JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.36.50.176

149.36.50.176 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 0%: ?

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-149-36-50-176.datapacket.com
Domain Name	datacamp.co.uk
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.36.50.176

Whois 149.36.50.176

IP Abuse Reports for 149.36.50.176:

This IP address has been reported a total of 32 times from 19 distinct sources. 149.36.50.176 was first reported on July 7th 2024, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 el-brujo	2025-07-16 20:22:32 (10 months ago)	07/16/2025-22:22:31.890008 149.36.50.176 Protocol: 6 ET SCAN Rapid IMAPS Connections - Possible Brut ... show more 07/16/2025-22:22:31.890008 149.36.50.176 Protocol: 6 ET SCAN Rapid IMAPS Connections - Possible Brute Force Attack show less	Hacking
🇪🇸 el-brujo	2025-07-16 19:43:18 (10 months ago)	07/16/2025-21:43:18.540656 149.36.50.176 Protocol: 6 ET SCAN Suspicious inbound to mySQL port 3306	Hacking
🇩🇪 csk	2025-07-01 00:00:00 (11 months ago)	DDOS attack Port 443 webserver domain vrs.de	DDoS Attack
Anonymous	2025-02-13 13:50:14 (1 year ago)	wordpress-trap	Web App Attack
🇸🇬 pusathosting.com	2025-02-13 13:12:02 (1 year ago)	2ds22 bruteforce	Brute-Force Web App Attack
🇬🇧 Bytemark	2025-02-03 01:11:39 (1 year ago)	149.36.50.176 - - [03/Feb/2025:01:11:37 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 ... show more 149.36.50.176 - - [03/Feb/2025:01:11:37 +0000] "GET /wp-login.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 149.36.50.176 - - [03/Feb/2025:01:11:37 +0000] "POST /wp-login.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" 149.36.50.176 - - [03/Feb/2025:01:11:38 +0000] "POST /wp-login.php HTTP/1.1" 404 47 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack
Anonymous	2025-02-03 00:50:53 (1 year ago)	wordpress-trap	Web App Attack
🇷🇺 sdore	2025-01-28 19:01:31 (1 year ago)	2025-01-28T22:00:57.495198+03:00 SERV sshd-session[561543]: error: PAM: Authentication failure for r ... show more 2025-01-28T22:00:57.495198+03:00 SERV sshd-session[561543]: error: PAM: Authentication failure for root from 149.36.50.176 2025-01-28T22:00:57.495906+03:00 SERV sshd-session[561543]: Failed keyboard-interactive/pam for root from 149.36.50.176 port 38505 ssh2 2025-01-28T22:01:13.052646+03:00 SERV sshd-session[562200]: Connection from 149.36.50.176 port 32837 on 95.165.1.78 port 22 rdomain "" 2025-01-28T22:01:16.330423+03:00 SERV sshd-session[562200]: error: PAM: Authentication failure for root from 149.36.50.176 2025-01-28T22:01:16.331018+03:00 SERV sshd-session[562200]: Failed keyboard-interactive/pam for root from 149.36.50.176 port 32837 ssh2 2025-01-28T22:01:26.560120+03:00 SERV sshd-session[562354]: Connection from 149.36.50.176 port 45623 on 95.165.1.78 port 22 rdomain "" 2025-01-28T22:01:27.238114+03:00 SERV sshd-session[562354]: Invalid user administrator from 149.36.50.176 port 45623 2025-01-28T22:01:29.456663+03:00 SERV sshd-session[562354]: error: PAM: User not known to the u ... show less	Brute-Force SSH
🇩🇪 Sculk Ltd.	2025-01-28 14:33:47 (1 year ago)	Jan 28 17:33:34 localhost sshd[1335057]: Failed password for root from 149.36.50.176 port 35949 ssh2 ... show more Jan 28 17:33:34 localhost sshd[1335057]: Failed password for root from 149.36.50.176 port 35949 ssh2 Jan 28 17:33:45 localhost sshd[1335071]: Invalid user administrator from 149.36.50.176 port 39191 Jan 28 17:33:45 localhost sshd[1335071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.36.50.176 Jan 28 17:33:45 localhost sshd[1335071]: Invalid user administrator from 149.36.50.176 port 39191 Jan 28 17:33:47 localhost sshd[1335071]: Failed password for invalid user administrator from 149.36.50.176 port 39191 ssh2 ... show less	Brute-Force SSH
Anonymous	2025-01-27 19:42:50 (1 year ago)	Port Scanner	Port Scan
Anonymous	2025-01-27 19:25:27 (1 year ago)	Port Scanner	Port Scan
🇪🇸 el-brujo	2025-01-23 18:16:36 (1 year ago)	23/Jan/2025:19:16:35.689029 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client ... show more 23/Jan/2025:19:16:35.689029 +0100Apache-Error: [file "apache2_util.c"] [line 271] [level 3] [client 149.36.50.176] ModSecurity: Warning. String match within ".asa/ .asax/ .ascx/ .axd/ .backup/ .bak/ .bat/ .cdx/ .cer/ .cfg/ .cmd/ .com/ .config/ .conf/ .cs/ .csproj/ .csr/ .dat/ .db/ .dbf/ .dll/ .dos/ .htr/ .htw/ .ida/ .idc/ .idq/ .inc/ .ini/ .key/ .licx/ .lnk/ .log/ .mdb/ .old/ .pass/ .pdb/ .pol/ .printer/ .pwd/ .rdb/ .resources/ .resx/ .sql/ .swp/ .sys/ .vb/ .vbs/ .vbproj/ .vsdisco/ .webinfo/ .xsd/ .xsx/" at TX:extension. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1056"] [id "920440"] [msg "URL file extension is restricted by policy"] [data ".old"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "www.hostench.eu"] [uri "/wp-config.old"] [unique_i ... show less	Hacking Web App Attack
🇩🇪 charleyh08	2025-01-10 12:31:00 (1 year ago)	Example: 09/Jan/25 15:32:07 #7244856 CRITICAL 1 149.36.50.176 GET /index.php - Directory t ... show more Example: 09/Jan/25 15:32:07 #7244856 CRITICAL 1 149.36.50.176 GET /index.php - Directory traversal #1 - [GET:file = ../../../wp-config.php] 825 tries between 15:30:49 and 15:34:26 on 09/Jan/2025 to retrieve the wp-config.php file show less	Hacking Web App Attack
Anonymous	2025-01-09 13:12:34 (1 year ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
Anonymous	2025-01-09 10:27:56 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_MODSEC	Brute-Force SSH

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.224.194.3

🇰🇷 121.125.67.137

🇬🇧 104.28.161.139

🇧🇬 91.92.40.171

🇨🇦 85.217.149.61

🇮🇳 49.207.40.162

🇩🇪 213.209.159.225

🇧🇷 206.42.8.243

🇭🇰 199.45.154.121

🇳🇱 185.93.89.79

🇸🇬 178.128.114.231

🇺🇸 162.254.34.59

🇺🇸 147.185.132.107

🇨🇳 123.158.51.166

🇺🇸 96.91.137.106

🇮🇳 49.200.158.226

🇳🇱 45.154.98.239

🇹🇷 31.58.236.41

🇨🇦 15.235.96.208

🇰🇷 14.51.86.78