JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.102.246.11

149.102.246.11 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 82%: ?

82%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-149-102-246-11.datapacket.com
Domain Name	datacamp.co.uk
Country	🇬🇷 Greece
City	Athens, Attica

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.102.246.11

Whois 149.102.246.11

IP Abuse Reports for 149.102.246.11:

This IP address has been reported a total of 47 times from 37 distinct sources. 149.102.246.11 was first reported on January 7th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 voormedia	2026-06-11 20:58:25 (1 day ago)	Accessed trap at '/.env'	Web App Attack
🇧🇪 cmbplf	2026-06-11 19:29:22 (1 day ago)	866 requests with url.path *.env	Brute-Force Bad Web Bot
🇩🇪 iNetWorker	2026-06-11 18:20:41 (1 day ago)	trolling for resource vulnerabilities	Web App Attack
🇩🇪 Hary74656	2026-06-11 18:07:17 (1 day ago)	[Thu Jun 11 20:07:09.248111 2026] [security2:error] [pid 161381:tid 161423] [remote 149.102.246.11:5 ... show more [Thu Jun 11 20:07:09.248111 2026] [security2:error] [pid 161381:tid 161423] [remote 149.102.246.11:56550] [client 149.102.246.11] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/.env" at REQUEST_FILENAME. [file "/usr/share/modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "125"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "dbl.aschi.at"] [uri "/.env"] [unique_id "air5TIXGJT2KZbr9xDd3BwAD3QE"], referer: http://dbl.aschi.at/.env [Thu Jun 11 20:07:09.248111 2026] [security2:error] [pid 161420:tid 161448] [remote 149.102.246.11:56541] [client 149.102.246.11] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/.env" at REQUES ... show less	Web App Attack
🇱🇻 garmtech.com	2026-06-11 17:40:08 (1 day ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env	Web App Attack
🇨🇭 ALPHANET	2026-06-11 17:30:21 (1 day ago)	web exploits	Hacking Exploited Host Web App Attack
🇨🇭 4server	2026-06-11 17:15:30 (1 day ago)	[ThuJun1119:15:26.8707672026][security2:error][pid60249:tid60991][client149.102.246.11:0]ModSecurity ... show more [ThuJun1119:15:26.8707672026][security2:error][pid60249:tid60991][client149.102.246.11:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"mail.edilmarra.ch\"][uri\"/.env\"][unique_id\"airtLvw4UMeCFhznNIAvDAAAAIE\"] show less	Hacking Web App Attack
Anonymous	2026-06-10 19:21:03 (2 days ago)	Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1, GET /.git HTTP/1.1, GET /.env HTT ... show more Bot / scanning and/or hacking attempts: GET /.git/config HTTP/1.1, GET /.git HTTP/1.1, GET /.env HTTP/1.1 show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 18:08:00 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 149.102.246.11 (unn-149-102-246-11.datapacket.c ... show more (mod_security) mod_security (id:210492) triggered by 149.102.246.11 (unn-149-102-246-11.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 14:07:55.406730 2026] [security2:error] [pid 18496:tid 18496] [client 149.102.246.11:51329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kcpeople.loudenlow.com"] [uri "/.env"] [unique_id "aimn-5kmQV12CVt4zeHYIAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 TechnoSolutions CL	2026-06-10 16:21:00 (2 days ago)	149.102.246.11 - - [10/Jun/2026:16:20:04 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0" ... show more 149.102.246.11 - - [10/Jun/2026:16:20:04 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0" 149.102.246.11 - - [10/Jun/2026:16:21:00 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0" ... show less	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-10 02:06:33 (3 days ago)	Abuse Detected (3)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 01:25:03 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 149.102.246.11 (unn-149-102-246-11.datapacket.c ... show more (mod_security) mod_security (id:210492) triggered by 149.102.246.11 (unn-149-102-246-11.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 21:24:58.334041 2026] [security2:error] [pid 22316:tid 22316] [client 149.102.246.11:63443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.alexetjeremy.com"] [uri "/.env"] [unique_id "aii86tNS1UlV-4VaJVdzSQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-10 01:15:52 (3 days ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env	Web App Attack
🇱🇻 garmtech.com	2026-06-10 00:18:13 (3 days ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 23:42:11 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 149.102.246.11 (unn-149-102-246-11.datapacket.c ... show more (mod_security) mod_security (id:210492) triggered by 149.102.246.11 (unn-149-102-246-11.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 19:42:06.596485 2026] [security2:error] [pid 18319:tid 18319] [client 149.102.246.11:57614] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cartilla.aguasolar.com"] [uri "/.env"] [unique_id "aiikzkjl0tpoFYc4SQCleAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.143.20.36

🇵🇭 165.154.100.56

🇨🇳 61.243.65.86

🇧🇷 45.205.1.240

🇳🇱 34.178.219.202

🇭🇰 34.96.255.107

🇬🇧 193.32.209.246

🇦🇺 123.208.42.9

🇧🇬 87.126.208.10

🇸🇬 86.105.107.229

🇮🇹 79.40.60.117

🇩🇪 51.116.117.203

🇺🇸 50.123.92.130

🇳🇱 45.148.10.121

🇪🇸 45.92.85.254

🇬🇧 35.203.210.236

🇨🇱 34.176.187.76

🇫🇮 34.88.167.78

🇺🇸 216.180.246.67

🇯🇵 203.25.124.27