JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.56.150.40

149.56.150.40 was found in our database!

This IP was reported 127 times. Confidence of Abuse is 10%: ?

10%

ISP	B.V., Dataprovider
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	crawl-149-56-150-40.dataproviderbot.com
Domain Name	dataprovider.com
Country	🇨🇦 Canada
City	Beauharnois, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.56.150.40

Whois 149.56.150.40

IP Abuse Reports for 149.56.150.40:

This IP address has been reported a total of 127 times from 41 distinct sources. 149.56.150.40 was first reported on June 24th 2021, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Oakley	2026-06-06 14:29:42 (5 hours ago)	(antiscrape_rule) Web application abuse detected 149.56.150.40 (CA/Canada/crawl-149-56-150-40.datapr ... show more (antiscrape_rule) Web application abuse detected 149.56.150.40 (CA/Canada/crawl-149-56-150-40.dataproviderbot.com): 5 in the last 900 secs show less	Hacking
🇬🇧 AvonleaConsulting	2026-04-07 18:34:45 (1 month ago)	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	Bad Web Bot Web App Attack
Anonymous	2026-04-01 04:18:21 (2 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇱🇹 juozaspo	2026-03-16 23:26:56 (2 months ago)	Automatic Report: Too much requests to non-existing pages in a very short time, auto-banned	Bad Web Bot Web App Attack
🇩🇪 Viveronese	2026-02-24 02:13:11 (3 months ago)	HTTP vulnerability scanning	Web App Attack
🇪🇸 librebit	2026-02-13 06:20:46 (3 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-02-09 16:39:55 (3 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.40 (crawl-149-56-150-40.dataprovider ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.40 (crawl-149-56-150-40.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 11:39:48.171406 2026] [security2:error] [pid 18834:tid 18834] [client 149.56.150.40:48117] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.radionicships.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.radionicships.com"] [uri "/review.shtml"] [unique_id "aYoN1C2HLhtId8DwxCEqzQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-31 11:07:12 (4 months ago)	(mod_security) mod_security (id:243420) triggered by 149.56.150.40 (crawl-149-56-150-40.dataprovider ... show more (mod_security) mod_security (id:243420) triggered by 149.56.150.40 (crawl-149-56-150-40.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 31 06:07:05.308993 2026] [security2:error] [pid 10893:tid 10893] [client 149.56.150.40:45101] ModSecurity: Access denied with code 403 (phase 3). Match of "validateByteRange 0-31" against "REQUEST_HEADERS:Accept-Encoding" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "6640"] [id "243420"] [rev "4"] [msg "COMODO WAF: Information disclosure vulnerability in Eclipse Jetty before 9.2.9.v20150224 (CVE-2015-2080)\|\|www.cortona.ws\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.cortona.ws"] [uri "/privacy_utilizzo_cookie_it.html"] [unique_id "aX3iWfgqCaqGHIF9bIn6bgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Antinson	2025-12-27 00:59:10 (5 months ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
Anonymous	2025-11-15 02:18:29 (6 months ago)	(apache-useragents) Failed apache-useragents trigger with match [Mozilla/5.0 (compatible; Dataprovid ... show more (apache-useragents) Failed apache-useragents trigger with match [Mozilla/5.0 (compatible; Dataprovider.com)] from 149.56.150.40 (NL/The Netherlands/crawl-149-56-150-40.dataproviderbot.com): 5 in the last 300 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 149.56.150.40 - - [15/Nov/2025:03:18:09 +0100] "GET / HTTP/1.1" 301 350 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.40 - - [15/Nov/2025:03:18:11 +0100] "GET / HTTP/1.1" 200 413906 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.40 - - [15/Nov/2025:03:18:14 +0100] "GET /robots.txt HTTP/1.1" 200 929 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.40 - - [15/Nov/2025:03:18:21 +0100] "GET /sitemap.xml HTTP/1.1" 302 922 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" 149.56.150.40 - - [15/Nov/2025:03:18:23 +0100] "GET /wp-sitemap.xml HTTP/1.1" 200 1941 "https://www.clasicococktails.nl/sitemap.xml" "Mozilla/5.0 (compatible; Dataprovider.com)" show less	Port Scan
Anonymous	2025-10-26 17:03:05 (7 months ago)	Excessive crawling/scraping	Hacking Brute-Force
🇳🇱 JCB	2025-10-22 06:47:00 (7 months ago)	149.56.150.40 - - [21/Oct/2025:15:40:22 +0300] "OPTIONS / HTTP/1.1" 403 199 "-" "Mozilla/5.0 (compat ... show more 149.56.150.40 - - [21/Oct/2025:15:40:22 +0300] "OPTIONS / HTTP/1.1" 403 199 "-" "Mozilla/5.0 (compatible; Dataprovider.com)" show less	Hacking Web App Attack
Anonymous	2025-10-21 07:23:12 (7 months ago)	Excessive crawling/scraping	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-10-10 07:17:33 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 149.56.150.40 (crawl-149-56-150-40.dataprovider ... show more (mod_security) mod_security (id:210730) triggered by 149.56.150.40 (crawl-149-56-150-40.dataproviderbot.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 10 03:17:27.844790 2025] [security2:error] [pid 28861:tid 28861] [client 149.56.150.40:42733] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.accordionstars.com\|F\|2"] [data ".accordionfactory.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.accordionstars.com"] [uri "/www.accordionfactory.com"] [unique_id "aOizBxjFyF7FBz2Cr4xV5AAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bogdanv	2025-09-07 04:40:27 (8 months ago)	$f2bV_matches	DDoS Attack Web Spam SQL Injection Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 127 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇭 220.158.232.135

🇨🇳 220.154.138.217

🇮🇷 193.151.140.91

🇷🇺 176.114.92.211

🇿🇦 173.194.171.218

🇺🇸 162.216.150.230

🇨🇳 117.50.186.80

🇨🇦 38.49.217.60

🇹🇼 35.236.191.117

🇬🇧 35.203.210.173

🇺🇸 216.25.89.108

🇺🇸 152.32.150.26

🇧🇩 103.136.212.36

🇻🇳 103.77.215.62

🇦🇴 102.213.34.99

🇨🇳 101.96.192.88

🇺🇸 98.159.37.39

🇳🇱 45.198.224.145

🇧🇩 45.120.115.150

🇸🇪 20.240.235.228