺🇸 cyfordtechnologies.com	2026-03-19 01:46:46 (3 months ago)	High-abuse ASN prefix: 209.50. : Reported by Cyford API	Web App Attack
Anonymous	2026-03-12 01:48:52 (3 months ago)	Banned by SPAMHAUS DROP list	DDoS Attack Hacking Bad Web Bot Web App Attack
Anonymous	2026-02-27 09:37:21 (3 months ago)	Banned by SPAMHAUS DROP list	DDoS Attack Hacking Bad Web Bot Web App Attack
🇵🇱 cheatmaster.store	2026-02-25 23:09:56 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: United States Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
🇳🇱 i-turnradio.nl	2026-02-03 20:49:00 (4 months ago)	2026-02-03 21:49:00 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 09:27:45 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇩🇪 HERA - Operations	2026-01-02 02:08:56 (5 months ago)	club-herrmann - searching for vulnerable scripts: .env 2026/01/02 03:08:55	Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:26:24 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.163.230 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.163.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:26:20.580099 2025] [security2:error] [pid 11089:tid 11089] [client 209.50.163.230:56483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "midway-island.com"] [uri "/.env"] [unique_id "aVIC7BMfFKNVoP-sK8RV-wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.109.252.244

🇳🇱 195.178.110.228

🇩🇿 193.194.91.218

🇮🇩 182.10.99.188

🇫🇷 89.117.61.157

🇹🇷 88.227.76.87

🇭🇰 47.243.239.25

🇩🇪 46.101.184.170

🇸🇪 185.103.101.74

🇷🇺 176.123.217.140

🇺🇸 172.234.218.245

🇯🇵 118.193.61.170

🇨🇳 112.51.225.231

🇫🇷 95.111.234.72

🇩🇪 88.99.98.250

🇮🇪 4.210.68.162

🇹🇼 198.235.24.88

🇲🇽 187.191.48.23

🇨🇳 120.242.142.180

🇳🇱 88.210.63.79