JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.180.135

209.50.180.135 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.180.135

Whois 209.50.180.135

IP Abuse Reports for 209.50.180.135:

This IP address has been reported a total of 17 times from 10 distinct sources. 209.50.180.135 was first reported on October 20th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Burayot	2026-02-15 02:46:52 (4 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 209.50.180.135 (GB/United Kingdom/- ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 209.50.180.135 (GB/United Kingdom/-): 1 in the last 3600 secs show less	Web App Attack
Anonymous	2026-02-15 01:06:42 (4 months ago)	Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=23	Hacking
🇨🇭 Origon	2026-02-14 21:47:16 (4 months ago)	http-sensitive-files - IP: 209.50.180.135 - time="2026-02-14T22:47:16+01:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 209.50.180.135 - time="2026-02-14T22:47:16+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 209.50.180.135 (GB/200373) : 4h ban on Ip 209.50.180.135" module=db show less	Web App Attack
🇦🇺 screwlooseit.com.au	2026-02-14 21:21:15 (4 months ago)	Blocked by CSF 13 firewall - Rule: config-dotfile US/United States/-	Web App Attack
🇫🇷 dynamix	2026-02-14 21:19:07 (4 months ago)	Multiple WAF Violations	Web App Attack
🇱🇻 garmtech.com	2026-01-14 11:09:37 (5 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:58:47 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-29 05:20:55 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:20:50.057298 2025] [security2:error] [pid 3654:tid 3654] [client 209.50.180.135:48321] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thereisaplaceonearth.com"] [uri "/.svn/wc.db"] [unique_id "aVIPsuimMkRk4K7wpCWMZgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:26:27 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:26:20.739553 2025] [security2:error] [pid 18001:tid 18001] [client 209.50.180.135:35593] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cspminc.com"] [uri "/.git/HEAD"] [unique_id "aVIC7OjFR_ywVBoDK0CP6wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 madeit	2025-11-30 04:38:01 (6 months ago)		Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:49:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:49:25.651608 2025] [security2:error] [pid 1280:tid 1280] [client 209.50.180.135:47321] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.amybeam.info"] [uri "/.git/HEAD"] [unique_id "aSai9S9irLghRJZh_vVsOQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:58:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:58:40.650431 2025] [security2:error] [pid 17963:tid 17963] [client 209.50.180.135:60477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.persnicketyinc.com"] [uri "/.git/HEAD"] [unique_id "aSaXELp63fUolhTTLYGKMgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:52:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:52:09.287761 2025] [security2:error] [pid 30011:tid 30011] [client 209.50.180.135:12595] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.portelizabeth.jbaycabs.com"] [uri "/.env"] [unique_id "aSZdSS2TxlbeZYr91hmvkwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:59:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:59:08.817909 2025] [security2:error] [pid 4363:tid 4363] [client 209.50.180.135:57879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.3wf.com"] [uri "/.svn/wc.db"] [unique_id "aSZQ3AUQhPqaSvEmqyTnWAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:33:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.180.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:33:43.318621 2025] [security2:error] [pid 7839:tid 7839] [client 209.50.180.135:31045] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.genesis-one.com"] [uri "/.git/HEAD"] [unique_id "aSQmd6K_9FEgyh586q_9AAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 223.197.178.95

🇸🇬 2404:6800:4003:c26::124

🇲🇽 201.149.53.243

🇺🇸 194.187.179.194

🇨🇳 182.138.158.113

🇧🇷 168.0.224.117

🇨🇭 104.244.79.113

🇸🇬 103.189.234.96

🇫🇮 94.183.234.128

🇺🇸 45.33.41.118

🇮🇳 223.181.33.170

🇺🇸 172.93.106.153

🇺🇸 159.223.185.134

🇨🇳 119.48.135.132

🇱🇺 94.252.93.139

🇷🇴 2.57.121.112

🇮🇳 2404:6800:4013:802::127

🇰🇭 203.189.159.206

🇰🇷 115.68.208.117

🇭🇰 103.210.22.17