JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 169.150.196.109

169.150.196.109 was found in our database!

This IP was reported 70 times. Confidence of Abuse is 4%: ?

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-169-150-196-109.datapacket.com
Domain Name	datacamp.co.uk
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 169.150.196.109

Whois 169.150.196.109

IP Abuse Reports for 169.150.196.109:

This IP address has been reported a total of 70 times from 30 distinct sources. 169.150.196.109 was first reported on April 8th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-06-14 05:50:37 (1 day ago)	Form spam	Web Spam
🇫🇮 as211431.net	2026-03-30 04:18:01 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from NL. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (POST method) Endpoint: /xmlrpc.php UA: Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Safari/11.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇳🇱 ipoac.nl	2026-03-30 04:16:34 (2 months ago)	-:443 169.150.196.109 - - [30/Mar/2026:06:16:32 +0200] - "POST /xmlrpc.php HTTP/1.1" 404 6360 "-" "M ... show more -:443 169.150.196.109 - - [30/Mar/2026:06:16:32 +0200] - "POST /xmlrpc.php HTTP/1.1" 404 6360 "-" "Mozilla/5.0 (Windows NT 6.3; x86) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/73.0.0.0 Safari/537.36" show less	Bad Web Bot
🇬🇧 Smish	2026-03-30 04:16:02 (2 months ago)	HONEYPOT HIT --> Fail2ban time=1774844160 log=2026-03-30T05:16:00+01:00 ip=169.150.196.109 host=as21 ... show more HONEYPOT HIT --> Fail2ban time=1774844160 log=2026-03-30T05:16:00+01:00 ip=169.150.196.109 host=as210667.net method=POST uri="/xmlrpc.php" status=404 ua="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/73.0.0.0 Safari/537.36" ref="-" rid=58b8f5dd2bede8048465b020936fccfd show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 01:19:58 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 169.150.196.109 (unn-169-150-196-109.datapacket ... show more (mod_security) mod_security (id:210492) triggered by 169.150.196.109 (unn-169-150-196-109.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 20:19:53.960960 2026] [security2:error] [pid 11465:tid 11465] [client 169.150.196.109:34679] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hickorygrovecottages.com"] [uri "/.env"] [unique_id "aYqHucM9Azqj_miG5VTxtQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:46:01 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 169.150.196.109 (unn-169-150-196-109.datapacket ... show more (mod_security) mod_security (id:210492) triggered by 169.150.196.109 (unn-169-150-196-109.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:45:55.674182 2026] [security2:error] [pid 4494:tid 4494] [client 169.150.196.109:19932] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.philipjnielsen-drafting-design.com"] [uri "/.env"] [unique_id "aYp_w0ldRjYUWY-jd2yOUwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:14:31 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 169.150.196.109 (unn-169-150-196-109.datapacket ... show more (mod_security) mod_security (id:210492) triggered by 169.150.196.109 (unn-169-150-196-109.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:14:25.567104 2026] [security2:error] [pid 26836:tid 26836] [client 169.150.196.109:64368] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.arcdesign.me"] [uri "/.env"] [unique_id "aYp4YQaAOiAaW_Fle-VWFQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:57:53 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 169.150.196.109 (unn-169-150-196-109.datapacket ... show more (mod_security) mod_security (id:210492) triggered by 169.150.196.109 (unn-169-150-196-109.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:57:46.195703 2026] [security2:error] [pid 878609:tid 878651] [client 169.150.196.109:19815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "proto.wizart.org"] [uri "/.env"] [unique_id "aYp0eol0Zv13If8rJtj0bgAAAUM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2025-10-31 06:28:04 (7 months ago)	Blocked by UFW (TCP on 9101) Source port: 12681 TTL: 49 Packet length: 60 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 9101) Source port: 12681 TTL: 49 Packet length: 60 TOS: 0x08 This report (for 169.150.196.109) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2025-08-27 12:10:48 (9 months ago)	Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
Anonymous	2025-08-18 18:07:13 (9 months ago)	wordpress-trap	Web App Attack
🇳🇱 exxos	2025-08-18 16:03:01 (9 months ago)	http-no-verb	Hacking
Anonymous	2025-06-21 15:41:16 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-06-01 16:36:55 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-03-31 16:16:54 (1 year ago)	Ports: 110,995; Direction: 0; Trigger: LF_POP3D	Brute-Force SSH

Showing 1 to 15 of 70 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 194.5.82.44

🇵🇪 190.81.117.162

🇨🇳 171.83.13.237

🇺🇸 147.185.132.93

🇻🇳 116.110.156.0

🇨🇳 106.12.86.145

🇳🇱 45.148.10.183

🇳🇱 45.148.10.151

🇳🇱 5.187.35.142

🇮🇳 182.95.123.50

🇩🇪 178.105.200.202

🇲🇽 177.240.15.151

🇳🇱 176.65.148.120

🇩🇪 167.94.146.32

🇺🇸 157.230.62.174

🇧🇷 138.186.48.129

🇺🇸 109.105.210.65

🇯🇵 101.36.105.94

🇷🇴 92.118.39.62

🇺🇸 65.49.1.212