JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2.50.223.48

2.50.223.48 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 29%: ?

29%

ISP	Emirates Telecommunications Corporation
Usage Type	Fixed Line ISP
ASN	AS5384
Hostname(s)	bba-2-50-223-48.alshamil.net.ae
Domain Name	etisalat.ae
Country	🇦🇪 United Arab Emirates
City	Abu Dhabi, Abu Dhabi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2.50.223.48

Whois 2.50.223.48

IP Abuse Reports for 2.50.223.48:

This IP address has been reported a total of 5 times from 4 distinct sources. 2.50.223.48 was first reported on June 21st 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Marc	2026-06-21 13:10:22 (1 day ago)	2.50.223.48 - - [21/Jun/2026:15:09:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3295 "-" "Jetpack by Wo ... show more 2.50.223.48 - - [21/Jun/2026:15:09:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3295 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" 2.50.223.48 - - [21/Jun/2026:15:10:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3295 "-" "Jetpack by WordPress.com" 2.50.223.48 - - [21/Jun/2026:15:10:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 3294 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.4)" show less	Brute-Force Web App Attack
🇺🇸 Jason Howell	2026-06-21 11:16:57 (1 day ago)	2.50.223.48 - - [21/Jun/2026:06:08:16 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4760 "-" "WordPress.com ... show more 2.50.223.48 - - [21/Jun/2026:06:08:16 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4760 "-" "WordPress.com; https://wordpress.com" 2.50.223.48 - - [21/Jun/2026:06:10:30 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4761 "-" "WordPress.com; https://wordpress.com" 2.50.223.48 - - [21/Jun/2026:06:12:39 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4759 "-" "Jetpack/12.5; WordPress/6.2; http://site27712391.com" 2.50.223.48 - - [21/Jun/2026:06:14:47 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4760 "-" "Jetpack/12.5; WordPress/6.1; http://site83148010.com" 2.50.223.48 - - [21/Jun/2026:06:16:56 -0500] "POST /xmlrpc.php HTTP/1.1" 200 4760 "-" "WordPress.com; https://wordpress.com" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 09:10:20 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 2.50.223.48 (bba-2-50-223-48.alshamil.net.ae): ... show more (mod_security) mod_security (id:240335) triggered by 2.50.223.48 (bba-2-50-223-48.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 05:10:14.913028 2026] [security2:error] [pid 5692:tid 5776] [client 2.50.223.48:59629] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 2.50.223.48 (+1 hits since last alert)\|abusaimeh.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "abusaimeh.com"] [uri "/xmlrpc.php"] [unique_id "ajeqdmKhsOqRnImS4n-oAgAAAFA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-21 08:36:22 (1 day ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 07:03:43 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 2.50.223.48 (bba-2-50-223-48.alshamil.net.ae): ... show more (mod_security) mod_security (id:240335) triggered by 2.50.223.48 (bba-2-50-223-48.alshamil.net.ae): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 03:03:36.335369 2026] [security2:error] [pid 26344:tid 26344] [client 2.50.223.48:50551] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 2.50.223.48 (+1 hits since last alert)\|nypatriotcards.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "nypatriotcards.com"] [uri "/xmlrpc.php"] [unique_id "ajeMyG2-PKOIKW6lAg_i_QAAABA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 189.113.47.155

🇺🇸 172.253.2.22

🇩🇪 164.90.176.216

🇳🇱 143.179.241.103

🇳🇱 213.176.16.100

🇸🇬 172.253.236.211

🇺🇸 147.185.132.64

🇺🇸 107.152.44.215

🇩🇪 104.207.56.17

🇺🇸 91.230.168.39

🇫🇷 82.66.180.77

🇩🇪 69.5.169.190

🇺🇸 52.53.178.194

🇬🇧 35.203.211.18

🇺🇸 184.168.21.211

🇮🇩 143.20.49.38

🇨🇳 120.48.135.32

🇮🇳 103.5.133.149

🇵🇪 38.250.131.21

🇷🇴 2.57.121.112