JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.183.63

209.50.183.63 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 32%: ?

32%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.183.63

Whois 209.50.183.63

IP Abuse Reports for 209.50.183.63:

This IP address has been reported a total of 13 times from 9 distinct sources. 209.50.183.63 was first reported on November 1st 2025, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nationaleventpros.com	2026-06-16 13:04:39 (3 hours ago)	WordPress login attempt	Brute-Force
🇫🇷 ELYAZ	2026-06-16 02:59:05 (13 hours ago)	(y4) Failed scan -byebye- from 209.50.183.63 (DE/Germany/-): (CF_ENABLE)	Hacking
🇫🇷 solution.it	2026-06-13 20:48:42 (2 days ago)	[Sat Jun 13 22:48:40.823147 2026] [php7:error] [pid 3501848:tid 3501848] [client 209.50.183.63:65119 ... show more [Sat Jun 13 22:48:40.823147 2026] [php7:error] [pid 3501848:tid 3501848] [client 209.50.183.63:65119] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat, referer: https://blog.solution.it/wp-login.php show less	Web App Attack
🇫🇷 ELYAZ	2026-06-12 19:14:51 (3 days ago)	(y4) Failed scan -byebye- from 209.50.183.63 (DE/Germany/-): (CF_ENABLE)	Hacking
🇺🇸 lostswordfish.com	2026-06-10 07:52:06 (6 days ago)	Wordfence waf block on kcuar	Web App Attack
🇫🇮 inlink.ltd	2026-05-15 06:39:09 (1 month ago)	Known malicious PHP file or CMS probe	Web App Attack
🇪🇸 10dencehispahard SL	2026-01-28 05:25:02 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇱🇻 garmtech.com	2026-01-09 05:33:27 (5 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-33.209.50.183.63.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-33.209.50.183.63.web-spammers.v2.rbl.imunify.com. succeeded. show less	Web App Attack
Anonymous	2026-01-03 13:44:17 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.03 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.03 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 12:10:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.183.63 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.183.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:10:12.385508 2025] [security2:error] [pid 16936:tid 16936] [client 209.50.183.63:36327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.cassandramarisalon.com"] [uri "/.svn/wc.db"] [unique_id "aSbuJIJHa5R8EI4ZbgRZfwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:54:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.183.63 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.183.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:54:01.288926 2025] [security2:error] [pid 8717:tid 8717] [client 209.50.183.63:53657] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.industrialgraphicdesign.com"] [uri "/.svn/wc.db"] [unique_id "aSPk6V-SjWy4WEiqfVY7_wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-23 14:06:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.183.63 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.183.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 09:06:14.417702 2025] [security2:error] [pid 24830:tid 24830] [client 209.50.183.63:29407] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.engravedweddingflutes.com"] [uri "/.git/config"] [unique_id "aSMU1qEWUgbRXjE-cF3gOAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-01 19:49:05 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.183.63 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 209.50.183.63 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 15:48:57.771677 2025] [security2:error] [pid 25031:tid 25031] [client 209.50.183.63:35367] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.limobustacoma.com"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aQZkKcO_ip9t61AACMF4PQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.88.98.105

🇨🇳 118.145.116.57

🇺🇸 107.175.17.238

🇨🇦 104.223.85.132

🇯🇵 103.53.81.54

🇫🇷 51.68.34.131

🇻🇪 38.188.48.128

🇰🇿 31.132.90.3

🇺🇸 2607:f8b0:4004:100d::122

🇦🇹 213.225.9.147

🇯🇵 212.32.76.58

🇬🇹 190.151.130.5

🇮🇳 183.82.178.251

🇷🇺 178.185.136.57

🇹🇼 172.69.221.94

🇩🇪 167.94.146.51

🇮🇩 163.227.52.50

🇬🇧 152.32.157.3

🇮🇳 104.28.157.141

🇭🇰 103.14.33.174