JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.202.83.206

149.202.83.206 was found in our database!

This IP was reported 332 times. Confidence of Abuse is 75%: ?

75%

ISP	OVH SAS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	ns3019395.ip-149-202-83.eu
Domain Name	ovh.net
Country	🇫🇷 France
City	Dunkirk, Hauts-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.202.83.206

Whois 149.202.83.206

IP Abuse Reports for 149.202.83.206:

This IP address has been reported a total of 332 times from 125 distinct sources. 149.202.83.206 was first reported on December 3rd 2025, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 18:08:10 (9 hours ago)	(mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 ... show more (mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 14:08:02.501255 2026] [security2:error] [pid 30776:tid 30776] [client 149.202.83.206:60700] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.silalaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.silalaw.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajA_glhN-Hsd3gw03kV73QAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 07:46:29 (19 hours ago)	(mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 ... show more (mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 03:46:23.270872 2026] [security2:error] [pid 1665:tid 1703] [client 149.202.83.206:59606] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.campingcosmetics.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.campingcosmetics.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai-tzzomAg0zgMUZvmay4gAAAFU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 09:37:43 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 ... show more (mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 05:37:36.259456 2026] [security2:error] [pid 15040:tid 15040] [client 149.202.83.206:54030] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.insidepublications.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.insidepublications.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai0k4E9ym3bikVJw_pUOHQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 ycoskun41	2026-06-12 10:07:41 (3 days ago)	fail2ban: plesk-modsecurity jail on genckocaeli.com	Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 23:10:57 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 ... show more (mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 19:10:53.289309 2026] [security2:error] [pid 4167:tid 4167] [client 149.202.83.206:36056] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.disio.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.disio.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aitAfQ52wLI33or2IO6e5wAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 17:06:54 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 ... show more (mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 13:06:49.438135 2026] [security2:error] [pid 6878:tid 6878] [client 149.202.83.206:36320] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.barkatthemoonpetsitting.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.barkatthemoonpetsitting.com"] [uri "/wp-json/wp/v2/users"] [unique_id "airrKZJHLAc4s1RsAzT3QwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 14:45:24 (4 days ago)	CMS (WordPress or Joomla) brute force attempt.	Brute-Force
🇺🇸 TPI-Abuse	2026-06-11 02:37:13 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 ... show more (mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 22:37:04.522932 2026] [security2:error] [pid 18750:tid 18750] [client 149.202.83.206:58740] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.bikinitweets.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.bikinitweets.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiofUF0uShqtzwaRGghDbgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Lunix	2026-06-10 21:42:07 (5 days ago)		Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 16:39:17 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 ... show more (mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 12:39:11.541605 2026] [security2:error] [pid 26474:tid 26474] [client 149.202.83.206:47332] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.jacquelineperriam.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.jacquelineperriam.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aimTLyhkkvd7oxKKmCsdnQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-07 02:02:47 (1 week ago)	Multiple WAF Violations	Web App Attack
🇳🇱 Savvii	2026-06-06 18:43:20 (1 week ago)	10 attempts against mh_ha-misc-ban on plum	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 14:18:52 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 ... show more (mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 10:18:46.811209 2026] [security2:error] [pid 10793:tid 10793] [client 149.202.83.206:52234] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kulacenterky.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kulacenterky.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiQsRn_ggLPVxUHewrvgzQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 04:53:19 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 ... show more (mod_security) mod_security (id:225170) triggered by 149.202.83.206 (ns3019395.ip-149-202-83.eu): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 00:53:16.686269 2026] [security2:error] [pid 23132:tid 23132] [client 149.202.83.206:48794] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.soundtrax.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.soundtrax.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aiOnvBtn_jCM5gmBey8UqQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 YF	2026-06-06 02:00:28 (1 week ago)	Attaque distribuée subnet	DDoS Attack Web App Attack

Showing 1 to 15 of 332 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a03:2880:15ff:45::

🇧🇩 203.190.11.3

🇳🇱 195.178.110.30

🇺🇸 172.237.155.240

🇩🇪 164.92.225.188

🇨🇳 124.72.224.118

🇺🇸 68.183.116.107

🇺🇸 65.98.182.146

🇪🇬 41.40.201.109

🇺🇸 40.76.238.177

🇳🇱 31.14.32.6

🇺🇸 18.221.179.104

🇺🇸 2a03:2880:15ff:44::

🇺🇸 216.25.89.136

🇯🇵 210.139.91.166

🇬🇧 193.163.125.214

🇮🇶 185.166.25.150

🇺🇸 172.236.126.175

🇯🇵 104.234.140.140

🇯🇵 104.234.140.127