JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.22.87.49

149.22.87.49 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 45%: ?

45%

ISP	DataCamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-149-22-87-49.datapacket.com
Domain Name	datacamp.co.uk
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.22.87.49

Whois 149.22.87.49

IP Abuse Reports for 149.22.87.49:

This IP address has been reported a total of 37 times from 20 distinct sources. 149.22.87.49 was first reported on January 1st 2025, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Starburst SysOp Team	2026-06-28 06:37:52 (6 hours ago)	(mod_security-custom) mod_security (id:210730) triggered by 149.22.87.49 (JP/Japan/Tokyo/Shibuya Cit ... show more (mod_security-custom) mod_security (id:210730) triggered by 149.22.87.49 (JP/Japan/Tokyo/Shibuya City/unn-149-22-87-49.datapacket.com/[AS212238 CDNEXT]): 1 in the last 3600 secs (0-srv1) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-27 20:02:51 (17 hours ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 16:02:44.767080 2026] [security2:error] [pid 19973:tid 19973] [client 149.22.87.49:26101] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.jwilder.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.jwilder.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAsZK3hEv4nR82DmV_A3QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 19:47:22 (17 hours ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 15:47:16.261967 2026] [security2:error] [pid 15210:tid 15210] [client 149.22.87.49:22795] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.natchezbicycle.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.natchezbicycle.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAoxBe5it8BejSXEif3KQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 19:32:09 (18 hours ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 15:32:05.827879 2026] [security2:error] [pid 24854:tid 24854] [client 149.22.87.49:40691] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|atticlodgeoutdoorlearningcenter.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "atticlodgeoutdoorlearningcenter.com"] [uri "/index.php/guide-classes/current-guide-classes/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAlNbVTNPG3iLZGNuutIgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 18:19:31 (19 hours ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 14:19:23.881031 2026] [security2:error] [pid 22785:tid 22785] [client 149.22.87.49:45383] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mindtoken.app\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mindtoken.app"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAUK2HauGfLp-OXjeyyUwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-27 13:49:14 (23 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇵🇾 armandosaucedo.me	2026-06-27 08:42:37 (1 day ago)	Threat Intelligence via ARMTI, Web Attack: GET /vendor/phpunit/phpunit/phpunit.xsd	Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 03:13:04 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 23:12:59.491671 2026] [security2:error] [pid 27803:tid 27803] [client 149.22.87.49:43819] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.wavecomputers.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.wavecomputers.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8_u5KWw2aDrFoX8AsjVAAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 02:57:27 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:57:23.104046 2026] [security2:error] [pid 2664:tid 2664] [client 149.22.87.49:49757] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|pakistanvision.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "pakistanvision.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj88E7xpgmO5F6dtVKK8AgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 02:25:06 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:24:58.591088 2026] [security2:error] [pid 19335:tid 19335] [client 149.22.87.49:56569] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.gonzalez.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.gonzalez.com"] [uri "/Zaghdoudi/index.html/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj80emnNN1LEBtbnec_T-QAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 01:30:10 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 21:30:03.868642 2026] [security2:error] [pid 31849:tid 31849] [client 149.22.87.49:23939] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|andreas-villa.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "andreas-villa.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8nm0J1NttM4ndsHIQb0wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 01:12:08 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 21:12:01.571014 2026] [security2:error] [pid 13092:tid 13092] [client 149.22.87.49:57121] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|lunarinfrastructure.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "lunarinfrastructure.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8jYcxWiKZ0IQTv9A81_QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 00:37:17 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 20:37:13.045971 2026] [security2:error] [pid 7636:tid 7658] [client 149.22.87.49:63839] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.yrcs.net\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.yrcs.net"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8bObmDNh5GsW31Wtg60gAAARQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 10:59:17 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 06:59:14.087062 2026] [security2:error] [pid 8134:tid 8134] [client 149.22.87.49:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|aslanhan.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "aslanhan.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj5bgrQZBhjPBg8LmpnazAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 22:39:28 (3 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.49 (unn-149-22-87-49.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 18:39:21.880109 2026] [security2:error] [pid 454:tid 454] [client 149.22.87.49:41735] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.chriseaton.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.chriseaton.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajxcmQW359wVLXpra8DXAgAAAFU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.201

🇮🇩 43.157.203.234

🇩🇪 8.209.108.11

🇺🇸 205.210.31.70

🇻🇳 180.93.172.213

🇨🇳 117.188.11.70

🇮🇳 103.47.217.130

🇩🇪 94.31.109.21

🇳🇱 50.7.233.211

🇺🇸 45.131.194.148

🇺🇸 40.124.175.201

🇺🇸 23.28.101.247

🇰🇷 2a01:111:f403:d40f::3

🇺🇸 198.46.131.42

🇬🇧 193.32.209.238

🇩🇪 172.104.203.157

🇺🇸 144.172.116.30

🇺🇸 66.132.172.126

🇰🇪 41.191.229.226

🇳🇱 195.178.110.26