JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.50.217.196

149.50.217.196 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 42%: ?

42%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-149-50-217-196.datapacket.com
Domain Name	datacamp.co.uk
Country	🇩🇰 Denmark
City	Copenhagen, Capital Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.50.217.196

Whois 149.50.217.196

IP Abuse Reports for 149.50.217.196:

This IP address has been reported a total of 149 times from 70 distinct sources. 149.50.217.196 was first reported on July 3rd 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 sockominfo	2026-06-19 15:00:58 (2 days ago)	Zimbra: Login failures from malicious IP: 149.50.217.196. Threat Score: 5.9/10 (MEDIUM). Confidence: ... show more Zimbra: Login failures from malicious IP: 149.50.217.196. Threat Score: 5.9/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 4.6/10 (Medium). CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 77%. MITRE ATT&CK: T1083 (File and Directory Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-19 14:00:53 (2 days ago)	Zimbra: Login failures from malicious IP: 149.50.217.196. Threat Score: 6/10 (MEDIUM). Confidence: 4 ... show more Zimbra: Login failures from malicious IP: 149.50.217.196. Threat Score: 6/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 4.6/10 (Medium). CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 77%. MITRE ATT&CK: T1083 (File and Directory Discovery). Tactic: TA0001. Freshness: Moderate. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-19 13:00:54 (2 days ago)	Zimbra: Login failures from malicious IP: 149.50.217.196. Threat Score: 6.1/10 (MEDIUM). Confidence: ... show more Zimbra: Login failures from malicious IP: 149.50.217.196. Threat Score: 6.1/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 4.6/10 (Medium). CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 77%. MITRE ATT&CK: T1083 (File and Directory Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-19 12:00:54 (2 days ago)	Zimbra: Login failures from malicious IP: 149.50.217.196. Threat Score: 6.3/10 (MEDIUM). Confidence: ... show more Zimbra: Login failures from malicious IP: 149.50.217.196. Threat Score: 6.3/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 4.6/10 (Medium). CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L. Bayesian Probability: 77%. MITRE ATT&CK: T1083 (File and Directory Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-19 11:00:10 (2 days ago)	Zimbra: Login failures from malicious IP: 149.50.217.196. Threat Score: 4.8/10 (MEDIUM). Reported by ... show more Zimbra: Login failures from malicious IP: 149.50.217.196. Threat Score: 4.8/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇳🇱 vibegamesnl	2026-06-16 12:00:00 (5 days ago)	Credential stuffing attack observed. Multiple malicious login attempts using usernames/passwords ass ... show more Credential stuffing attack observed. Multiple malicious login attempts using usernames/passwords associated with known data breaches. 1200 attempts recorded. show less	Brute-Force
🇺🇸 --KBXX--	2026-06-15 23:12:58 (6 days ago)	bfa, m365	Brute-Force
🇦🇺 MAGIC	2026-06-15 00:24:26 (1 week ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2026-06-14 14:10:12 (1 week ago)	Credential Stuffing attacks against Microsoft 365	Brute-Force
🇧🇪 Saec	2026-06-11 00:00:24 (1 week ago)	Jarvis auto-ban: CF honeypot path /wp-login.php (1× on saec.me)	Port Scan Web App Attack
🇺🇸 --KBXX--	2026-06-08 16:18:35 (1 week ago)	bfa, m365	Brute-Force
🇿🇦 rb-sys	2026-05-19 04:21:45 (1 month ago)	2026-05-19T04:21:44.565049+00:00 rbdns kernel: [UFW BLOCK] IN=eth0 OUT= MAC=bc:24:11:65:b4:ae:e8:eb: ... show more 2026-05-19T04:21:44.565049+00:00 rbdns kernel: [UFW BLOCK] IN=eth0 OUT= MAC=bc:24:11:65:b4:ae:e8:eb:d3:b1:0a:77:08:00 SRC=149.50.217.196 DST=102.214.10.82 LEN=52 TOS=0x00 PREC=0x00 TTL=50 ID=25106 DF PROTO=TCP SPT=33193 DPT=53 WINDOW=42700 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇪🇸 librebit	2026-05-18 11:49:30 (1 month ago)	Brute force	Brute-Force
🇩🇪 HandyTreff.de	2026-05-16 16:02:34 (1 month ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -36.769 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -36.769 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/148.0.0.0 Sa show less	Web App Attack Bad Web Bot
🇳🇱 i-turnradio.nl	2026-05-09 21:17:58 (1 month ago)	2026-05-09 @ 23:17:58 (CET) ~ Blocked for trying to access: /owa/auth.owa	Web App Attack

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 114.31.178.164

🇺🇸 66.132.195.105

🇺🇸 35.153.178.114

🇺🇸 20.64.105.115

🇺🇸 2607:f8b0:4004:1007::12d

🇧🇷 205.210.31.206

🇧🇷 185.100.215.213

🇧🇷 170.0.62.165

🇨🇳 124.88.174.143

🇻🇳 123.20.225.211

🇭🇰 118.26.39.178

🇮🇩 103.31.39.143

🇳🇱 81.19.216.82

🇺🇸 69.73.187.130

🇩🇪 43.228.157.8

🇸🇦 188.53.188.130

🇺🇸 172.236.228.39

🇭🇰 124.156.129.246

🇧🇷 69.6.251.43

🇳🇱 45.198.224.136