JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.232.138.207

149.232.138.207 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 25%: ?

25%

ISP	Huawei-Cloud-MX
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136907
Hostname(s)	ecs-149-232-138-207.compute.hwclouds-dns.com
Domain Name	huawei.com
Country	🇲🇽 Mexico
City	Mexico City, Mexico City

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.232.138.207

Whois 149.232.138.207

IP Abuse Reports for 149.232.138.207:

This IP address has been reported a total of 7 times from 6 distinct sources. 149.232.138.207 was first reported on April 28th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nodepile	2026-06-07 21:11:47 (1 week ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/static/version1775170088/fr ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/static/version1775170088/frontend/Smartwave/porto/en_US/Magento_Ui/templates/modal/modal-popup.html ua='Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Safari/537.36') show less	Web App Attack Exploited Host
🇺🇸 TPI-Abuse	2026-05-31 16:32:16 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 149.232.138.207 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 149.232.138.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 12:32:11.512620 2026] [security2:error] [pid 6240:tid 6240] [client 149.232.138.207:44618] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|nrvoutdoors.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "nrvoutdoors.com"] [uri "/FIRST ELEPHANT/Thumbs.db"] [unique_id "ahxii25mJUZU-NjWxwGFnAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-13 12:02:47 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 149.232.138.207 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 149.232.138.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 08:02:44.429198 2026] [security2:error] [pid 30705:tid 30705] [client 149.232.138.207:52698] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|lertap5.com\|F\|2"] [data ".spss.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "lertap5.com"] [uri "/HTMLHelp/Lrtp59HTML/www.spss.com"] [unique_id "agRoZNtNlqJa0zeE9CofYAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Sklurk	2026-05-13 05:13:43 (1 month ago)	Web App Attack	Web App Attack
🇫🇮 YF	2026-05-05 19:03:55 (1 month ago)	WordPress content enumeration	Web App Attack
🇩🇪 pltcldvlpr	2026-05-03 21:38:18 (1 month ago)	Unidentified crawler ignoring robots.txt: 149.232.138.207 - - [03/May/2026:23:38:14 +0200] "GET /sea ... show more Unidentified crawler ignoring robots.txt: 149.232.138.207 - - [03/May/2026:23:38:14 +0200] "GET /search?page=search&affiliation=gov&minDate=2007-01-01&term=microsoft&exportTimelineData=1 HTTP/2.0" 200 149 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36" asn=136907 org="HUAWEI INTERNATIONAL PTE. LTD." 149.232.138.207 - - [03/May/2026:23:38:16 +0200] "HEAD /search?page=search&affiliation=gov&minDate=2007-01-01&term=microsoft&exportTimelineData=1 HTTP/1.1" 403 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36" asn=136907 org="HUAWEI INTERNATIONAL PTE. LTD." 149.232.138.207 - - [03/May/2026:23:38:17 +0200] "GET /search?page=search&affiliation=gov&minDate=2007-01-01&term=microsoft&exportTimelineData=1 HTTP/1.1" 200 160 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36" asn=136907 org="HUAW ... show less	Bad Web Bot
🇺🇸 kosada.com	2026-04-28 15:10:10 (1 month ago)	Web bot: DDoS	DDoS Attack Bad Web Bot

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.13.141.86

🇷🇺 217.66.150.233

🇺🇿 213.230.71.159

🇩🇪 213.209.159.238

🇺🇸 206.251.75.95

🇺🇸 195.184.76.167

🇳🇱 185.223.235.21

🇮🇳 182.18.180.44

🇺🇸 162.216.150.87

🇷🇺 109.75.194.181

🇹🇭 83.118.107.37

🇺🇸 66.132.224.89

🇺🇸 20.171.32.45

🇨🇱 216.155.92.203

🇧🇪 198.235.24.247

🇨🇳 183.236.130.182

🇺🇸 173.255.221.189

🇬🇧 172.239.117.151

🇺🇸 152.67.230.221

🇨🇳 120.48.75.127