JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.102.234.171

149.102.234.171 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 31%: ?

31%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-149-102-234-171.datapacket.com
Domain Name	datacamp.co.uk
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.102.234.171

Whois 149.102.234.171

IP Abuse Reports for 149.102.234.171:

This IP address has been reported a total of 22 times from 9 distinct sources. 149.102.234.171 was first reported on October 8th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-22 04:20:49 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 00:20:44.010097 2026] [security2:error] [pid 17954:tid 17954] [client 149.102.234.171:53170] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|zavion.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "zavion.com"] [uri "/logs/debug.log"] [unique_id "aji4HNfAngOC8Ypy83z7kwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 03:33:02 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 23:32:54.515542 2026] [security2:error] [pid 26355:tid 26355] [client 149.102.234.171:53095] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vc1.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vc1.com"] [uri "/logs/debug.log"] [unique_id "ajis5vLfMfsO6Be3k374ngAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 02:58:07 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 22:58:04.404492 2026] [security2:error] [pid 21858:tid 21858] [client 149.102.234.171:60546] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|toptek.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "toptek.com"] [uri "/logs/debug.log"] [unique_id "ajikvAnSrp_JX59S2yMXGgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 02:11:35 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 22:11:27.495963 2026] [security2:error] [pid 21908:tid 21908] [client 149.102.234.171:57464] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|srosa.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "srosa.com"] [uri "/logs/debug.log"] [unique_id "ajiZz5OZFhYSu7qu8S8yDAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 01:06:14 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 21:06:07.560613 2026] [security2:error] [pid 16712:tid 16712] [client 149.102.234.171:58073] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|sabras.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "sabras.com"] [uri "/logs/debug.log"] [unique_id "ajiKf1XHfLraVMbMjmy-CwAAAD8"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-06-22 00:49:57 (2 days ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-06-22 00:48:00 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 20:47:56.964654 2026] [security2:error] [pid 4046:tid 4046] [client 149.102.234.171:58164] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|riocanoas.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "riocanoas.com"] [uri "/logs/debug.log"] [unique_id "ajiGPFpFh4LhCnosSPcE8QAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 00:12:42 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 20:12:37.144325 2026] [security2:error] [pid 9159:tid 9159] [client 149.102.234.171:52066] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|quintessence.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "quintessence.com"] [uri "/logs/debug.log"] [unique_id "ajh99aJzGcJCj4PDAm1gugAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 22:43:03 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 18:42:58.650063 2026] [security2:error] [pid 6286:tid 6286] [client 149.102.234.171:62400] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|opere.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "opere.com"] [uri "/logs/debug.log"] [unique_id "ajho8qB1K_7fA5vn6Qj2ZQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 21:54:44 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 17:54:39.081511 2026] [security2:error] [pid 10660:tid 10660] [client 149.102.234.171:63392] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mukau.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mukau.com"] [uri "/logs/debug.log"] [unique_id "ajhdn_sSJjFuQIKEhajQ3wAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-21 21:47:25 (2 days ago)	[SunJun2123:47:21.8796772026][security2:error][pid2274370:tid2274379][client149.102.234.171:0]ModSec ... show more [SunJun2123:47:21.8796772026][security2:error][pid2274370:tid2274379][client149.102.234.171:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Stringmatchwithin\".asa/.asax/.ascx/.backup/.bak/.bat/.cdx/.cer/.cfg/.cmd/.com/.config/.conf/.cs/.csproj/.csr/.dat/.db/.dbf/.dll/.dos/.htr/.htw/.ida/.idc/.idq/.inc/.ini/.key/.licx/.lnk/.log/.mdb/.old/.pass/.pdb/.pol/.printer/.pwd/.rdb/.resources/.resx/.sql/.swp/.sys/.vb/.vbs/.vbproj/.vsdisco/.webinfo/.xsx/\"atTX:extension.[file\"/etc/apache2/conf.d/modsec_rules/00_asl_zz_strict.conf\"][line\"91\"][id\"390716\"][rev\"2\"][msg\"Atomicorp.comWAFRules:URLfileextensionisrestrictedbypolicy\"][data\".log\"][severity\"ERROR\"][hostname\"motogiro.com\"][uri\"/logs/debug.log\"][unique_id\"ajhb6Xu0R_lu4bM3P8KuTQAAAQc\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 21:10:08 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 17:10:01.503929 2026] [security2:error] [pid 25218:tid 25218] [client 149.102.234.171:65160] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mcdesigner.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mcdesigner.com"] [uri "/logs/debug.log"] [unique_id "ajhTKTgkXh57x0IxIbj7pAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 19:23:02 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket ... show more (mod_security) mod_security (id:210730) triggered by 149.102.234.171 (unn-149-102-234-171.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 15:22:54.976241 2026] [security2:error] [pid 5191:tid 5191] [client 149.102.234.171:65140] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|jetpower.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "jetpower.com"] [uri "/logs/debug.log"] [unique_id "ajg6Dn_mc8aJLmq2gUW0MwAAAFE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-17 10:17:18 (6 days ago)	Malicious activity detected	Hacking Web App Attack
🇳🇱 Mangelot Hosting	2026-01-07 13:58:53 (5 months ago)	(modsecurity) srv101 ModSecurity 149.102.234.171 (BR/Brazil/unn-149-102-234-171.datapacket.com): 5 i ... show more (modsecurity) srv101 ModSecurity 149.102.234.171 (BR/Brazil/unn-149-102-234-171.datapacket.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.108

🇮🇳 210.212.49.51

🇳🇱 200.162.152.170

🇧🇪 198.235.24.181

🇻🇳 180.93.43.225

🇳🇱 176.65.139.87

🇮🇩 157.15.67.253

🇺🇸 136.119.53.84

🇨🇳 123.160.234.117

🇨🇳 111.10.224.70

🇱🇹 91.224.92.17

🇫🇷 82.64.38.234

🇺🇸 65.110.40.114

🇺🇸 4.246.61.185

🇳🇱 200.162.152.171

🇳🇱 195.178.110.162

🇫🇷 144.24.207.211

🇺🇸 91.230.168.225

🇱🇹 62.60.130.219

🇻🇳 27.71.230.31