JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.111.152.203

142.111.152.203 was found in our database!

This IP was reported 66 times. Confidence of Abuse is 58%: ?

58%

ISP	Ace Data Centers II, L.L.C.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	acedatacenter.com
Country	🇺🇸 United States of America
City	Houston, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.111.152.203

Whois 142.111.152.203

IP Abuse Reports for 142.111.152.203:

This IP address has been reported a total of 66 times from 39 distinct sources. 142.111.152.203 was first reported on March 8th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ChamberofCommerce.com	2026-06-17 12:54:55 (2 days ago)	Review System Spam	Web Spam Blog Spam
🇩🇪 grassau.com	2026-06-17 11:58:03 (2 days ago)	(wordpress) Failed wordpress login from 142.111.152.203 (US/United States/Texas/Houston/-)	Brute-Force
🇩🇪 LRob.fr	2026-06-17 04:30:20 (2 days ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇫🇷 Bruno	2026-06-16 02:00:35 (3 days ago)	142.111.152.203 - - [14/Jun/2026:12:13:42 +0200] "POST /wp-login.php HTTP/1.1" 200 11221 "-" "Mozill ... show more 142.111.152.203 - - [14/Jun/2026:12:13:42 +0200] "POST /wp-login.php HTTP/1.1" 200 11221 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 Version/17.0 Safari/605.1.15" 142.111.152.203 - - [14/Jun/2026:14:29:29 +0200] "POST /wp-login.php HTTP/1.1" 200 11222 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/129.0.0.0 Safari/537.36" 142.111.152.203 - - [15/Jun/2026:21:58:01 +0200] "POST /wp-login.php HTTP/1.1" 200 11222 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; rv:143.0) Gecko/20100101 Firefox/143.0" 142.111.152.203 - - [16/Jun/2026:00:21:12 +0200] "POST /wp-login.php HTTP/1.1" 200 11222 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 Version/17.0 Safari/605.1.15" 142.111.152.203 - - [16/Jun/2026:04:00:33 +0200] "POST /wp-login.php HTTP/1.1" 200 11221 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/129.0.0.0 Safari/537.36" ... show less	Web App Attack
🇩🇪 LRob.fr	2026-06-15 01:30:11 (4 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇫🇷 ELYAZ	2026-06-13 03:38:16 (6 days ago)	(y4) Failed scan -byebye- from 142.111.152.203 (US/United States/-): (CF_ENABLE)	Hacking
🇩🇪 FeG Deutschland	2026-06-11 17:48:34 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
🇩🇪 Hazzard	2026-06-10 22:23:38 (1 week ago)	(wordpress) Failed wordpress login from 142.111.152.203 (US/United States/Texas/Houston/-/[redacted] ... show more (wordpress) Failed wordpress login from 142.111.152.203 (US/United States/Texas/Houston/-/[redacted]): (CF_ENABLE) show less	Brute-Force
🇺🇸 WeekendWeb	2026-06-08 16:29:27 (1 week ago)	Wordpress Vunerability attack	Web App Attack
🇩🇪 FeG Deutschland	2026-05-23 09:06:02 (3 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇦🇺 screwlooseit.com.au	2026-05-19 21:23:23 (4 weeks ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN CN/China/-	Web App Attack
🇺🇸 nyt	2026-05-18 18:57:11 (1 month ago)	WP login POST blocked by WAF, WP Author Enumeration, WP User Enumeration	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-13 11:04:47 (1 month ago)	(mod_security) mod_security (id:240000) triggered by 142.111.152.203 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240000) triggered by 142.111.152.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 07:04:38.443043 2026] [security2:error] [pid 29577:tid 29577] [client 142.111.152.203:41287] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "87"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|esslinger.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "esslinger.us"] [uri "/images/stories/themes.php"] [unique_id "agRaxg7XpFcr2RSvpCiQUwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-05-04 07:30:05 (1 month ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇲🇹 Malta	2026-04-23 17:44:00 (1 month ago)	142.111.152.203 - - [23/Apr/2026:19:43:59 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0"	Hacking Web App Attack VPN IP

Showing 1 to 15 of 66 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 212.64.19.167

🇩🇪 193.124.20.229

🇨🇴 170.78.42.17

🇺🇸 162.216.150.51

🇮🇳 157.20.215.123

🇺🇸 143.198.238.87

🇺🇸 143.137.164.21

🇩🇪 139.59.136.184

🇺🇸 138.94.216.83

🇭🇰 103.197.71.98

🇺🇸 18.221.179.104

🇳🇱 176.65.139.94

🇺🇸 162.216.149.135

🇸🇬 152.42.227.77

🇺🇸 147.182.178.150

🇵🇭 139.135.222.162

🇺🇸 138.122.193.101

🇺🇸 138.122.193.65

🇺🇸 138.122.193.37

🇺🇸 138.94.216.168