JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.56.150.114

149.56.150.114 was found in our database!

This IP was reported 110 times. Confidence of Abuse is 13%: ?

13%

ISP	B.V., Dataprovider
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	crawl-149-56-150-114.dataproviderbot.com
Domain Name	dataprovider.com
Country	🇨🇦 Canada
City	Beauharnois, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.56.150.114

Whois 149.56.150.114

IP Abuse Reports for 149.56.150.114:

This IP address has been reported a total of 110 times from 35 distinct sources. 149.56.150.114 was first reported on July 3rd 2021, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-11 13:35:11 (6 days ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.114 (crawl-149-56-150-114.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.114 (crawl-149-56-150-114.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 09:35:04.451429 2026] [security2:error] [pid 9167:tid 9167] [client 149.56.150.114:34891] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.debosden.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.debosden.com"] [uri "/contactf/aacontact.html"] [unique_id "aiq5iKHpFESNdsR08vM4GAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇭🇺 kranem	2026-06-02 15:00:47 (2 weeks ago)	Triggered Cloudflare WAF from CA. Action taken: BLOCK ASN: 16276 (OVH SAS) Protocol: HTTP/1.1 (GET m ... show more Triggered Cloudflare WAF from CA. Action taken: BLOCK ASN: 16276 (OVH SAS) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2026-06-02T14:13:34Z User-Agent: Mozilla/5.0 (compatible; Dataprovider.com) show less	Bad Web Bot
🇪🇸 librebit	2026-04-18 08:35:17 (1 month ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-04-12 21:09:53 (2 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.114 (crawl-149-56-150-114.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.114 (crawl-149-56-150-114.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 12 17:09:45.093144 2026] [security2:error] [pid 1633003:tid 1633003] [client 149.56.150.114:40243] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.emeraldhighlands.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.emeraldhighlands.org"] [uri "/Board.html"] [unique_id "adwKGTAtIg5X4FT_AQumTAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 22:21:07 (4 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.114 (crawl-149-56-150-114.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.114 (crawl-149-56-150-114.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:21:01.582745 2026] [security2:error] [pid 27451:tid 27451] [client 149.56.150.114:42977] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.30daysout.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.30daysout.com"] [uri "/links/index.html"] [unique_id "aZD1TacW2khdZF2OR2ZllwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2026-02-01 22:22:53 (4 months ago)	trolling for resource vulnerabilities	Web App Attack
🇨🇭 blinx	2026-01-03 02:39:20 (5 months ago)	Suspicious activity detected by Modsecurity	Web Spam Port Scan Hacking Bad Web Bot Web App Attack
🇺🇸 Hazael	2025-12-02 12:30:32 (6 months ago)	SNOOPING - intended to probe for or exploit website vulnerabilities. From: Montreal, Canada - OVH Ho ... show more SNOOPING - intended to probe for or exploit website vulnerabilities. From: Montreal, Canada - OVH Hosting (AS16276 OVH SAS) - Agent: Mozilla/5.0 (compatible; Dataprovider.com) show less	Web App Attack
Anonymous	2025-10-31 07:35:06 (7 months ago)	Excessive crawling/scraping	Hacking Brute-Force
🇩🇪 Carsten	2025-09-28 08:24:17 (8 months ago)	bad web bot	Bad Web Bot
Anonymous	2025-08-20 08:57:20 (9 months ago)	Excessive crawling/scraping	Hacking Brute-Force
🇿🇦 Immersive	2025-08-17 00:51:20 (10 months ago)	Probing server for potential vulnerabilities	Hacking Web App Attack
🇬🇧 Greg Poulson	2025-08-08 09:09:32 (10 months ago)	Our website was hit by this DDOS at a rate of 23 in 5 minutes.	DDoS Attack Web Spam Brute-Force
🇨🇭 backslash	2025-08-03 06:00:41 (10 months ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇳🇱 exxos	2025-08-01 03:28:55 (10 months ago)	web exploit attacks	Web App Attack

Showing 1 to 15 of 110 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 172.253.6.213

🇺🇸 152.32.150.26

🇪🇸 87.220.168.100

🇧🇷 201.76.149.85

🇨🇴 186.1.185.54

🇳🇱 176.65.132.17

🇺🇸 149.18.10.16

🇺🇸 74.7.241.31

🇺🇸 54.145.201.186

🇮🇳 49.37.203.202

🇺🇸 47.205.128.240

🇲🇽 38.49.148.58

🇬🇧 35.203.211.110

🇨🇴 186.155.100.241

🇩🇪 185.44.132.5

🇮🇳 165.22.221.213

🇺🇸 138.113.23.170

🇩🇪 134.122.93.100

🇨🇳 124.115.67.126

🇩🇪 87.140.48.96