JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.22.87.52

149.22.87.52 was found in our database!

This IP was reported 61 times. Confidence of Abuse is 51%: ?

51%

ISP	DataCamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-149-22-87-52.datapacket.com
Domain Name	datacamp.co.uk
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.22.87.52

Whois 149.22.87.52

IP Abuse Reports for 149.22.87.52:

This IP address has been reported a total of 61 times from 32 distinct sources. 149.22.87.52 was first reported on October 15th 2024, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Penny Packer	2026-06-29 05:36:59 (4 hours ago)	Fail2Ban apache-tripwires	Web App Attack
🇩🇪 FeG Deutschland	2026-06-27 21:44:52 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 20:39:17 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 16:39:09.643948 2026] [security2:error] [pid 22380:tid 22380] [client 149.22.87.52:54415] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|accordionfactory.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "accordionfactory.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akA07ZX21mEqkIpwby1LVAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 20:09:10 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 16:09:07.022884 2026] [security2:error] [pid 31182:tid 31182] [client 149.22.87.52:61951] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.mitchellart.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.mitchellart.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAt41tNlnnb_1iBdDyf0gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 19:25:12 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 15:25:09.247259 2026] [security2:error] [pid 17331:tid 17331] [client 149.22.87.52:59115] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|appleconsultant.micahgartman.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "appleconsultant.micahgartman.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAjlWzGxmvVurFZtmt_NwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 19:04:55 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 15:04:49.518328 2026] [security2:error] [pid 29631:tid 29631] [client 149.22.87.52:32531] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.danharrisphotoart.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.danharrisphotoart.com"] [uri "/PhotoArtWholesaleArtist.pdf/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAe0Ymbp7o2oyySHgfyiAAAAC0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 18:13:59 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 14:13:53.886275 2026] [security2:error] [pid 3091:tid 3091] [client 149.22.87.52:21933] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.oldmaninthepeanut.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.oldmaninthepeanut.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "akAS4RLY4kNSG46JxyfxigAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 03:27:57 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 23:27:51.412459 2026] [security2:error] [pid 12376:tid 12376] [client 149.22.87.52:55685] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.andiamocomputers.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.andiamocomputers.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj9DN30b6eIvBU7o3jmdGQAAADY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 03:00:55 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 23:00:48.504388 2026] [security2:error] [pid 25800:tid 25800] [client 149.22.87.52:54167] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.lloydprins.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.lloydprins.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj884P0wZgYDTiTv_bnVygAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 02:24:46 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:24:40.845287 2026] [security2:error] [pid 2022:tid 2022] [client 149.22.87.52:62785] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|wisdomwfm.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "wisdomwfm.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj80aPLipf2Glmqochp8egAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 01:37:30 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 21:37:25.135081 2026] [security2:error] [pid 1326:tid 1326] [client 149.22.87.52:59347] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.domainexecs.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.domainexecs.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8pVcSd8rLVqO_GlaJ4fAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 01:11:48 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 21:11:42.409007 2026] [security2:error] [pid 32237:tid 32237] [client 149.22.87.52:37359] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|advancedmotorsports.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "advancedmotorsports.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8jTuZCm5gZTEs89eltRwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 00:23:53 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 20:23:47.727981 2026] [security2:error] [pid 17815:tid 17815] [client 149.22.87.52:31013] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|guldunyayayinlari.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "guldunyayayinlari.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "aj8YExMpCQmLiy2LJldFSwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 jasperedv.de	2026-06-24 21:41:12 (4 days ago)	Apache Login - Brutforcing	Web App Attack Brute-Force
🇺🇸 TPI-Abuse	2026-06-24 21:40:01 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.22.87.52 (unn-149-22-87-52.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 17:39:58.146696 2026] [security2:error] [pid 26629:tid 26642] [client 149.22.87.52:41159] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.ceresfund.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.ceresfund.com"] [uri "/vendor/phpunit/phpunit/phpunit.xsd"] [unique_id "ajxOrsq5D-M2aB0h2dnaLQAAAQs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 61 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 165.154.40.10

🇮🇩 110.137.36.132

🇨🇳 218.92.251.198

🇩🇪 194.187.176.28

🇳🇱 192.253.248.59

🇸🇬 47.84.112.45

🇺🇸 43.130.15.147

🇭🇰 199.45.154.155

🇬🇹 190.151.130.5

🇺🇸 184.105.247.194

🇺🇸 165.154.172.223

🇨🇳 139.227.161.96

🇳🇱 94.102.49.193

🇫🇷 62.210.101.90

🇺🇸 54.92.245.105

🇭🇰 43.155.40.91

🇨🇦 20.220.212.164

🇺🇸 20.65.194.47

🇺🇸 20.62.194.227

🇦🇪 198.38.94.14