JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 136.0.118.101

136.0.118.101 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 0%: ?

ISP	Ace Data Centers II, L.L.C.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS27411
Hostname(s)	136-0-118-101.ips.acedatacenter.com
Domain Name	acedatacenter.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 136.0.118.101

Whois 136.0.118.101

IP Abuse Reports for 136.0.118.101:

This IP address has been reported a total of 5 times from 2 distinct sources. 136.0.118.101 was first reported on January 25th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-17 07:10:08 (4 months ago)	(mod_security) mod_security (id:211070) triggered by 136.0.118.101 (136-0-118-101.ips.acedatacenter. ... show more (mod_security) mod_security (id:211070) triggered by 136.0.118.101 (136-0-118-101.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 02:09:58.057711 2026] [security2:error] [pid 21238:tid 21238] [client 136.0.118.101:57151] ModSecurity: Access denied with code 403 (phase 1). Pattern match "," at REQUEST_HEADERS:Transfer-Encoding. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "38"] [id "211070"] [rev "1"] [msg "COMODO WAF: HTTP Request Smuggling Attack.\|\|cpcalendars.nbcnewsradio.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cpcalendars.nbcnewsradio.com"] [uri "/tmui/login.jsp"] [unique_id "aWs1xoIc1N2E_IttQ1aBOgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-11 21:16:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 136.0.118.101 (136-0-118-101.ips.acedatacenter. ... show more (mod_security) mod_security (id:210492) triggered by 136.0.118.101 (136-0-118-101.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 11 16:15:52.695124 2025] [security2:error] [pid 4556:tid 4556] [client 136.0.118.101:34381] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autoconfig.nbcnewsradio.com"] [uri "/.env.www"] [unique_id "aROniGPquSn2FF52avvDDgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-27 01:12:07 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 136.0.118.101 (136-0-118-101.ips.acedatacenter. ... show more (mod_security) mod_security (id:210492) triggered by 136.0.118.101 (136-0-118-101.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 21:12:01.565473 2025] [security2:error] [pid 404369:tid 404491] [client 136.0.118.101:50941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.net"] [uri "/.env.production"] [unique_id "aIV84Y1ApCwrT9-Kn8W-8QAAAJY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 23:04:13 (1 year ago)	(mod_security) mod_security (id:221260) triggered by 136.0.118.101 (136-0-118-101.ips.acedatacenter. ... show more (mod_security) mod_security (id:221260) triggered by 136.0.118.101 (136-0-118-101.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 19:04:06.607545 2025] [security2:error] [pid 3709401:tid 3709401] [client 136.0.118.101:59247] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)\|\|autodiscover.farmers123.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.farmers123.com"] [uri "/cgi-bin/test"] [unique_id "aDjn5jsvoEHHu5rK93M_7AAAAAQ"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-25 20:50:14 (1 year ago)	\| Shellshock attack detected	Hacking SQL Injection Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4002:c1b::121

🇲🇽 189.216.43.95

🇧🇴 181.188.176.245

🇳🇱 178.253.22.89

🇨🇳 125.94.106.195

🇫🇷 91.231.89.50

🇩🇪 69.5.169.211

🇫🇷 62.210.142.61

🇫🇷 62.171.177.192

🇺🇸 47.251.107.146

🇳🇱 45.148.10.152

🇰🇷 34.50.8.14

🇩🇪 3.79.243.218

🇧🇴 181.188.176.242

🇨🇳 111.113.88.72

🇧🇬 108.165.233.101

🇬🇧 87.236.176.87

🇺🇸 2607:f8b0:4002:c1b::120

🇧🇷 205.210.31.185

🇷🇺 195.122.253.45