JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.22.87.36

149.22.87.36 was found in our database!

This IP was reported 45 times. Confidence of Abuse is 41%: ?

41%

ISP	DataCamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-149-22-87-36.datapacket.com
Domain Name	datacamp.co.uk
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.22.87.36

Whois 149.22.87.36

IP Abuse Reports for 149.22.87.36:

This IP address has been reported a total of 45 times from 24 distinct sources. 149.22.87.36 was first reported on September 22nd 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 18:20:45 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 14:20:39.067476 2026] [security2:error] [pid 17093:tid 17093] [client 149.22.87.36:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|eddysgroup.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "eddysgroup.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj1xd4x5r4QI8hBAW5o56AAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 22:20:35 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 18:20:31.870668 2026] [security2:error] [pid 16423:tid 16446] [client 149.22.87.36:44123] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.a2zlns.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.a2zlns.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajxYL6q48dXRO5uTNjfJKgAAARU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 21:54:05 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 17:53:59.444560 2026] [security2:error] [pid 13714:tid 13714] [client 149.22.87.36:23061] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|phtaudio.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "phtaudio.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajxR93fgEJhdQ8ayhd9j2AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-24 20:17:16 (2 days ago)	Try to access /smeilorkest/vendor/phpunit/phpunit/phpunit.xsd	Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 14:23:49 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 10:23:44.216880 2026] [security2:error] [pid 30146:tid 30146] [client 149.22.87.36:28639] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cooteconsultinggroup.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cooteconsultinggroup.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajvocCZMWjjpwH3GBedkiQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 13:20:32 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 09:20:27.007326 2026] [security2:error] [pid 519:tid 519] [client 149.22.87.36:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kidswithcamerasmovie.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kidswithcamerasmovie.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajvZmyIOpyYTGTPqtAwrVwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 YF	2026-06-24 08:05:17 (2 days ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
Anonymous	2026-06-24 03:50:05 (2 days ago)	[Firewall Canary] Temporary ban due to firewall rule match [URI:/vendor/]	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 03:19:28 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 23:19:22.411789 2026] [security2:error] [pid 28222:tid 28222] [client 149.22.87.36:44439] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.awl-v.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.awl-v.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajtMuvbmrWLe8P9vRpmIogAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 02:55:06 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:54:59.374758 2026] [security2:error] [pid 13896:tid 13918] [client 149.22.87.36:34409] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|coloradosellers.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "coloradosellers.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajtHAyGxjxoriBOgJ6K8bQAAAJQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 01:58:00 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 21:57:55.332422 2026] [security2:error] [pid 32552:tid 32552] [client 149.22.87.36:33999] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.mrzradio.org\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.mrzradio.org"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajs5o5eSdmOuzVSJiiQ_SwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Penny Packer	2026-06-23 14:45:48 (3 days ago)	Fail2Ban apache-tripwires	Web App Attack
🇩🇪 jasperedv.de	2026-06-15 16:11:12 (1 week ago)	Apache Login - Brutforcing	Web App Attack Brute-Force
🇺🇸 TPI-Abuse	2026-06-14 05:02:32 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.36 (unn-149-22-87-36.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 01:02:28.637457 2026] [security2:error] [pid 21801:tid 21801] [client 149.22.87.36:43147] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|anngardner.net\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "anngardner.net"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ai415Mk43wzYRYLfTmPyLwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 David Koswari	2026-04-20 06:20:00 (2 months ago)	REQ_BLOCKED_SECURITY	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted

Showing 1 to 15 of 45 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇴 181.115.206.242

🇨🇦 104.205.177.247

🇸🇪 4.223.105.56

🇨🇳 123.163.215.13

🇧🇩 103.154.158.70

🇳🇱 51.15.59.186

🇱🇹 45.227.254.170

🇺🇸 44.192.131.141

🇸🇬 35.187.231.181

🇨🇳 219.155.32.144

🇺🇸 165.154.36.71

🇰🇷 61.76.112.4

🇸🇨 45.194.67.26

🇺🇸 44.197.193.24

🇺🇸 44.174.212.248

🇮🇩 2406:da19:776:6e00:7968:8730:e762:c75c

🇬🇧 195.60.166.255

🇬🇧 193.163.125.221

🇬🇧 188.39.141.60

🇺🇸 172.86.114.38