JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.172.135

209.50.172.135 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 3%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.172.135

Whois 209.50.172.135

IP Abuse Reports for 209.50.172.135:

This IP address has been reported a total of 33 times from 11 distinct sources. 209.50.172.135 was first reported on September 26th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-10 20:05:46 (1 week ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2025-12-10 19:41:46 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-09 21:35:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 16:35:42.326786 2025] [security2:error] [pid 17016:tid 17016] [client 209.50.172.135:19319] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "used-furniture-uae.com"] [uri "/.git/HEAD"] [unique_id "aTiWLriZyO_AY0Ilf9_mjgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-09 12:30:11 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-08 04:56:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 23:56:21.964763 2025] [security2:error] [pid 3411:tid 3411] [client 209.50.172.135:36317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "newdirectionsinmusic.com"] [uri "/.env"] [unique_id "aTZadV5IL0H0ey0QnQbf_AAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 19:52:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 14:51:57.496424 2025] [security2:error] [pid 9452:tid 9452] [client 209.50.172.135:33483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "netstatsolutions.com"] [uri "/.env"] [unique_id "aTXa3Rtkadn9NZZDjKkzjgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 19:09:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 14:09:24.240738 2025] [security2:error] [pid 19558:tid 19558] [client 209.50.172.135:60263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magicflon.com"] [uri "/.env"] [unique_id "aTXQ5C7L31vUHIaqmn8ZHQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 19:07:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 14:06:59.705210 2025] [security2:error] [pid 4856:tid 4856] [client 209.50.172.135:40829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schoolsliaisoncommunity.net"] [uri "/.git/HEAD"] [unique_id "aTR-00oSbGyuwyRBNrL6EgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 16:39:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 11:39:12.559565 2025] [security2:error] [pid 9384:tid 9408] [client 209.50.172.135:33953] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "accreditedprojectmanager.com"] [uri "/.svn/wc.db"] [unique_id "aTMKsFrBP1-gbPzLhBQV8wAAANY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 16:18:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 11:18:06.883942 2025] [security2:error] [pid 22152:tid 22152] [client 209.50.172.135:57767] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cityplanapp.com"] [uri "/.svn/wc.db"] [unique_id "aTMFvotKs8YfhNjDmnp2ugAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-05 13:21:43 (6 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:15:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:14:59.283187 2025] [security2:error] [pid 16471:tid 16471] [client 209.50.172.135:43439] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eatinnola.com"] [uri "/.git/HEAD"] [unique_id "aTK-s5Pl8ABde3A9yLJaLAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 08:53:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 03:53:42.808590 2025] [security2:error] [pid 10901:tid 10901] [client 209.50.172.135:31537] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "truthsabouthealthcare.com"] [uri "/.svn/wc.db"] [unique_id "aTKdltY6j3A6nCGrreqRtQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:16:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.172.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:16:17.863399 2025] [security2:error] [pid 1059:tid 1059] [client 209.50.172.135:47895] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.idahostem.org"] [uri "/.env"] [unique_id "aSVJsVXRx6RXSmiGk6YJLgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 175.107.2.117

🇺🇸 167.99.148.102

🇺🇸 135.237.126.233

🇭🇰 118.26.39.178

🇨🇳 112.123.62.84

🇩🇪 85.214.180.225

🇬🇧 81.19.219.198

🇨🇴 38.190.26.37

🇮🇩 27.124.95.94

🇵🇰 160.25.2.201

🇰🇷 125.133.200.59

🇵🇰 119.156.28.157

🇵🇰 103.151.46.217

🇨🇳 60.167.166.161

🇺🇸 50.116.46.114

🇺🇸 47.231.32.100

🇻🇳 27.79.7.135

🇳🇱 2a06:a880:5:a502::1

🇺🇸 205.210.31.104

🇮🇳 157.36.11.164