JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.36.50.13

149.36.50.13 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 39%: ?

39%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-149-36-50-13.datapacket.com
Domain Name	datacamp.co.uk
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.36.50.13

Whois 149.36.50.13

IP Abuse Reports for 149.36.50.13:

This IP address has been reported a total of 29 times from 19 distinct sources. 149.36.50.13 was first reported on January 24th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-01 09:23:42 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇷🇺 cleanweb	2026-05-29 20:41:58 (2 weeks ago)	Looking for /backups/1.sql, Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like G ... show more Looking for /backups/1.sql, Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Brute-Force Phishing
🇧🇷 dominioz	2026-05-29 08:45:36 (2 weeks ago)	2026-05-29 08:45:28 GET /old/backup.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+rv:31 ... show more 2026-05-29 08:45:28 GET /old/backup.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+rv:31.0)+Gecko/20100101+Firefox/31.0 - 301 0 2026-05-29 08:45:28 GET /old/database.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(ZZ;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/135.0.0.0+Safari/537.36 - 301 0 2026-05-29 08:45:28 GET /old/1.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64;+WOW64;+rv:41.0)+Gecko/20100101+Firefox/140.0.2+(x64+de) - 301 0 2026-05-29 08:45:28 GET /archive/backup.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64;+rv:96.0)+Gecko/20100101+Firefox/96.0 - 301 0 ... show less	Web App Attack
🇬🇧 consul.to	2026-05-28 12:57:53 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇧🇷 Halux	2026-05-28 07:48:14 (2 weeks ago)	149.36.50.13 Web Application Firewall multiple violations	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 23:56:50 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 149.36.50.13 (unn-149-36-50-13.datapacket.com): ... show more (mod_security) mod_security (id:210730) triggered by 149.36.50.13 (unn-149-36-50-13.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 19:56:45.596022 2026] [security2:error] [pid 8530:tid 8530] [client 149.36.50.13:0] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|levabet.xyz\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "levabet.xyz"] [uri "/data/backup.sql"] [unique_id "aheEvUgQttAtz7bcA9T2agAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-05-27 06:05:37 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇧🇷 dominioz	2026-05-26 21:36:38 (2 weeks ago)	2026-05-26 14:25:58 GET /db/wp-content/mysql.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(ZZ;+Linux+i6 ... show more 2026-05-26 14:25:58 GET /db/wp-content/mysql.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(ZZ;+Linux+i686)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/135.0.0.0+Safari/537.36 - 404 5210 2026-05-26 21:36:15 GET /db/backup.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Fedora;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/140.0.0.0+Safari/537.36 - 301 0 2026-05-26 21:36:15 GET /sql/1.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+13_6)+AppleWebKit/605.1.15+(KHTML,+like+Gecko)+Version/17.0+Safari/605.1.15 - 301 0 2026-05-26 21:36:15 GET /old/database.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(X11;+Linux+x86_64;+rv:140.0)+Gecko/20100101+Firefox/140.0 - 301 0 ... show less	Web App Attack
🇧🇷 dominioz	2026-05-26 14:26:27 (2 weeks ago)	2026-05-26 14:25:24 GET /1.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Ubuntu;+Linux+i686)+AppleWebKi ... show more 2026-05-26 14:25:24 GET /1.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Ubuntu;+Linux+i686)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/140.0.0.0+Safari/537.36 - 404 5174 2026-05-26 14:25:24 GET /archive/backup.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Kubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/132.0.0.0+Safari/537.36 - 404 5200 2026-05-26 14:25:24 GET /data/1.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Ubuntu;+Linux+x86_64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/128.0.0.0+Safari/537.36 - 404 5184 2026-05-26 14:25:24 GET /backups/1.sql - - 149.36.50.13 HTTP/1.1 Mozilla/5.0+(Windows+NT+6.2;+rv:140.)+Gecko/20100101+Firefox/140. - 404 5190 ... show less	Web App Attack
Anonymous	2026-05-26 08:56:57 (2 weeks ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇬🇧 consul.to	2026-05-26 03:09:48 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇧🇷 Halux	2026-05-26 01:29:03 (2 weeks ago)	149.36.50.13 Web Application Firewall multiple violations	Hacking Web App Attack
🇧🇷 SOCBR	2026-05-25 22:19:36 (2 weeks ago)	IPS: watchTowr Security Scanner.	Port Scan
🇷🇺 ago.su	2026-05-23 23:32:29 (3 weeks ago)	F2B blocked nginx bad bot [otd.dev]	Hacking Web App Attack
Anonymous	2026-05-23 04:43:06 (3 weeks ago)	Rate limit bad session: 3 in 2s (Magento Site) (Botnet activity attributed to: Angara Technologies G ... show more Rate limit bad session: 3 in 2s (Magento Site) (Botnet activity attributed to: Angara Technologies Group / mikhail-smirnov-79830322) show less	Hacking

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇨🇳 183.166.94.133

🇧🇷 177.5.253.214

🇸🇬 103.250.11.80

🇫🇷 91.231.89.69

🇬🇧 87.236.176.182

🇳🇱 77.246.100.120

🇫🇷 62.210.142.172

🇯🇵 58.98.197.137

🇺🇸 57.141.0.46

🇷🇺 45.155.146.33

🇩🇪 45.133.74.175

🇺🇸 45.79.109.193

🇸🇬 43.128.122.242

🇻🇳 42.114.236.4

🇬🇧 35.203.211.160

🇺🇸 34.162.41.198

🇺🇸 34.53.98.64

🇮🇳 34.47.217.145

🇺🇸 20.64.106.19