JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.184.204

209.50.184.204 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.184.204

Whois 209.50.184.204

IP Abuse Reports for 209.50.184.204:

This IP address has been reported a total of 7 times from 6 distinct sources. 209.50.184.204 was first reported on November 13th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cwytech	2026-06-21 03:34:00 (2 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wp-us-login-only-high.	Bad Web Bot Web App Attack
🇫🇷 ELYAZ	2026-06-20 18:57:53 (3 days ago)	(y4) Failed scan -byebye- from 209.50.184.204 (ES/Spain/-): (CF_ENABLE)	Hacking
🇫🇷 ELYAZ	2026-06-12 02:37:25 (1 week ago)	(y4) Failed scan -byebye- from 209.50.184.204 (ES/Spain/-): (CF_ENABLE)	Hacking
🇺🇸 TPI-Abuse	2026-01-20 14:56:00 (5 months ago)	(mod_security) mod_security (id:243420) triggered by 209.50.184.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:243420) triggered by 209.50.184.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 09:55:57.375389 2026] [security2:error] [pid 26549:tid 26549] [client 209.50.184.204:54267] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "ARGS:form_id" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6649"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.takemehomedogrescue.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.takemehomedogrescue.org"] [uri "/wp-admin/admin-ajax.php"] [unique_id "aW-XewA_TP08mPdcu5XcKAAAAAQ"], referer: http://www.takemehomedogrescue.org/contact/ show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-12-05 23:56:37 (6 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 01-56.209.50.184.204.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 01-56.209.50.184.204.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇵🇱 sefinek.net	2025-11-19 08:06:00 (7 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-11-13 18:17:24 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/13 12:16:26	Port Scan Brute-Force Exploited Host Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.93.89.147

🇦🇷 181.191.127.13

🇺🇸 162.216.150.106

🇧🇬 79.124.56.250

🇺🇸 77.110.122.180

🇳🇱 77.91.71.10

🇺🇸 216.25.89.99

🇧🇷 190.89.193.234

🇲🇽 189.250.3.216

🇪🇸 158.158.47.67

🇦🇪 146.70.102.5

🇧🇩 103.183.62.1

🇷🇺 92.246.207.130

🇵🇱 83.27.228.198

🇺🇸 66.132.186.222

🇺🇸 44.27.207.155

🇵🇪 38.25.51.96

🇺🇸 165.154.182.221

🇮🇳 103.88.76.27

🇺🇸 44.68.56.226