JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.22.87.30

149.22.87.30 was found in our database!

This IP was reported 83 times. Confidence of Abuse is 49%: ?

49%

ISP	DataCamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-149-22-87-30.datapacket.com
Domain Name	datacamp.co.uk
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.22.87.30

Whois 149.22.87.30

IP Abuse Reports for 149.22.87.30:

This IP address has been reported a total of 83 times from 39 distinct sources. 149.22.87.30 was first reported on October 22nd 2024, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Penny Packer	2026-06-28 06:38:51 (6 hours ago)	Fail2Ban apache-tripwires	Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 21:01:42 (16 hours ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 17:01:39.166015 2026] [security2:error] [pid 4446:tid 4446] [client 149.22.87.30:34223] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.mitchellamazing.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.mitchellamazing.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akA6M3UqPskM_8jadxBNYAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 19:57:12 (17 hours ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 15:57:07.926333 2026] [security2:error] [pid 25815:tid 25815] [client 149.22.87.30:24383] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|rohn.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rohn.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akArE1k1O5yc4LDhnNgfwgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-27 07:05:40 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 02:52:21 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:52:16.861011 2026] [security2:error] [pid 20399:tid 20399] [client 149.22.87.30:52561] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.nashes.net\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nashes.net"] [uri "/peeperkeeper.html/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj864O7ywyIQbTV7UvQw5AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 02:16:02 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:15:58.626495 2026] [security2:error] [pid 10444:tid 10444] [client 149.22.87.30:64713] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.marshdcs.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.marshdcs.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8yXo9zb7xCKhsEvGdO1QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 01:33:30 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 21:33:23.053444 2026] [security2:error] [pid 30451:tid 30451] [client 149.22.87.30:22701] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|explorequantumcomputing.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "explorequantumcomputing.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8oY4WHOhfTKNauftHajAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 01:07:52 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 21:07:49.690355 2026] [security2:error] [pid 24504:tid 24504] [client 149.22.87.30:61521] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.enriquelaw.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.enriquelaw.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8iZbz0OIj9W31lObykbAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 00:37:51 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 20:37:45.321168 2026] [security2:error] [pid 19283:tid 19283] [client 149.22.87.30:34423] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.cubbylure.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.cubbylure.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8bWcyPqTnXS-pi0efE1gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 21:51:34 (3 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 17:51:27.795856 2026] [security2:error] [pid 29056:tid 29056] [client 149.22.87.30:27905] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.beechleafdesign.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.beechleafdesign.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajxRX-PS2kliruI_QQ8E_wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 05:17:21 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 01:17:14.371617 2026] [security2:error] [pid 24140:tid 24228] [client 149.22.87.30:52943] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|rawsynergy.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "rawsynergy.com"] [uri "/store/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajtoWkXVYAqqqGfufvDvQgAAAhc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-24 03:56:58 (4 days ago)	[Firewall Canary] Temporary ban due to firewall rule match [URI:/vendor/]	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 03:27:33 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 23:27:26.713377 2026] [security2:error] [pid 19138:tid 19138] [client 149.22.87.30:53783] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|brandoncomputergeeks.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "brandoncomputergeeks.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajtOnjT0NeZSs19SetesKwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 02:54:29 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:54:22.107725 2026] [security2:error] [pid 8444:tid 8450] [client 149.22.87.30:58979] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|coloradosellers.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "coloradosellers.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajtG3pp-Fd_ene79_YEXpQAAAEM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 02:11:57 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.30 (unn-149-22-87-30.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:11:53.517436 2026] [security2:error] [pid 18093:tid 18093] [client 149.22.87.30:41769] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|eckerberg.net\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "eckerberg.net"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajs86UVqDqslYSDlxaItPAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 83 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.201

🇮🇩 43.157.203.234

🇩🇪 8.209.108.11

🇺🇸 205.210.31.70

🇻🇳 180.93.172.213

🇨🇳 117.188.11.70

🇮🇳 103.47.217.130

🇩🇪 94.31.109.21

🇳🇱 50.7.233.211

🇺🇸 45.131.194.148

🇺🇸 40.124.175.201

🇺🇸 23.28.101.247

🇰🇷 2a01:111:f403:d40f::3

🇺🇸 198.46.131.42

🇬🇧 193.32.209.238

🇩🇪 172.104.203.157

🇺🇸 144.172.116.30

🇺🇸 66.132.172.126

🇰🇪 41.191.229.226

🇳🇱 195.178.110.26