JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.184.135

209.50.184.135 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 34%: ?

34%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.184.135

Whois 209.50.184.135

IP Abuse Reports for 209.50.184.135:

This IP address has been reported a total of 15 times from 10 distinct sources. 209.50.184.135 was first reported on October 11th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-23 03:52:44 (4 days ago)	Web App Attack	Web App Attack
🇫🇷 ELYAZ	2026-06-20 19:00:59 (6 days ago)	(y4) Failed scan -byebye- from 209.50.184.135 (ES/Spain/-): (CF_ENABLE)	Hacking
🇲🇹 Malta	2026-06-19 20:07:30 (1 week ago)	209.50.184.135 - - [19/Jun/2026:22:07:30 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 209.50.184.135 - - [19/Jun/2026:22:07:30 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" show less	Hacking Web App Attack
🇲🇽 octageeks.com	2026-06-12 04:06:42 (2 weeks ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇬🇧 poundawebsiteltd	2026-06-11 11:30:22 (2 weeks ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 209.50.184.135 - - [11/Jun/2026:12:30:20 +0100] ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 209.50.184.135 - - [11/Jun/2026:12:30:20 +0100] POST /wp-login.php HTTP/1.1 301 3455 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36 show less	Web App Attack
🇲🇹 Malta	2026-06-02 16:16:52 (3 weeks ago)	209.50.184.135 - - [02/Jun/2026:18:16:52 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 209.50.184.135 - - [02/Jun/2026:18:16:52 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:120.0) Gecko/20100101 Firefox/120.0" show less	Hacking Web App Attack
🇫🇷 pm33	2026-05-31 19:35:09 (3 weeks ago)	Wordpress login attempts	Brute-Force
🇲🇽 octageeks.com	2026-05-27 04:17:12 (1 month ago)	Wordpress malicious attack:[octawpauthor]	Web App Attack
Anonymous	2025-12-07 16:56:14 (6 months ago)	wordpress-trap	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:09:51 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:09:41.845028 2025] [security2:error] [pid 12103:tid 12154] [client 209.50.184.135:50885] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.theaquifer.giere.us"] [uri "/.env"] [unique_id "aSQSxed3pxroRSWDTtp6jAAAANU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:47:09 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:46:58.966390 2025] [security2:error] [pid 11724:tid 11724] [client 209.50.184.135:21469] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.femalestripperslaquinta.com"] [uri "/.svn/wc.db"] [unique_id "aSQNcn-dRk7KQI0uGlxJCAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:45:29 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:45:22.296315 2025] [security2:error] [pid 32532:tid 32532] [client 209.50.184.135:37117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.limobusstlouis.com"] [uri "/.env"] [unique_id "aSPw8qP3WICohrX1LaJSYgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:46:58 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:46:48.431763 2025] [security2:error] [pid 3310096:tid 3310096] [client 209.50.184.135:53719] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.dhappraisalservices.com"] [uri "/.svn/wc.db"] [unique_id "aSPjOFgKeFQvVir8tZsBCgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-02 15:36:55 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/02 07:23:33	Port Scan Brute-Force Exploited Host Web App Attack
🇦🇺 oncord	2025-10-11 13:23:44 (8 months ago)	Form spam	Web Spam

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 168.197.250.14

🇵🇹 89.152.82.108

🇵🇹 37.189.52.50

🇬🇧 193.176.29.24

🇺🇸 162.216.150.171

🇧🇩 103.103.126.1

🇺🇸 74.82.47.7

🇧🇷 201.148.122.154

🇫🇷 172.239.20.85

🇺🇸 172.237.156.201

🇸🇬 159.26.115.64

🇪🇸 81.44.228.135

🇺🇸 64.62.156.28

🇨🇳 60.19.208.49

🇺🇸 50.16.216.166

🇻🇳 45.119.212.99

🇸🇪 20.91.188.128

🇬🇧 3.9.190.162

🇧🇴 200.105.172.184

🇪🇬 197.59.38.182