JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.56.150.1

149.56.150.1 was found in our database!

This IP was reported 82 times. Confidence of Abuse is 22%: ?

22%

ISP	B.V., Dataprovider
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	crawl-149-56-150-1.dataproviderbot.com
Domain Name	dataprovider.com
Country	🇨🇦 Canada
City	Beauharnois, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.56.150.1

Whois 149.56.150.1

IP Abuse Reports for 149.56.150.1:

This IP address has been reported a total of 82 times from 33 distinct sources. 149.56.150.1 was first reported on July 4th 2021, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 MarkGGN	2026-06-16 22:39:20 (4 days ago)	Web attack. 149.56.150.1 - - [17/Jun/2026:00:39:19 +0200] "GET /security.txt HTTP/2.0" 404 146 "-" " ... show more Web attack. 149.56.150.1 - - [17/Jun/2026:00:39:19 +0200] "GET /security.txt HTTP/2.0" 404 146 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.1 - - [17/Jun/2026:00:39:19 +0200] "GET /.well-known/security.txt HTTP/2.0" 403 146 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" show less	Web App Attack
🇺🇸 technojoe99	2026-05-23 06:00:11 (4 weeks ago)	Exploit scan from 149.56.150.1. GET /sitemap.xml HTTP/1.1.	Web App Attack
🇪🇸 librebit	2026-05-23 00:08:02 (4 weeks ago)	Brute force	Brute-Force
🇫🇮 YF	2026-05-10 03:40:32 (1 month ago)	WordPress directory enumeration	Web App Attack
🇺🇸 TPI-Abuse	2026-04-27 18:54:10 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 149.56.150.1 (crawl-149-56-150-1.dataproviderbo ... show more (mod_security) mod_security (id:210730) triggered by 149.56.150.1 (crawl-149-56-150-1.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 14:54:04.888258 2026] [security2:error] [pid 22423:tid 22423] [client 149.56.150.1:40907] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.myairbalance.org\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.myairbalance.org"] [uri "/nampac.com"] [unique_id "ae-wzFklpRUfGvVHDkmAGQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2026-03-18 21:40:09 (3 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇧🇪 micmor_asbl	2026-02-10 11:21:50 (4 months ago)	asw-Joomla User : try to access forms...	Hacking
🇺🇸 TPI-Abuse	2026-02-01 02:04:06 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 149.56.150.1 (crawl-149-56-150-1.dataproviderbo ... show more (mod_security) mod_security (id:210730) triggered by 149.56.150.1 (crawl-149-56-150-1.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 31 21:03:59.578409 2026] [security2:error] [pid 4372:tid 4372] [client 149.56.150.1:58409] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.angelaknightmusicproductions.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.angelaknightmusicproductions.com"] [uri "/contact/[email protected]"] [unique_id "aX60j6YvqSQRPB7tYRZrWQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 SCHAPPY	2025-12-14 16:41:29 (6 months ago)	Bad bot identified by user agent	Bad Web Bot
Anonymous	2025-12-09 12:04:37 (6 months ago)	[Tue Dec 09 13:04:34.271435 2025] [access_compat:error] [pid 3573572:tid 3573572] [client 149.56.150 ... show more [Tue Dec 09 13:04:34.271435 2025] [access_compat:error] [pid 3573572:tid 3573572] [client 149.56.150.1:0] AH01797: client denied by server configuration: /var/www/wordpress/loretlargent.info/llms.txt [Tue Dec 09 13:04:34.631348 2025] [access_compat:error] [pid 3573028:tid 3573028] [client 149.56.150.1:0] AH01797: client denied by server configuration: /var/www/wordpress/loretlargent.info/humans.txt [Tue Dec 09 13:04:34.977870 2025] [access_compat:error] [pid 3573188:tid 3573188] [client 149.56.150.1:0] AH01797: client denied by server configuration: /var/www/wordpress/loretlargent.info/ads.txt [Tue Dec 09 13:04:35.327536 2025] [access_compat:error] [pid 3573670:tid 3573670] [client 149.56.150.1:0] AH01797: client denied by server configuration: /var/www/wordpress/loretlargent.info/security.txt [Tue Dec 09 13:04:35.470345 2025] [access_compat:error] [pid 3573670:tid 3573670] [client 149.56.150.1:0] AH01797: client denied by server configuration: /var/www/wordpress/loretlargent.info/.wel ... show less	Web Spam Web App Attack
🇺🇸 TPI-Abuse	2025-11-22 10:51:03 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 149.56.150.1 (crawl-149-56-150-1.dataproviderbo ... show more (mod_security) mod_security (id:210730) triggered by 149.56.150.1 (crawl-149-56-150-1.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 22 05:50:58.949458 2025] [security2:error] [pid 7654:tid 7654] [client 149.56.150.1:47759] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.rodrandolph.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.rodrandolph.com"] [uri "/facebook.com"] [unique_id "aSGVktGRzLza0XfHFPDRNgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-08-10 05:43:13 (10 months ago)		Bad Web Bot
Anonymous	2025-08-07 04:24:58 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇮🇹 Progetto1	2025-08-06 12:49:03 (10 months ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
Anonymous	2025-07-22 20:57:10 (10 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 15 of 82 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇪 200.71.154.142

🇺🇸 192.81.229.179

🇸🇬 43.160.237.65

🇲🇽 187.251.123.104

🇲🇽 187.168.190.151

🇺🇸 172.253.220.213

🇭🇰 165.154.41.182

🇫🇮 147.185.133.115

🇺🇸 95.164.235.254

🇺🇸 95.164.235.185

🇺🇸 95.164.235.51

🇳🇱 85.11.167.11

🇺🇸 66.132.195.123

🇺🇸 44.45.153.237

🇬🇧 35.203.211.157

🇬🇧 35.203.210.222

🇬🇧 35.203.210.91

🇬🇧 34.105.241.18

🇲🇾 2001:e68:5485:3790:7dd4:4d97:c6ef:4564

🇳🇱 204.76.203.36