JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.56.150.133

149.56.150.133 was found in our database!

This IP was reported 94 times. Confidence of Abuse is 0%: ?

ISP	B.V., Dataprovider
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	crawl-149-56-150-133.dataproviderbot.com
Domain Name	dataprovider.com
Country	🇨🇦 Canada
City	Montreal, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.56.150.133

Whois 149.56.150.133

IP Abuse Reports for 149.56.150.133:

This IP address has been reported a total of 94 times from 33 distinct sources. 149.56.150.133 was first reported on August 23rd 2021, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-03-31 03:08:03 (2 months ago)	Too many Status 40X (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-03-16 20:32:45 (2 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.133 (crawl-149-56-150-133.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.133 (crawl-149-56-150-133.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 16 16:32:38.946732 2026] [security2:error] [pid 2024:tid 2024] [client 149.56.150.133:36261] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.newisci.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.newisci.org"] [uri "/contact.html"] [unique_id "abho5qW2CXa2Y6wItnnDqgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇰 SaltySoftworks	2026-03-06 07:41:10 (3 months ago)	User agent spoofing	Spoofing
🇨🇭 backslash	2026-01-03 14:45:08 (5 months ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-31 00:40:23 (5 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.133 (crawl-149-56-150-133.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.133 (crawl-149-56-150-133.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 19:40:18.625265 2025] [security2:error] [pid 15137:tid 15137] [client 149.56.150.133:52881] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.delstarr.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.delstarr.com"] [uri "/content/privacy.shtml"] [unique_id "aVRw8jy2Eoa49p6-P9RghQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Kreapptivo	2025-12-17 07:11:16 (5 months ago)	[17/Dec/2025:08:11:15 +0100] Web-Request: "GET /.well-known/security.txt", User-Agent: "Mozilla/5.0 ... show more [17/Dec/2025:08:11:15 +0100] Web-Request: "GET /.well-known/security.txt", User-Agent: "Mozilla/5.0 (compatible; Dataprovider.com)" show less	Bad Web Bot Web App Attack
🇨🇭 backslash	2025-12-02 10:35:06 (6 months ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇩🇪 hbrks	2025-11-29 18:25:18 (6 months ago)	1 attack(s) detected, such as these: {"event":"dns_block","ip":"149.56.150.133","host":"api.dev.marc ... show more 1 attack(s) detected, such as these: {"event":"dns_block","ip":"149.56.150.133","host":"api.dev.marche-be.com","request":"GET / HTTP/1.1","user_agent":"Mozilla/5.0 (compatible; Dataprovider.com)","reason":"service:unknow","timestamp":"2025-11-29T18:25:18 00:00","logentry":"api.dev.marche-be.com 149.56.150.133 - - [29/Nov/2025:18:25:18 0000] GET / HTTP/1.1 444 0 - Mozilla/5.0 (compatible; Dataprovider.com) - matched:service:unknow"} * Report Details : https://p4u.xyz/Z8TDCUL0NKI/1 IP Details *: https://p4u.xyz/Z8TDCUL0NKI/2 show less	DNS Compromise DNS Poisoning
🇺🇸 TPI-Abuse	2025-11-20 21:31:25 (6 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.133 (crawl-149-56-150-133.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.133 (crawl-149-56-150-133.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 20 16:31:20.496646 2025] [security2:error] [pid 30374:tid 30374] [client 149.56.150.133:60377] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.stenbot.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.stenbot.com"] [uri "/index.html"] [unique_id "aR-IqJGzWGzKv2m3-KaPIQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇴 adalbertoreyes.org	2025-11-18 22:53:42 (6 months ago)	CategoryPortScan	Port Scan
🇺🇸 TPI-Abuse	2025-11-07 08:20:16 (7 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.133 (crawl-149-56-150-133.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.133 (crawl-149-56-150-133.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 07 03:20:11.625868 2025] [security2:error] [pid 14457:tid 14457] [client 149.56.150.133:36891] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|noviasaltovacio.com.mx\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "noviasaltovacio.com.mx"] [uri "/contactanos/"] [unique_id "aQ2ru5lD-qs9oOBZOf6CXgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-14 16:29:45 (8 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.133 (crawl-149-56-150-133.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.133 (crawl-149-56-150-133.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Sep 14 12:29:37.363474 2025] [security2:error] [pid 12046:tid 12046] [client 149.56.150.133:55091] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.mediterraneepassion.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.mediterraneepassion.com"] [uri "/egeepassion.com/goldenbookF.htm"] [unique_id "aMbtcUArpYNU1uibjG0eBQAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-08-09 05:45:30 (10 months ago)	[Sat Aug 09 07:45:27.484514 2025] [access_compat:error] [pid 2207250:tid 2207250] [client 149.56.150 ... show more [Sat Aug 09 07:45:27.484514 2025] [access_compat:error] [pid 2207250:tid 2207250] [client 149.56.150.133:0] AH01797: client denied by server configuration: /var/www/wordpress/loretlargent.info/security.txt [Sat Aug 09 07:45:27.866686 2025] [access_compat:error] [pid 2208331:tid 2208331] [client 149.56.150.133:0] AH01797: client denied by server configuration: /var/www/wordpress/loretlargent.info/.well-known/security.txt [Sat Aug 09 07:45:28.246087 2025] [access_compat:error] [pid 2208322:tid 2208322] [client 149.56.150.133:0] AH01797: client denied by server configuration: /var/www/wordpress/loretlargent.info/ads.txt [Sat Aug 09 07:45:29.556110 2025] [access_compat:error] [pid 2206872:tid 2206872] [client 149.56.150.133:0] AH01797: client denied by server configuration: /var/www/wordpress/loretlargent.info/llms.txt [Sat Aug 09 07:45:29.940398 2025] [access_compat:error] [pid 2207251:tid 2207251] [client 149.56.150.133:0] AH01797: client denied by server configuration: /var/www/wordpres ... show less	Web Spam Web App Attack
🇵🇱 strefapi_com	2025-07-04 15:45:46 (11 months ago)	Brute-force, web ...	Hacking Brute-Force Web App Attack
🇺🇸 SYSMarshal	2025-05-24 11:01:57 (1 year ago)	SysMarshal detection : RDP Brute-Force	DDoS Attack Brute-Force

Showing 1 to 15 of 94 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.175

🇮🇳 182.95.52.170

🇺🇸 148.153.56.170

🇺🇸 147.185.132.192

🇺🇸 147.185.132.150

🇺🇸 147.185.132.119

🇨🇳 111.113.89.227

🇮🇳 103.68.52.70

🇳🇱 45.156.87.147

🇮🇩 36.85.192.147

🇮🇪 34.243.157.46

🇺🇸 12.252.41.230

🇨🇳 202.46.62.11

🇰🇪 197.248.207.139

🇫🇷 185.177.72.54

🇺🇸 152.32.235.107

🇺🇸 147.185.132.141

🇨🇳 123.138.72.197

🇨🇳 106.75.169.149

🇺🇸 68.193.210.45