JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.111.124.37

142.111.124.37 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	Ace Data Centers II, L.L.C.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS27411
Hostname(s)	142-111-124-37.ips.acedatacenter.com
Domain Name	acedatacenter.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.111.124.37

Whois 142.111.124.37

IP Abuse Reports for 142.111.124.37:

This IP address has been reported a total of 9 times from 3 distinct sources. 142.111.124.37 was first reported on June 1st 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-14 12:21:00 (1 month ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-01 20:33:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacente ... show more (mod_security) mod_security (id:210492) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 15:33:52.694502 2026] [security2:error] [pid 3621:tid 3708] [client 142.111.124.37:33459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.kettlehill.net"] [uri "/wp-config.php.html"] [unique_id "aaSisCGkUSIuGZsnub3-CgAAAJE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-16 09:59:50 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacente ... show more (mod_security) mod_security (id:210492) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 04:59:43.262570 2026] [security2:error] [pid 4750:tid 4750] [client 142.111.124.37:41851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.nbcnewsradio.com"] [uri "/.svn/wc.db"] [unique_id "aWoMD3ZLWBsOhP4OZ_SP4gAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-01 05:46:58 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacente ... show more (mod_security) mod_security (id:210730) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 00:46:24.645204 2025] [security2:error] [pid 26090:tid 26465] [client 142.111.124.37:36393] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kettlehill.com\|F\|2"] [data ".com.sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kettlehill.com"] [uri "/kettlehill.com.sql"] [unique_id "aS0rsAqR0geke5MRGl4CBAAAAJM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-12 11:40:35 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacente ... show more (mod_security) mod_security (id:210492) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 06:40:25.349546 2025] [security2:error] [pid 15952:tid 15952] [client 142.111.124.37:35925] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htpasswd" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autoconfig.nbcnewsradio.com"] [uri "/.htpasswd"] [unique_id "aRRyKRwgrW_NMiNrAIVIWwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-01 08:55:26 (10 months ago)	(mod_security) mod_security (id:210730) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacente ... show more (mod_security) mod_security (id:210730) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 01 04:55:23.199368 2025] [security2:error] [pid 3904811:tid 3904887] [client 142.111.124.37:51701] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.kettlehill.net\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.kettlehill.net"] [uri "/header.php.bak"] [unique_id "aIyA-1xdmxur7baAoEM5sgAAAkw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-06-22 16:30:04 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-06-02 00:31:19 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacente ... show more (mod_security) mod_security (id:210730) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 01 20:31:15.649838 2025] [security2:error] [pid 3449260:tid 3449260] [client 142.111.124.37:38229] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.nbcnewsradio.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.nbcnewsradio.com"] [uri "/login.php.bak"] [unique_id "aDzw076sTWF6kXeUb2MZfAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-01 06:46:57 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacente ... show more (mod_security) mod_security (id:210730) triggered by 142.111.124.37 (142-111-124-37.ips.acedatacenter.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 01 02:46:41.888431 2025] [security2:error] [pid 2636838:tid 2636927] [client 142.111.124.37:55339] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.kettlehill.net\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.kettlehill.net"] [uri "/php_errors.log"] [unique_id "aDv3UTvwu3ccjH5oiKEVywAAAJI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 176.50.187.26

🇮🇳 154.84.249.158

🇳🇱 46.19.69.102

🇳🇱 45.148.10.121

🇸🇬 45.82.78.102

🇺🇸 128.203.204.124

🇮🇳 122.170.98.139

🇸🇬 104.207.76.183

🇧🇬 79.124.59.78

🇺🇸 47.77.182.54

🇳🇱 45.148.10.152

🇺🇸 45.33.78.24

🇺🇸 44.220.185.114

🇲🇾 49.124.151.51

🇺🇸 216.25.89.87

🇳🇱 195.178.110.30

🇧🇷 152.32.200.117

🇵🇰 103.196.161.106

🇬🇧 195.96.139.127

🇨🇳 183.62.147.38