JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 108.167.133.22

108.167.133.22 was found in our database!

This IP was reported 82 times. Confidence of Abuse is 0%: ?

ISP	Unified Layer
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46606
Hostname(s)	gator4166.hostgator.com
Domain Name	newfold.com
Country	🇧🇷 Brazil
City	Vinhedo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 108.167.133.22

Whois 108.167.133.22

IP Abuse Reports for 108.167.133.22:

This IP address has been reported a total of 82 times from 33 distinct sources. 108.167.133.22 was first reported on October 19th 2021, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-06-05 12:04:05 (1 year ago)	$f2bV_matches	Brute-Force
🇺🇸 raymarron.com	2025-06-04 23:44:49 (1 year ago)	HEAD /Backup.zip	Web App Attack
🇺🇸 SiliSoftware	2025-06-02 20:24:40 (1 year ago)	/Backup.zip	Web App Attack
🇬🇧 findlab	2025-05-27 11:20:01 (1 year ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
Anonymous	2025-05-24 15:27:44 (1 year ago)	[16:27:43] 0: Scanning for exploits - /backup.zip	Bad Web Bot Web App Attack
🇨🇭 Ribeye375	2025-05-23 04:01:01 (1 year ago)	HIPS fake-user-agent - Block tcp/0:65535	Port Scan Bad Web Bot
Anonymous	2025-05-19 10:51:24 (1 year ago)	Account archive download attempts	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-05-12 06:14:43 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 108.167.133.22 (gator4166.hostgator.com): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 108.167.133.22 (gator4166.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 12 02:14:38.700707 2025] [security2:error] [pid 3165530:tid 3165530] [client 108.167.133.22:32888] [client 108.167.133.22] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "verenacastle.com"] [uri "/wp-config.php.save"] [unique_id "aCGRzoFNlrcSUxnx2XVf-AAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 webbfabriken	2025-05-12 03:59:55 (1 year ago)	spam or other hacking activities reported by webbfabriken security servers Attack reported by Webbf ... show more spam or other hacking activities reported by webbfabriken security servers Attack reported by Webbfabriken Security API - WFSecAPI show less	Web Spam
🇺🇸 TPI-Abuse	2025-05-09 19:13:37 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 108.167.133.22 (gator4166.hostgator.com): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 108.167.133.22 (gator4166.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 09 15:13:33.876335 2025] [security2:error] [pid 28285:tid 28285] [client 108.167.133.22:38798] [client 108.167.133.22] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scrunchiebuttbikinis.com"] [uri "/wp-config.php~"] [unique_id "aB5T3Xv4wWPm62gGGEPDTgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-09 18:26:11 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 108.167.133.22 (gator4166.hostgator.com): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 108.167.133.22 (gator4166.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 09 14:26:06.828756 2025] [security2:error] [pid 1233304:tid 1233304] [client 108.167.133.22:34830] [client 108.167.133.22] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.woodwindstar.com"] [uri "/wp-config.php.bak"] [unique_id "aB5IvgnYD3Szn5MCO-mnfgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ps-center	2025-05-09 14:57:18 (1 year ago)	MYH: Web Attack GET /wp-config.php~	Web Spam Hacking Bad Web Bot Web App Attack
🇮🇹 LTM	2025-05-09 06:20:01 (1 year ago)	WebServer - Attempts to exploit	Hacking Brute-Force Web App Attack
Anonymous	2025-05-09 00:13:23 (1 year ago)	Infostealer / login credentials theft attempt: /wp-config.php.bak	Hacking
Anonymous	2025-05-09 00:13:23 (1 year ago)	Infostealer / login credentials theft attempt: /wp-config.php.bak	Hacking

Showing 1 to 15 of 82 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.90.244.17

🇬🇧 195.206.182.201

🇺🇸 192.169.201.223

🇺🇦 185.17.125.36

🇺🇸 172.217.37.214

🇩🇪 167.94.145.27

🇫🇮 80.66.83.92

🇺🇸 71.6.233.149

🇺🇸 44.217.31.100

🇬🇧 37.10.113.217

🇬🇧 37.10.113.212

🇬🇧 5.226.140.44

🇬🇧 2a06:4880:4000::61

🇺🇸 216.25.89.139

🇭🇰 199.45.154.181

🇺🇸 195.184.76.158

🇺🇸 172.253.251.59

🇺🇸 157.245.177.115

🇩🇪 69.5.169.83

🇺🇸 67.227.108.80