JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.56.150.194

149.56.150.194 was found in our database!

This IP was reported 99 times. Confidence of Abuse is 22%: ?

22%

ISP	B.V., Dataprovider
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	crawl-149-56-150-194.dataproviderbot.com
Domain Name	dataprovider.com
Country	🇨🇦 Canada
City	Beauharnois, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.56.150.194

Whois 149.56.150.194

IP Abuse Reports for 149.56.150.194:

This IP address has been reported a total of 99 times from 29 distinct sources. 149.56.150.194 was first reported on August 16th 2021, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 RootOPSOVH	2026-06-25 04:11:58 (14 hours ago)	GET /contact \| UA: Mozilla/5.0 (compatible; Dataprovider.com)	Web Spam Bad Web Bot Web App Attack
🇫🇮 YF	2026-05-27 01:01:39 (4 weeks ago)	Attaque distribuée subnet	DDoS Attack Web App Attack
🇬🇧 Mendip_Defender	2026-05-24 16:06:09 (1 month ago)	149.56.150.194 - - [24/May/2026:17:05:58 +0100] "GET /robots.txt HTTP/1.1" 404 1066 "-" "Mozilla/5.0 ... show more 149.56.150.194 - - [24/May/2026:17:05:58 +0100] "GET /robots.txt HTTP/1.1" 404 1066 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.194 - - [24/May/2026:17:06:06 +0100] "GET /ads.txt HTTP/1.1" 404 1066 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.194 - - [24/May/2026:17:06:06 +0100] "GET /llms.txt HTTP/1.1" 404 1066 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" ... show less	Hacking Web App Attack
🇦🇺 Block Rockin' Beats	2026-05-23 01:41:12 (1 month ago)	Scanning for exploitable scripts	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-05 09:28:11 (1 month ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.194 (crawl-149-56-150-194.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.194 (crawl-149-56-150-194.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 05:28:07.620163 2026] [security2:error] [pid 8071:tid 8071] [client 149.56.150.194:41223] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.todi.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.todi.org"] [uri "/privacy_utilizzo_cookie_it.html"] [unique_id "afm4J9m1boMgKFPeXI6uLgAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-07 02:43:40 (2 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.194 (crawl-149-56-150-194.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.194 (crawl-149-56-150-194.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 22:43:36.879626 2026] [security2:error] [pid 977291:tid 977291] [client 149.56.150.194:33639] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.artocratic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.artocratic.com"] [uri "/home/contact.html"] [unique_id "adRvWH9ldMpg34mly27irwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Skyrider	2026-04-03 09:51:21 (2 months ago)	149.56.150.194 - - [03/Apr/2026:11:51:06 +0200] "GET /faq/ HTTP/2.0" 403 12174 "-" "Mozilla/5.0 (com ... show more 149.56.150.194 - - [03/Apr/2026:11:51:06 +0200] "GET /faq/ HTTP/2.0" 403 12174 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.194 - - [03/Apr/2026:11:51:19 +0200] "GET /ads.txt HTTP/2.0" 404 113 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.194 - - [03/Apr/2026:11:51:19 +0200] "GET /security.txt HTTP/2.0" 404 113 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.194 - - [03/Apr/2026:11:51:20 +0200] "GET /.well-known/security.txt HTTP/2.0" 404 113 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.194 - - [03/Apr/2026:11:51:20 +0200] "GET /llms.txt HTTP/2.0" 404 113 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-21 07:01:36 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 149.56.150.194 (crawl-149-56-150-194.dataprovid ... show more (mod_security) mod_security (id:210730) triggered by 149.56.150.194 (crawl-149-56-150-194.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 21 03:01:32.097111 2026] [security2:error] [pid 22108:tid 22108] [client 149.56.150.194:41117] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.caretakerspestcontrol.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.caretakerspestcontrol.com"] [uri "/JMRussell.com"] [unique_id "ab5CTP98slxcn9vE2I66owAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-03-17 05:59:29 (3 months ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 09:15:05 (4 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.194 (crawl-149-56-150-194.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.194 (crawl-149-56-150-194.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 04:15:01.995125 2026] [security2:error] [pid 533181:tid 533196] [client 149.56.150.194:39355] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.quetzalcoatl2012.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.quetzalcoatl2012.net"] [uri "/quetzalcoatweet"] [unique_id "aZGOlW60-1Hi0nIwlB15EQAAAIw"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Origon	2026-02-02 05:20:50 (4 months ago)	http-probing - IP: 149.56.150.194 - time="2026-02-02T06:20:50+01:00" level=info msg="(555f66b4f6a74 ... show more http-probing - IP: 149.56.150.194 - time="2026-02-02T06:20:50+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-probing by ip 149.56.150.194 (CA/16276) : 4h ban on Ip 149.56.150.194" module=db show less	Web App Attack
🇺🇸 TPI-Abuse	2026-01-17 05:57:38 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 149.56.150.194 (crawl-149-56-150-194.dataprovid ... show more (mod_security) mod_security (id:210730) triggered by 149.56.150.194 (crawl-149-56-150-194.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 00:57:33.339328 2026] [security2:error] [pid 30487:tid 30487] [client 149.56.150.194:44245] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.flashbackmusicmemories.com\|F\|2"] [data ".40svocaltrio.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.flashbackmusicmemories.com"] [uri "/www.40svocaltrio.com"] [unique_id "aWskzffZOP_nsQtZT3-E5wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-16 06:24:02 (5 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.194 (crawl-149-56-150-194.dataprovid ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.194 (crawl-149-56-150-194.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 01:23:54.923978 2026] [security2:error] [pid 11120:tid 11120] [client 149.56.150.194:42409] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6649"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.lakewoodranchhairsalon.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.lakewoodranchhairsalon.com"] [uri "/team.php"] [unique_id "aWnZeq61RLlU1PVwYT5IzgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-01-04 13:48:27 (5 months ago)	Brute force	Brute-Force
Anonymous	2025-10-25 01:22:29 (8 months ago)	Excessive crawling/scraping	Hacking Brute-Force

Showing 1 to 15 of 99 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 190.122.133.143

🇵🇰 153.117.32.156

🇧🇷 205.210.31.200

🇬🇧 193.163.125.147

🇺🇦 185.235.218.214

🇰🇷 183.109.195.179

🇨🇳 182.92.92.149

🇮🇳 125.23.183.138

🇰🇷 121.142.87.218

🇮🇩 103.57.37.179

🇺🇸 64.72.74.162

🇧🇪 34.77.86.45

🇺🇸 23.226.209.142

🇧🇷 201.59.221.178

🇺🇸 147.224.176.79

🇧🇷 131.108.86.224

🇨🇳 118.123.1.35

🇧🇩 103.183.62.1

🇮🇳 98.70.50.166

🇨🇦 85.217.149.35