JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2.50.174.54

2.50.174.54 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 47%: ?

47%

ISP	Emirates Telecommunications Corporation
Usage Type	Fixed Line ISP
ASN	AS5384
Hostname(s)	bba-2-50-174-54.alshamil.net.ae
Domain Name	etisalat.ae
Country	🇦🇪 United Arab Emirates
City	Abu Dhabi, Abu Dhabi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2.50.174.54

Whois 2.50.174.54

IP Abuse Reports for 2.50.174.54:

This IP address has been reported a total of 12 times from 8 distinct sources. 2.50.174.54 was first reported on June 2nd 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 screwlooseit.com.au	2026-06-26 05:57:30 (1 day ago)	Blocked by CSF 13 firewall - Rule: XMLRPC AE/United Arab Emirates/bba-2-50-174-54.alshamil.net.ae	Web App Attack
🇩🇪 abdubhai	2026-06-24 07:46:59 (3 days ago)	2.50.174.54 - - [24/Jun/2026:12: ...	Brute-Force
🇺🇸 factor1	2026-06-24 05:13:05 (3 days ago)	Fail2ban at saturn Reports Abuse.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 09:11:34 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 2.50.174.54 (bba-2-50-174-54.alshamil.net.ae): ... show more (mod_security) mod_security (id:240335) triggered by 2.50.174.54 (bba-2-50-174-54.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 05:11:25.988166 2026] [security2:error] [pid 15626:tid 15626] [client 2.50.174.54:58314] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 2.50.174.54 (+1 hits since last alert)\|desertautoworks.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "desertautoworks.com"] [uri "/xmlrpc.php"] [unique_id "ajj8PeoRESHNVmAUuBfXQQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-19 05:07:00 (1 week ago)	(xmlrpc) Failed xmlrpc access from 2.50.174.54 (AE/United Arab Emirates/bba-2-50-174-54.alshamil.net ... show more (xmlrpc) Failed xmlrpc access from 2.50.174.54 (AE/United Arab Emirates/bba-2-50-174-54.alshamil.net.ae): 5 in the last 3600 secs (0-122) show less	Hacking
Anonymous	2026-06-17 08:33:26 (1 week ago)	[redacted] 2.50.174.54 - - [17/Jun/2026:10:32:43 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jet ... show more [redacted] 2.50.174.54 - - [17/Jun/2026:10:32:43 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.4)" [redacted] 2.50.174.54 - - [17/Jun/2026:10:32:53 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.4; http://site23442440.com" [redacted] 2.50.174.54 - - [17/Jun/2026:10:33:04 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 2.50.174.54 - - [17/Jun/2026:10:33:14 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.0; WordPress/6.4; http://site52437194.com" [redacted] 2.50.174.54 - - [17/Jun/2026:10:33:25 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" ... show less	Hacking Web App Attack
Anonymous	2026-06-16 03:34:40 (1 week ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-12 05:25:36 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 2.50.174.54 (bba-2-50-174-54.alshamil.net.ae): ... show more (mod_security) mod_security (id:240335) triggered by 2.50.174.54 (bba-2-50-174-54.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 01:25:32.637379 2026] [security2:error] [pid 18926:tid 18983] [client 2.50.174.54:58371] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 2.50.174.54 (+1 hits since last alert)\|gabegabel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gabegabel.com"] [uri "/xmlrpc.php"] [unique_id "aiuYTCZvKBzZYgUaZG2GngAAAY4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 04:32:27 (3 weeks ago)	2.50.174.54 - - [05/Jun/2026:06:32:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; ... show more 2.50.174.54 - - [05/Jun/2026:06:32:05 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com" 2.50.174.54 - - [05/Jun/2026:06:32:07 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" 2.50.174.54 - - [05/Jun/2026:06:32:15 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "WordPress.com; https://wordpress.com" 2.50.174.54 - - [05/Jun/2026:06:32:16 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "WordPress.com; https://wordpress.com" 2.50.174.54 - - [05/Jun/2026:06:32:25 +0200] "POST /xmlrpc.php HTTP/1.1" 200 593 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.3)" ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 15:38:33 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 2.50.174.54 (bba-2-50-174-54.alshamil.net.ae): ... show more (mod_security) mod_security (id:240335) triggered by 2.50.174.54 (bba-2-50-174-54.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 11:38:27.816762 2026] [security2:error] [pid 13691:tid 13691] [client 2.50.174.54:61288] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 2.50.174.54 (+1 hits since last alert)\|mariettacaseyclub.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "mariettacaseyclub.org"] [uri "/xmlrpc.php"] [unique_id "aiGb82ivPK8uxVazqr0DcAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 07:00:18 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 2.50.174.54 (bba-2-50-174-54.alshamil.net.ae): ... show more (mod_security) mod_security (id:240335) triggered by 2.50.174.54 (bba-2-50-174-54.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 03:00:10.519581 2026] [security2:error] [pid 32317:tid 32322] [client 2.50.174.54:50895] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 2.50.174.54 (+1 hits since last alert)\|fastesttrademark.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "fastesttrademark.com"] [uri "/xmlrpc.php"] [unique_id "ah_Q-op1f53OfZU5YGb6DAAAAIM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-02 09:08:04 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 2.50.174.54 (bba-2-50-174-54.alshamil.net.ae): ... show more (mod_security) mod_security (id:240335) triggered by 2.50.174.54 (bba-2-50-174-54.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 05:07:55.312087 2026] [security2:error] [pid 5339:tid 5339] [client 2.50.174.54:56687] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 2.50.174.54 (+1 hits since last alert)\|bonesband.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "bonesband.com"] [uri "/xmlrpc.php"] [unique_id "ah6da2I_5Ma9QC4FH6zdbgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 2001:1c00:3:400:556d:8ee5:2977:d196

🇫🇮 147.185.133.169

🇺🇸 65.49.20.92

🇳🇴 51.120.79.15

🇺🇸 12.74.98.103

🇧🇬 212.104.103.153

🇨🇳 182.139.39.150

🇺🇸 172.239.71.244

🇺🇸 162.216.149.26

🇯🇵 106.153.181.80

🇮🇩 103.97.101.25

🇩🇪 69.5.169.224

🇳🇱 46.151.178.13

🇺🇸 43.173.69.147

🇻🇳 27.79.0.180

🇺🇸 2607:ff10:c8:594::c

🇺🇸 185.223.152.130

🇨🇳 117.80.234.157

🇿🇦 102.64.32.207

🇮🇹 93.42.227.251