JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.174.135

209.50.174.135 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.174.135

Whois 209.50.174.135

IP Abuse Reports for 209.50.174.135:

This IP address has been reported a total of 26 times from 13 distinct sources. 209.50.174.135 was first reported on September 27th 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-22 19:18:36 (5 hours ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 mnsf	2026-02-16 03:05:25 (4 months ago)	Too many Status 40X (11) Scanning/Probing (12)	Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2026-02-15 20:11:35 (4 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇷🇴 INTEQ	2026-02-15 05:52:44 (4 months ago)	Web attack from 209.50.174.135	Web App Attack
🇩🇪 ghostwarriors	2026-02-15 02:20:20 (4 months ago)	Attempts against non-existent wp-login	Brute-Force Web App Attack
🇺🇸 mnsf	2026-02-15 02:05:54 (4 months ago)	Too many Status 40X (12) Scanning/Probing (13)	Brute-Force Web App Attack
🇺🇸 myagent.site	2026-02-15 01:31:30 (4 months ago)	Blocking for trying to access an exploit file: /wp/.git/config	Hacking
Anonymous	2026-01-27 10:56:30 (4 months ago)	wordpress-trap	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:56 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-02 12:14:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.174.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.174.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 07:14:50.186763 2025] [security2:error] [pid 3961:tid 3961] [client 209.50.174.135:33939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oxyveg.com"] [uri "/.svn/wc.db"] [unique_id "aS7YOkeDleuSL6sousNB2gAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 09:40:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.174.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.174.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 04:40:49.514989 2025] [security2:error] [pid 18931:tid 18931] [client 209.50.174.135:32329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "therhclan.com"] [uri "/.env"] [unique_id "aS60IWjFNhw4BgkAP61bfAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:36:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.174.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.174.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:36:44.994334 2025] [security2:error] [pid 17687:tid 17687] [client 209.50.174.135:33367] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "advantageinvestigation.com"] [uri "/.env"] [unique_id "aS6XDAg4Pn5vXqR8zcfqtgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:55:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.174.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.174.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:55:33.588745 2025] [security2:error] [pid 16527:tid 16527] [client 209.50.174.135:45131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "atcreport.com"] [uri "/.git/HEAD"] [unique_id "aS5xRcMayDIwjai8CtyajwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:51:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.174.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.174.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:51:11.205820 2025] [security2:error] [pid 4200:tid 4200] [client 209.50.174.135:48467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.emelecsrl.com"] [uri "/.git/HEAD"] [unique_id "aSVDz_b_Q-yehd83kp-VUAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 217.60.195.138

🇳🇱 178.16.54.22

🇫🇷 157.173.109.225

🇨🇳 112.24.99.134

🇿🇦 102.64.43.223

🇫🇷 85.217.140.26

🇧🇬 79.124.62.134

🇩🇪 69.5.169.149

🇬🇧 35.203.210.123

🇻🇳 14.224.225.170

🇺🇸 3.142.170.60

🇷🇴 2.57.122.238

🇰🇷 222.104.76.94

🇮🇳 182.72.102.106

🇧🇷 177.2.7.116

🇧🇷 138.118.237.45

🇻🇳 103.161.170.12

🇨🇳 60.161.200.201

🇳🇱 45.148.10.152

🇳🇱 45.148.10.151