JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.56.150.102

149.56.150.102 was found in our database!

This IP was reported 113 times. Confidence of Abuse is 25%: ?

25%

ISP	B.V., Dataprovider
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	crawl-149-56-150-102.dataproviderbot.com
Domain Name	dataprovider.com
Country	🇨🇦 Canada
City	Beauharnois, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.56.150.102

Whois 149.56.150.102

IP Abuse Reports for 149.56.150.102:

This IP address has been reported a total of 113 times from 37 distinct sources. 149.56.150.102 was first reported on June 16th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 YF	2026-06-07 03:00:34 (1 day ago)	WordPress directory enumeration	Web App Attack
Anonymous	2026-05-12 16:14:55 (3 weeks ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇩🇪 Viveronese	2026-05-06 13:20:32 (1 month ago)	HTTP vulnerability scanning	Web App Attack
🇷🇸 Smel	2026-04-25 00:07:01 (1 month ago)	HTTP/80/443/8080 Unauthorized Probe, Hack -	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-04-23 06:01:03 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 149.56.150.102 (crawl-149-56-150-102.dataprovid ... show more (mod_security) mod_security (id:210492) triggered by 149.56.150.102 (crawl-149-56-150-102.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 23 02:00:55.073633 2026] [security2:error] [pid 9862:tid 9862] [client 149.56.150.102:43139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.adoniahenterprises.com"] [uri "/goober_.htaccess"] [unique_id "aem1l8E_0N2arQ5Ib3wVgwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 abuseiphack	2026-04-21 02:13:57 (1 month ago)	Automatic report for brute force attack	Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-17 20:00:38 (2 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.102 (crawl-149-56-150-102.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.102 (crawl-149-56-150-102.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 17 16:00:35.531432 2026] [security2:error] [pid 20812:tid 20825] [client 149.56.150.102:54743] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.hdtv55.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.hdtv55.com"] [uri "/contact.html"] [unique_id "abmy417oE7om8WFdAA39lwAAAMs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-18 21:00:26 (3 months ago)	149.56.150.102 - - [18/Feb/2026:21:00:23 +0000] "GET /sitemap.xml HTTP/1.0" 404 4384 "-" "Mozilla/5. ... show more 149.56.150.102 - - [18/Feb/2026:21:00:23 +0000] "GET /sitemap.xml HTTP/1.0" 404 4384 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.102 - - [18/Feb/2026:21:00:25 +0000] "GET /ads.txt HTTP/1.0" 404 4384 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.102 - - [18/Feb/2026:21:00:25 +0000] "GET /llms.txt HTTP/1.0" 404 4384 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.102 - - [18/Feb/2026:21:00:26 +0000] "GET /humans.txt HTTP/1.0" 404 4384 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" ... show less	Web App Attack
Anonymous	2026-02-10 13:01:51 (3 months ago)	PAD: No_Ref detected	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-16 03:21:04 (5 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.102 (crawl-149-56-150-102.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.102 (crawl-149-56-150-102.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 15 22:20:57.460205 2025] [security2:error] [pid 6794:tid 6794] [client 149.56.150.102:37881] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.billdavidow.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.billdavidow.com"] [uri "/previous.html"] [unique_id "aUDQGcQUmJRfDDLNp99DRwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-12-08 09:19:54 (5 months ago)	IM360 WAF: Interaction with fake plugin MV:/wp-content/plugins/easy-themes-manager/script.js	Web App Attack
🇺🇸 Anthony Trimble	2025-12-07 17:20:38 (6 months ago)	Probe for vulnerabilities. Path attempted: /security	Web App Attack
🇺🇸 TPI-Abuse	2025-11-21 03:28:00 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 149.56.150.102 (crawl-149-56-150-102.dataprovid ... show more (mod_security) mod_security (id:210730) triggered by 149.56.150.102 (crawl-149-56-150-102.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 20 22:27:55.477658 2025] [security2:error] [pid 2708:tid 2708] [client 149.56.150.102:35161] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|caretakerspestcontrol.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "caretakerspestcontrol.com"] [uri "/JMRussell.com"] [unique_id "aR_cOyYyAmeaRI7YDH8XugAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 ketovoila.pl	2025-11-01 23:11:56 (7 months ago)	ketovoila.pl HONEYPOT traffic: count=19, paths=14; sample_path=www.ketovoila.pl/; UA=Mozilla/5.0 (co ... show more ketovoila.pl HONEYPOT traffic: count=19, paths=14; sample_path=www.ketovoila.pl/; UA=Mozilla/5.0 (compatible; Dataprovider.com); window=2025-11-01T22:45:21Z..2025-11-01T22:45:14Z show less	Port Scan Hacking Brute-Force
Anonymous	2025-09-02 16:02:42 (9 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 113 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.197.78.185

🇬🇧 213.166.84.42

🇺🇬 196.0.120.211

🇬🇧 194.50.235.138

🇮🇷 188.0.240.22

🇺🇸 144.172.100.186

🇨🇳 121.41.167.7

🇩🇪 95.91.232.214

🇬🇧 81.19.219.200

🇺🇸 66.132.186.236

🇦🇺 40.82.214.8

🇺🇸 2604:a880:400:d1:0:4:8c08:f001

🇬🇧 217.138.47.118

🇺🇸 205.210.31.71

🇬🇧 195.206.182.207

🇨🇳 182.124.180.170

🇮🇳 182.95.223.46

🇨🇳 180.153.236.14

🇳🇱 176.65.148.58

🇨🇦 159.203.25.248