JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.36.50.130

149.36.50.130 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 0%: ?

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-149-36-50-130.datapacket.com
Domain Name	datacamp.co.uk
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.36.50.130

Whois 149.36.50.130

IP Abuse Reports for 149.36.50.130:

This IP address has been reported a total of 12 times from 9 distinct sources. 149.36.50.130 was first reported on April 9th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2024-08-10 00:55:30 (1 year ago)	SuspiciousC Activity detected by FMBAD System 2024-08-10 03:55:30	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-10 00:13:57 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 149.36.50.130 (unn-149-36-50-130.datapacket.com ... show more (mod_security) mod_security (id:210492) triggered by 149.36.50.130 (unn-149-36-50-130.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 09 20:13:51.973565 2024] [security2:error] [pid 9673:tid 9673] [client 149.36.50.130:36395] [client 149.36.50.130] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rodandreelpiercam.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "Zrawv_wpx-tIzco5G0taMAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 solution.it	2024-08-09 21:27:34 (1 year ago)	[Fri Aug 09 23:27:33.580387 2024] [authz_core:error] [pid 1825] [client 149.36.50.130:43145] AH01630 ... show more [Fri Aug 09 23:27:33.580387 2024] [authz_core:error] [pid 1825] [client 149.36.50.130:43145] AH01630: client denied by server configuration: /var/www/html/internetriders.org/wp-config.phps show less	Brute-Force
🇨🇦 polycoda	2024-08-09 20:48:00 (1 year ago)	Requests hundreds of inexistent URLs and tries to get config files	Hacking Web App Attack
🇲🇾 syokadmin	2024-08-09 20:26:58 (1 year ago)	(mod_security) mod_security (id:77141007) triggered by 149.36.50.130 (DE/Germany/unn-149-36-50-130.d ... show more (mod_security) mod_security (id:77141007) triggered by 149.36.50.130 (DE/Germany/unn-149-36-50-130.datapacket.com): 1 in the last 3600 secs show less	Brute-Force
🇺🇸 TPI-Abuse	2024-08-09 15:55:29 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 149.36.50.130 (unn-149-36-50-130.datapacket.com ... show more (mod_security) mod_security (id:210492) triggered by 149.36.50.130 (unn-149-36-50-130.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 09 11:55:22.429238 2024] [security2:error] [pid 3914470:tid 3914485] [client 149.36.50.130:11775] [client 149.36.50.130] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ceol.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "ZrY76s5B-1Ee8DRmgPeDPwAAAEo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-08-09 14:32:35 (1 year ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-08-09 13:47:35 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 149.36.50.130 (unn-149-36-50-130.datapacket.com ... show more (mod_security) mod_security (id:210492) triggered by 149.36.50.130 (unn-149-36-50-130.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 09 09:47:30.436985 2024] [security2:error] [pid 2407:tid 2407] [client 149.36.50.130:65149] [client 149.36.50.130] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.argentinas.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "ZrYd8maRJVpKv-1mROsASAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2024-08-09 11:26:59 (1 year ago)	291 requests to *.php.bak	Brute-Force Bad Web Bot
Anonymous	2024-08-09 11:24:30 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_MODSEC	Brute-Force SSH
🇨🇭 🇨🇭 Hosting	2024-06-14 05:44:09 (2 years ago)	Used in participation of a (D)DoS attack	DDoS Attack
Anonymous	2024-04-09 19:59:58 (2 years ago)	Port Scan detected from 149.36.50.130 (DE/Germany/unn-149-36-50-130.datapacket.com). 11 hits in th ... show more Port Scan detected from 149.36.50.130 (DE/Germany/unn-149-36-50-130.datapacket.com). 11 hits in the last 50 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Apr 9 15:59:38 kernel: Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=149.36.50.130 DST=0.0.0.x LEN=5 show less	Port Scan

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 117.50.213.145

🇪🇸 85.209.181.40

🇰🇿 37.151.47.27

🇺🇸 34.162.36.76

🇮🇩 202.72.196.75

🇵🇾 186.17.52.38

🇨🇳 182.204.179.143

🇮🇩 180.247.44.195

🇩🇪 167.94.146.64

🇿🇦 160.226.206.174

🇷🇺 95.188.91.101

🇺🇸 65.49.1.199

🇺🇸 65.49.1.173

🇺🇸 64.207.225.55

🇺🇸 64.62.197.114

🇰🇼 62.150.237.107

🇳🇱 45.148.10.141

🇸🇬 43.159.51.254

🇮🇳 182.95.234.6

🇭🇰 152.32.172.177