JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.111.152.119

142.111.152.119 was found in our database!

This IP was reported 65 times. Confidence of Abuse is 55%: ?

55%

ISP	Ace Data Centers II, L.L.C.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	acedatacenter.com
Country	🇺🇸 United States of America
City	Houston, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.111.152.119

Whois 142.111.152.119

IP Abuse Reports for 142.111.152.119:

This IP address has been reported a total of 65 times from 38 distinct sources. 142.111.152.119 was first reported on March 25th 2025, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 foxxelabs	2026-06-22 04:46:14 (21 hours ago)	Automated report from FoxxeLabs Sentinel. Path probed: /wp-login.php \| Project: anseo \| Reason(s): K ... show more Automated report from FoxxeLabs Sentinel. Path probed: /wp-login.php \| Project: anseo \| Reason(s): Known exploit path: /wp-login.php \| User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/129.0.0.0 Safari/537.36 show less	Web App Attack
🇧🇷 Peregrine	2026-06-22 03:09:05 (23 hours ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 142.111.152.119 172.71.166.117 - - [19/Jun/2026:13:37:39 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 142.111.152.119 172.71.166.117 - - [19/Jun/2026:13:37:39 -0300] "GET /wp-login.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-06-21 03:08:55 (1 day ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 142.111.152.119 172.71.166.117 - - [19/Jun/2026:13:37:39 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 142.111.152.119 172.71.166.117 - - [19/Jun/2026:13:37:39 -0300] "GET /wp-login.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇳🇱 ipoac.nl	2026-06-19 21:45:47 (3 days ago)	2026-06-19T23:45:46.385995+02:00 ipoac.nl wordpress(-)-: XML-RPC authentication attempt for unknown ... show more 2026-06-19T23:45:46.385995+02:00 ipoac.nl wordpress(-)-: XML-RPC authentication attempt for unknown user 5fm from 142.111.152.119 show less	Web App Attack
🇧🇷 Peregrine	2026-06-19 16:37:42 (3 days ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 142.111.152.119 172.71.166.117 - - [19/Jun/2026:13:37:39 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 142.111.152.119 172.71.166.117 - - [19/Jun/2026:13:37:39 -0300] "GET /wp-login.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇩🇪 ghostwarriors	2026-06-07 04:20:15 (2 weeks ago)	Attempts against non-existent wp-login	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 03:30:35 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 142.111.152.119 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 142.111.152.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 23:30:22.716571 2026] [security2:error] [pid 18781:tid 18781] [client 142.111.152.119:60855] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abq4you.com"] [uri "/wp-includes/wp-config.php"] [unique_id "aiTlzk7sqN3vrXTP3DI8DwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 10:33:06 (2 weeks ago)	(mod_security) mod_security (id:949110) triggered by 142.111.152.119 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:949110) triggered by 142.111.152.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 06:32:59.042964 2026] [security2:error] [pid 8728:tid 8728] [client 142.111.152.119:29553] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "exorex.com"] [uri "/wp-includes/wp-config.php"] [unique_id "aiP3W31_Aw0_6kORSjAZ0gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-05 07:28:36 (2 weeks ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-195)	Hacking
🇺🇸 agenciahypelab.com.br	2026-06-02 11:23:19 (2 weeks ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇩🇪 FeG Deutschland	2026-06-01 07:29:33 (3 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 S.O.B.A. Dev.	2026-05-30 17:00:18 (3 weeks ago)	Threat Blocked by BeeHive from (ASN:212238) (Network:Datacamp Limited) (Host:soba.dev) (Method:GET) ... show more Threat Blocked by BeeHive from (ASN:212238) (Network:Datacamp Limited) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2026-05-30T17:00:18Z) show less	Brute-Force Web Spam Web App Attack
🇫🇷 ELYAZ	2026-05-30 09:43:29 (3 weeks ago)	(y4) Failed scan -byebye- from 142.111.152.119 (US/United States/-): (CF_ENABLE)	Hacking
🇮🇳 dineshskt4all	2026-05-16 22:23:27 (1 month ago)	[Sat May 16 22:23:20.316581 2026] [proxy_fcgi:error] [pid 382761:tid 129570875356864] [client 142.11 ... show more [Sat May 16 22:23:20.316581 2026] [proxy_fcgi:error] [pid 382761:tid 129570875356864] [client 142.111.152.119:0] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force
🇳🇿 Antinson	2026-05-14 06:24:41 (1 month ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot

Showing 1 to 15 of 65 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 144.225.187.181

🇩🇪 69.5.169.126

🇩🇪 212.132.120.41

🇧🇷 205.210.31.156

🇹🇼 198.235.24.65

🇫🇮 147.185.133.240

🇫🇮 147.185.133.124

🇰🇷 114.129.122.141

🇸🇬 43.98.179.235

🇨🇳 36.135.62.95

🇬🇧 35.203.210.241

🇹🇼 34.80.27.189

🇨🇴 8.242.143.139

🇨🇳 183.216.139.155

🇨🇳 183.197.80.228

🇨🇳 183.61.109.221

🇨🇳 182.129.203.226

🇪🇸 146.66.251.246

🇷🇴 141.98.83.93

🇱🇻 81.30.98.49