JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 107.175.119.241

107.175.119.241 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 4%: ?

ISP	RackNerd LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	107-175-119-241-host.colocrossing.com
Domain Name	racknerd.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 107.175.119.241

Whois 107.175.119.241

IP Abuse Reports for 107.175.119.241:

This IP address has been reported a total of 9 times from 5 distinct sources. 107.175.119.241 was first reported on February 16th 2025, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bigorre.org	2026-06-18 06:36:06 (6 days ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-16 11:53:22 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.175.119.241 (107-175-119-241-host.colocross ... show more (mod_security) mod_security (id:210730) triggered by 107.175.119.241 (107-175-119-241-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 06:53:14.772040 2026] [security2:error] [pid 21801:tid 21801] [client 107.175.119.241:42077] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.nbcnewsradio.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.nbcnewsradio.com"] [uri "/404.php.bak"] [unique_id "aWomqpqKj1_ARWxJsDbA3wAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-28 22:43:28 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 107.175.119.241 (107-175-119-241-host.colocross ... show more (mod_security) mod_security (id:210492) triggered by 107.175.119.241 (107-175-119-241-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 28 18:43:20.679267 2025] [security2:error] [pid 25348:tid 25348] [client 107.175.119.241:50223] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.nbcnewsradio.com"] [uri "/.env"] [unique_id "aQFHCIWTwMyA7ByZm4OZrgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-08-06 05:12:44 (10 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
🇺🇸 TPI-Abuse	2025-08-01 08:21:01 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 107.175.119.241 (107-175-119-241-host.colocross ... show more (mod_security) mod_security (id:210492) triggered by 107.175.119.241 (107-175-119-241-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 01 04:20:56.676022 2025] [security2:error] [pid 3331489:tid 3331579] [client 107.175.119.241:32779] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.kettlehill.com"] [uri "/.htaccess"] [unique_id "aIx46DqSEPOvsBY_LS5ouwAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-07-13 15:10:01 (11 months ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-05-30 21:59:15 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 107.175.119.241 (107-175-119-241-host.colocross ... show more (mod_security) mod_security (id:210730) triggered by 107.175.119.241 (107-175-119-241-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 30 17:59:09.113977 2025] [security2:error] [pid 738308:tid 738308] [client 107.175.119.241:33289] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.nbcnewsradio.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.nbcnewsradio.com"] [uri "/conn.php.bak"] [unique_id "aDoqLcaoOgnYlQoqSqLBYwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-01 02:49:00 (1 year ago)	(mod_security) mod_security (id:212620) triggered by 107.175.119.241 (107-175-119-241-host.colocross ... show more (mod_security) mod_security (id:212620) triggered by 107.175.119.241 (107-175-119-241-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 30 22:47:34.384246 2025] [security2:error] [pid 10928:tid 11088] [client 107.175.119.241:43097] [client 107.175.119.241] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|ftp.kettlehill.net\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /?post_type=post&s=\\x22><script>alert(/2wtzi4shz5dmky7mhbirtxhrpos/)</script>"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "ftp.kettlehill.net"] [uri "/"] [unique_id "aBLgxmhpHha-h36oCB5bYwAAAJY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-16 10:52:17 (1 year ago)	botnet	DDoS Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 223.181.86.178

🇯🇵 203.25.124.209

🇮🇳 202.9.122.54

🇩🇪 194.187.176.135

🇹🇷 194.62.118.70

🇦🇺 170.64.134.89

🇹🇼 111.242.247.80

🇳🇱 45.153.34.186

🇸🇬 35.187.231.181

🇧🇷 20.226.24.228

🇲🇦 160.174.129.232

🇧🇩 103.239.252.132

🇨🇳 36.134.126.74

🇹🇷 2.56.248.139

🇳🇱 176.65.139.234

🇨🇳 118.145.242.91

🇬🇧 83.136.251.36

🇮🇱 34.165.181.139

🇺🇸 185.198.240.88

🇺🇸 172.234.217.129