JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.184.239

209.50.184.239 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 46%: ?

46%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.184.239

Whois 209.50.184.239

IP Abuse Reports for 209.50.184.239:

This IP address has been reported a total of 16 times from 12 distinct sources. 209.50.184.239 was first reported on October 3rd 2025, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 6kilowatti	2026-06-23 09:36:34 (21 hours ago)	209.50.184.239 - - [23/Jun/2026:12:36:33 +0300] "POST /wp-login.php HTTP/1.1" 404 12994 "https://oh6 ... show more 209.50.184.239 - - [23/Jun/2026:12:36:33 +0300] "POST /wp-login.php HTTP/1.1" 404 12994 "https://oh6ah.fi/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64; rv:121.0) Gecko/20100101 Firefox/121.0" 209.50.184.239 - [23/Jun/2026:12:36:33 +0300] "POST /wp-login.php HTTP/1.1" 404 12288 "https://oh6ah.fi/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64; rv:121.0) Gecko/20100101 Firefox/121.0" ... show less	Web App Attack
🇩🇪 georgengelmann	2026-06-20 06:11:46 (4 days ago)	Failed login attempt for johan1233	Brute-Force Web App Attack
🇫🇷 Sklurk	2026-06-20 02:46:57 (4 days ago)	Web App Attack	Web App Attack
🇺🇸 lostswordfish.com	2026-06-19 06:10:05 (5 days ago)	Wordfence waf block on ncrsol	Web App Attack
🇲🇽 octageeks.com	2026-06-16 04:11:50 (1 week ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇩🇪 london2038.com	2026-06-16 01:17:55 (1 week ago)	Attacking WordPress 209.50.184.239 - - [16/Jun/2026:03:17:51 +0200] "POST /wp-login.php HTTP/1.1" 50 ... show more Attacking WordPress 209.50.184.239 - - [16/Jun/2026:03:17:51 +0200] "POST /wp-login.php HTTP/1.1" 503 19309 "https://<REDACTED>/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-06-15 20:49:16 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 lostswordfish.com	2026-06-11 10:26:04 (1 week ago)	Wordfence waf block on wvrsol	Web App Attack
🇩🇪 FeG Deutschland	2026-06-10 09:51:15 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
Anonymous	2026-01-05 20:07:20 (5 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇨🇭 backslash	2025-12-03 11:20:07 (6 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-24 08:56:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.239 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:55:58.315263 2025] [security2:error] [pid 26732:tid 26732] [client 209.50.184.239:40437] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "numberseven.okwellbeing.com"] [uri "/.svn/wc.db"] [unique_id "aSQdnp7fDFeeD9CmB5assAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:04:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.239 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:04:34.939728 2025] [security2:error] [pid 24765:tid 24765] [client 209.50.184.239:40149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.voterfraud2016.com"] [uri "/.svn/wc.db"] [unique_id "aSQDgiWfOjhivekgaqDRWQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:38:07 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.239 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:38:01.397749 2025] [security2:error] [pid 3353408:tid 3353408] [client 209.50.184.239:55707] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bccnews.us"] [uri "/.git/HEAD"] [unique_id "aSPvOeBh94kT0Gt87Q2BigAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Marc	2025-10-29 18:38:20 (7 months ago)		Brute-Force Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c13::122

🇭🇰 199.45.154.147

🇳🇱 45.142.193.161

🇹🇼 2400:cb00:80:1000:cf1d:d155:edac:93f6

🇺🇸 205.210.31.16

🇺🇸 170.187.165.134

🇺🇸 162.216.150.126

🇫🇮 147.185.133.179

🇸🇬 101.47.159.125

🇺🇸 66.132.172.113

🇺🇸 64.62.156.186

🇹🇭 45.194.70.249

🇳🇱 45.148.10.152

🇳🇱 45.142.193.70

🇩🇪 45.86.153.202

🇬🇧 37.10.113.222

🇧🇪 34.62.196.247

🇧🇪 34.62.181.187

🇮🇳 27.97.183.17

🇺🇸 23.30.11.253