JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.184.200

209.50.184.200 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.184.200

Whois 209.50.184.200

IP Abuse Reports for 209.50.184.200:

This IP address has been reported a total of 16 times from 10 distinct sources. 209.50.184.200 was first reported on October 13th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 zam	2026-06-20 21:09:56 (2 days ago)	209.50.184.200 - - [20/Jun/2026:21:09:42 +0000] "POST /wp-login.php HTTP/1.1" 404 81174	Web App Attack
🇨🇳 ThreatBook.io	2026-05-10 01:08:19 (1 month ago)	ThreatBook Intelligence: Spam,Gateway more details on https://threatbook.io/ip/209.50.184.200 2026-0 ... show more ThreatBook Intelligence: Spam,Gateway more details on https://threatbook.io/ip/209.50.184.200 2026-05-09 12:17:41 / show less	Web App Attack
🇱🇻 garmtech.com	2026-03-23 19:04:02 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇦🇺 2000cn.com.au	2026-02-18 03:22:01 (4 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇯🇵 Valhalla	2026-02-18 01:05:08 (4 months ago)	/backup/.git/config	Hacking Web App Attack
Anonymous	2025-12-11 09:26:11 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-29 00:22:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 19:22:41.766006 2025] [security2:error] [pid 3314:tid 3347] [client 209.50.184.200:23333] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abney.info"] [uri "/wp-config.php.bak"] [unique_id "aSo80Zk5j3TMFUbk5L3urgAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 19:34:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 14:34:00.413864 2025] [security2:error] [pid 27499:tid 27499] [client 209.50.184.200:48855] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aallred.com"] [uri "/.env"] [unique_id "aSn5KLvvWEnnJoK1JOpT4gAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 13:57:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 08:57:26.238083 2025] [security2:error] [pid 7132:tid 7132] [client 209.50.184.200:36923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mitchellamazing.com"] [uri "/wp-config.php.bak"] [unique_id "aSmqRjqtir6W5mHM2qVn9gAAAAo"], referer: http://amazingsteel.com/wp-config.php.bak show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:25:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:25:38.192045 2025] [security2:error] [pid 25299:tid 25299] [client 209.50.184.200:53919] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sinko-intl.com"] [uri "/.svn/wc.db"] [unique_id "aSUvwoseKI66hreMVBnB2gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:04:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:04:11.247139 2025] [security2:error] [pid 27220:tid 27220] [client 209.50.184.200:52627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.bespoke-ss.com"] [uri "/.env"] [unique_id "aSUquwIPzr8lSAFh_u7S3wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:47:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:47:15.867703 2025] [security2:error] [pid 13627:tid 13627] [client 209.50.184.200:39183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.leadek.com"] [uri "/.svn/wc.db"] [unique_id "aSUYs81nWxsd7s5OLIrB8AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:59:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:59:19.105581 2025] [security2:error] [pid 1647139:tid 1647160] [client 209.50.184.200:28777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.americanacademyofprojectmanagement.com"] [uri "/.env"] [unique_id "aST_Z55eMzOQPKYL6rLx_gAAAEk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 15:26:36 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/14 09:24:14	Port Scan Brute-Force Exploited Host Web App Attack
🇨🇭 backslash	2025-11-02 14:50:02 (7 months ago)		Web Spam

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 209.50.183.150

🇺🇸 65.111.7.32

🇭🇰 43.155.21.198

🇫🇷 217.113.194.205

🇧🇪 198.235.24.242

🇺🇸 184.105.247.194

🇱🇦 183.182.120.49

🇺🇸 147.185.132.16

🇷🇴 92.118.39.62

🇩🇪 69.5.169.243

🇩🇪 65.111.23.214

🇺🇸 45.3.37.185

🇺🇸 31.56.224.175

🇨🇦 216.26.237.141

🇱🇻 195.123.211.81

🇳🇱 176.65.148.30

🇬🇷 109.242.184.207

🇩🇪 69.5.169.253

🇲🇽 66.54.140.166

🇺🇸 65.49.1.122