JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 50.116.112.100

50.116.112.100 was found in our database!

This IP was reported 344 times. Confidence of Abuse is 26%: ?

26%

ISP	Oracle Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Hostname(s)	br618.hostgator.com.br
Domain Name	oracle.com
Country	🇧🇷 Brazil
City	Vinhedo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 50.116.112.100

Whois 50.116.112.100

IP Abuse Reports for 50.116.112.100:

This IP address has been reported a total of 344 times from 126 distinct sources. 50.116.112.100 was first reported on February 1st 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 pltcldvlpr	2026-05-11 13:58:28 (1 month ago)	CMS/framework probe. Matched path: 50.116.112.100 - - [11/May/2026:15:58:27 +0200] "GET /wp-admin HT ... show more CMS/framework probe. Matched path: 50.116.112.100 - - [11/May/2026:15:58:27 +0200] "GET /wp-admin HTTP/2.0" 404 10595 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" asn=19871 org="Network Solutions, LLC": 50.116.112.100 - - [11/May/2026:15:58:27 +0200] "GET /wp-admin HTTP/2.0" 404 10595 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" asn=19871 org="Network Solutions, LLC" ... show less	Web App Attack
🇲🇹 Malta	2026-05-11 00:36:18 (1 month ago)	50.116.112.100 - - [11/May/2026:02:36:18 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 50.116.112.100 - - [11/May/2026:02:36:18 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇩🇪 FeG Deutschland	2026-05-09 11:31:57 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 ingroscart.it	2026-05-08 18:47:24 (1 month ago)	(wordpress) Failed wordpress login from 50.116.112.100 (US/United States/br618.hostgator.com.br)	Brute-Force
🇺🇸 TPI-Abuse	2026-05-07 16:59:07 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 50.116.112.100 (br618.hostgator.com.br): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 50.116.112.100 (br618.hostgator.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 12:59:01.848469 2026] [security2:error] [pid 10062:tid 10087] [client 50.116.112.100:51184] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.gipsongrocerystore.digital4z.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.gipsongrocerystore.digital4z.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afzE1YTzEws1Hy_0nI9aHAAAANc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 tecnicorioja	2026-05-06 22:00:53 (1 month ago)	wp-login attack [06/May/2026:15:24:38	Brute-Force Web App Attack
🇺🇸 octageeks.com	2026-05-06 04:07:49 (1 month ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇩🇪 london2038.com	2026-05-05 09:23:15 (1 month ago)	Attacking WordPress 50.116.112.100 - - [05/May/2026:11:23:12 +0200] "POST /wp-login.php HTTP/2.0" 50 ... show more Attacking WordPress 50.116.112.100 - - [05/May/2026:11:23:12 +0200] "POST /wp-login.php HTTP/2.0" 503 19287 "https://<REDACTED>/wp-login.php" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.162 Safari/537.36" show less	Brute-Force Web App Attack
🇺🇸 lostswordfish.com	2026-05-01 22:12:05 (1 month ago)	Wordfence waf block on registrymatters	Web App Attack
🇺🇸 dtorrer	2026-05-01 13:51:27 (1 month ago)	Brute-force general attack.	Brute-Force
🇩🇪 4server	2026-05-01 12:29:32 (1 month ago)	[FriMay0114:29:28.0862962026][security2:error][pid469951:tid469958][client50.116.112.100:0]ModSecuri ... show more [FriMay0114:29:28.0862962026][security2:error][pid469951:tid469958][client50.116.112.100:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"mgevents.ch\"][uri\"/wp-login.php\"][unique_id\"afScqGiv4uPxUsEghlkrdAAAAIQ\"]\,referer:https://mgevents.ch/wp-login.php show less	Port Scan Brute-Force Web App Attack
🇺🇸 wordpresshosting.solutions	2026-05-01 01:39:25 (1 month ago)	WordPress login/xmlrpc abuse or user enumeration detected. Evidence: 50.116.112.100 - - [01/May/2026 ... show more WordPress login/xmlrpc abuse or user enumeration detected. Evidence: 50.116.112.100 - - [01/May/2026:01:39:21 +0000] "GET /wp-login.php HTTP/1.1" 200 6564 "https://[DOMAIN]/wp-login.php" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0E; .NET4.0C; InfoPath.3; .NET CLR 3.5.30729; .NET CLR 2.0.50727; .NET CLR 3.0.30729)" 50.116.112.100 - - [01/May/2026:01:39:25 +0000] "GET /wp-login.php HTTP/1.1" 200 6564 "https://[DOMAIN]/wp-login.php" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.2; WOW64; Trident/7.0; .NET4.0E; .NET4.0C; InfoPath.3; .NET CLR 3.5.30729; .NET CLR 2.0.50727; .NET CLR 3.0.30729)" show less	Brute-Force Web App Attack
🇺🇸 octageeks.com	2026-04-29 04:06:07 (1 month ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇺🇸 dtorrer	2026-04-28 13:25:54 (1 month ago)	Forged login request.	Brute-Force
🇳🇱 Roderic	2026-04-16 12:19:00 (2 months ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted])	Bad Web Bot

Showing 1 to 15 of 344 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.56.220.68

🇺🇸 170.106.74.215

🇺🇸 162.216.149.126

🇪🇸 68.221.203.47

🇸🇨 45.194.67.146

🇺🇸 45.79.92.218

🇺🇸 43.166.244.66

🇨🇳 8.133.194.176

🇭🇰 101.36.116.204

🇱🇹 62.60.130.219

🇯🇵 13.192.255.62

🇹🇼 211.20.14.156

🇧🇷 205.210.31.174

🇳🇱 185.93.89.24

🇨🇳 180.213.44.242

🇺🇸 162.216.149.148

🇷🇺 94.25.50.66

🇺🇸 43.153.122.252

🇺🇸 216.73.163.102

🇩🇪 194.187.176.9