JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.50.184.8

209.50.184.8 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.50.184.8

Whois 209.50.184.8

IP Abuse Reports for 209.50.184.8:

This IP address has been reported a total of 21 times from 11 distinct sources. 209.50.184.8 was first reported on October 21st 2025, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-12 02:36:14 (16 hours ago)	(y4) Failed scan -byebye- from 209.50.184.8 (ES/Spain/-): (CF_ENABLE)	Hacking
🇬🇧 poundawebsiteltd	2026-06-11 20:21:15 (22 hours ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 209.50.184.8 - - [11/Jun/2026:21:21:10 +0100] PO ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 209.50.184.8 - - [11/Jun/2026:21:21:10 +0100] POST /wp-login.php HTTP/1.1 200 7363 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 show less	Web App Attack
🇩🇪 Packets-Decreaser.NET	2026-01-07 06:42:23 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2026-01-01 18:07:24 (5 months ago)	209.50.184.8 - - [01/Jan/2026:18:07:23 +0000] "GET /wordpress//wp-admin/setup-config.php HTTP/1.1" 3 ... show more 209.50.184.8 - - [01/Jan/2026:18:07:23 +0000] "GET /wordpress//wp-admin/setup-config.php HTTP/1.1" 302 443 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 18_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Mobile/15E148 Safari/604.1" ... show less	Bad Web Bot Web App Attack
🇺🇸 etu brutus	2025-12-27 20:06:40 (5 months ago)	209.50.184.8 has been banned for [WebApp Attack] ...	Hacking Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-25 14:58:49 (5 months ago)	Blocking for trying to access an exploit file: /wordpress//kickstart.php	Hacking
Anonymous	2025-12-20 14:11:45 (5 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-12-12 13:46:05 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 05:41:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:41:27.183971 2025] [security2:error] [pid 13737:tid 13737] [client 209.50.184.8:26245] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.journalofcommonsenseeconomics.com"] [uri "/.svn/wc.db"] [unique_id "aSVBhz6JeiOz4iGoSEE_ygAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:25:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:25:16.063410 2025] [security2:error] [pid 857:tid 857] [client 209.50.184.8:24011] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.linuxforpoets.com"] [uri "/.svn/wc.db"] [unique_id "aSU9vD3mJ4ORHUSWQnm9iwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:24:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:24:01.153719 2025] [security2:error] [pid 789993:tid 789993] [client 209.50.184.8:28495] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.meritfloorstx.com"] [uri "/.svn/wc.db"] [unique_id "aSUvYWyeG-FMEnE7xWXVbQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:53:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:53:26.188740 2025] [security2:error] [pid 9798:tid 9798] [client 209.50.184.8:26107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.oricon.eu"] [uri "/.git/HEAD"] [unique_id "aSUoNpYg4bPe2lWhCiDh2wAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:11:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:11:10.535161 2025] [security2:error] [pid 27099:tid 27099] [client 209.50.184.8:37719] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.turtletaekwondo.com"] [uri "/.svn/wc.db"] [unique_id "aSUeTuXO1os52G53m1BTOQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:41:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:41:42.222909 2025] [security2:error] [pid 14440:tid 14440] [client 209.50.184.8:43887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.tonyv.org"] [uri "/.env"] [unique_id "aSUXZtqtpL8Ikshi1WqajQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:59:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 209.50.184.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:59:42.679922 2025] [security2:error] [pid 11464:tid 11464] [client 209.50.184.8:13993] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.k2medianetworks.com"] [uri "/.svn/wc.db"] [unique_id "aST_fsHqjjrrJ8yxxTmLGQAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 27.24.49.177

🇨🇳 124.117.195.235

🇹🇼 111.253.129.15

🇩🇪 68.183.75.109

🇩🇿 41.101.247.190

🇺🇸 20.169.83.157

🇧🇷 205.210.31.141

🇬🇧 195.206.182.200

🇺🇸 162.216.149.17

🇱🇰 124.43.10.224

🇨🇳 113.31.115.157

🇺🇸 69.63.215.127

🇧🇷 45.164.251.67

🇫🇮 38.7.145.186

🇩🇪 207.154.230.149

🇮🇩 182.160.54.167

🇳🇱 176.65.148.205

🇨🇦 158.69.194.208

🇮🇳 152.52.199.18

🇺🇸 20.65.195.105