JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.56.150.164

149.56.150.164 was found in our database!

This IP was reported 99 times. Confidence of Abuse is 1%: ?

ISP	B.V., Dataprovider
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	crawl-149-56-150-164.dataproviderbot.com
Domain Name	dataprovider.com
Country	🇨🇦 Canada
City	Beauharnois, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.56.150.164

Whois 149.56.150.164

IP Abuse Reports for 149.56.150.164:

This IP address has been reported a total of 99 times from 35 distinct sources. 149.56.150.164 was first reported on June 5th 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Hazael	2026-06-02 18:27:47 (2 weeks ago)	SNOOPING - intended to probe for or exploit website vulnerabilities. From: Montreal, Canada - OVH SA ... show more SNOOPING - intended to probe for or exploit website vulnerabilities. From: Montreal, Canada - OVH SAS (AS16276 OVH SAS) - Agent: Mozilla/5.0 (compatible; Dataprovider.com) show less	Web App Attack
🇩🇪 Kreapptivo	2026-04-17 08:30:36 (2 months ago)	[17/Apr/2026:10:30:30 +0200] Web-Request: "GET /.well-known/security.txt", User-Agent: "Mozilla/5.0 ... show more [17/Apr/2026:10:30:30 +0200] Web-Request: "GET /.well-known/security.txt", User-Agent: "Mozilla/5.0 (compatible; Dataprovider.com)" show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-21 20:01:19 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 149.56.150.164 (crawl-149-56-150-164.dataprovid ... show more (mod_security) mod_security (id:210730) triggered by 149.56.150.164 (crawl-149-56-150-164.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 16:01:14.440931 2026] [security2:error] [pid 994664:tid 994664] [client 149.56.150.164:40881] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.aavondalervstorage.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.aavondalervstorage.com"] [uri "/[email protected]"] [unique_id "ab75CitZPxGMROfjAk3eGgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-03-20 04:18:56 (2 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇳🇱 i-turnradio.nl	2026-02-05 21:21:12 (4 months ago)	2026-02-05 22:21:11 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇷🇸 Smel	2026-01-25 13:52:01 (4 months ago)	HTTP/80/443/8080 Unauthorized Probe, Hack -	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-01-03 00:29:38 (5 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.164 (crawl-149-56-150-164.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.164 (crawl-149-56-150-164.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 02 19:28:59.940906 2026] [security2:error] [pid 11777:tid 11777] [client 149.56.150.164:44541] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.pbdot3.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.pbdot3.com"] [uri "/science"] [unique_id "aVhiy1gTpR89eCWrKAUm1AAAAIo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-22 13:25:25 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 149.56.150.164 (crawl-149-56-150-164.dataprovid ... show more (mod_security) mod_security (id:210730) triggered by 149.56.150.164 (crawl-149-56-150-164.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 22 08:25:20.111200 2025] [security2:error] [pid 26390:tid 26390] [client 149.56.150.164:39171] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.brookspowell.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.brookspowell.com"] [uri "/mail to: [email protected]"] [unique_id "aUlGwPTw_W3pRmSYpdP3QwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-16 02:29:24 (7 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.164 (crawl-149-56-150-164.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.164 (crawl-149-56-150-164.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 15 21:29:21.159004 2025] [security2:error] [pid 8888:tid 8888] [client 149.56.150.164:56999] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.stewhist.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.stewhist.org"] [uri "/index.html"] [unique_id "aRk3AeFS5IzctKlZEyZ2uQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-25 11:50:54 (7 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 octageeks.com	2025-08-05 04:15:35 (10 months ago)	Wordpress malicious attack:[octa404]	Web App Attack
🇨🇭 backslash	2025-08-03 09:10:12 (10 months ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇳🇱 exxos	2025-08-02 08:10:01 (10 months ago)	HTTP1.x attacks	DDoS Attack
🇩🇪 conseilgouz	2025-07-21 12:15:51 (10 months ago)	ave-88 : Bloc AI bots=>/(Dataprovider)	Hacking
Anonymous	2025-07-21 11:54:28 (10 months ago)		Web App Attack

Showing 1 to 15 of 99 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 202.29.230.5

🇺🇸 162.216.150.130

🇺🇸 162.216.150.22

🇨🇳 101.26.28.250

🇫🇷 91.238.181.92

🇺🇸 72.17.34.38

🇨🇳 47.101.188.22

🇷🇴 2.57.121.25

🇮🇱 2.55.88.152

🇧🇷 2804:30c:841:f000:9004:d584:9523:6e50

🇩🇪 213.209.159.235

🇧🇷 179.179.216.199

🇺🇸 152.32.208.7

🇭🇰 152.32.186.240

🇬🇧 152.32.157.173

🇩🇰 130.226.254.28

🇨🇳 120.229.71.111

🇨🇳 118.145.214.235

🇺🇸 50.62.181.92

🇳🇱 45.148.10.157