JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.3.48.175

192.3.48.175 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	192-3-48-175-host.colocrossing.com
Domain Name	colocrossing.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.3.48.175

Whois 192.3.48.175

IP Abuse Reports for 192.3.48.175:

This IP address has been reported a total of 10 times from 3 distinct sources. 192.3.48.175 was first reported on October 30th 2023, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-17 00:14:35 (4 months ago)	(mod_security) mod_security (id:211190) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.co ... show more (mod_security) mod_security (id:211190) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 19:14:09.665261 2026] [security2:error] [pid 25143:tid 25143] [client 192.3.48.175:40237] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|ftp.nbcnewsradio.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?option=com_jeformcr&view=../../../../../../../../etc/passwd%00"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.nbcnewsradio.com"] [uri "/index.php"] [unique_id "aWrUUVGkkATp3X43jo2cswAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-13 09:12:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.co ... show more (mod_security) mod_security (id:210492) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 13 04:12:23.285076 2025] [security2:error] [pid 23573:tid 23573] [client 192.3.48.175:47825] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.nbcnewsradio.com"] [uri "/.env.www"] [unique_id "aRWg9_xreUPcOzx4hTa41wAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-27 00:47:13 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.co ... show more (mod_security) mod_security (id:210492) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 20:47:10.577973 2025] [security2:error] [pid 404370:tid 404573] [client 192.3.48.175:38995] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whm.kettlehill.net"] [uri "/.env.dev.local"] [unique_id "aIV3Dsy-cZtwxEkIWL8tsgAAANQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 22:43:45 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.co ... show more (mod_security) mod_security (id:210492) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 18:43:42.491641 2025] [security2:error] [pid 3673785:tid 3673785] [client 192.3.48.175:59731] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.farmers123.com"] [uri "/static../.git/config"] [unique_id "aDjjHhC9wWApIEniSddFSgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-04 09:17:46 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.co ... show more (mod_security) mod_security (id:210492) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 04 05:17:40.530619 2025] [security2:error] [pid 3801730:tid 3801730] [client 192.3.48.175:34173] [client 192.3.48.175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.nbcnewsradio.com"] [uri "/.env.nbcnewsradio"] [unique_id "aBcwtImM-XipYVuGkhi7AQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-28 21:19:32 (1 year ago)	(mod_security) mod_security (id:212620) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.co ... show more (mod_security) mod_security (id:212620) triggered by 192.3.48.175 (192-3-48-175-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 28 16:19:19.933322 2025] [security2:error] [pid 12817:tid 12834] [client 192.3.48.175:36907] [client 192.3.48.175] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|kettlehill.kettlehill.com\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /wp-content/plugins/forget-about-shortcode-buttons/assets/js/fasc-buttons/popup.php?source=1&ver=1</script><script>alert(document.domain)</script>"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "kettlehill.kettlehill.com"] [uri "/wp-content/plugins/forget-about-shortcode-buttons/assets/js/fasc-buttons/popup.php"] [unique_id "Z8IoVw9D6RzDoFC4x6aOpgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-28 05:20:03 (1 year ago)	\| A web attack returned code 200 (success).	Hacking SQL Injection Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 08:10:25 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-02 06:37:16 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 20:31:48 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2001:470:1:332::20

🇰🇷 211.62.73.218

🇸🇬 178.128.123.153

🇺🇸 143.42.164.97

🇧🇷 138.255.157.62

🇨🇳 118.145.104.105

🇻🇳 116.99.171.33

🇻🇳 101.99.50.238

🇱🇹 81.30.98.144

🇷🇴 80.94.92.171

🇳🇱 45.148.10.147

🇺🇸 45.33.105.182

🇺🇸 18.191.78.29

🇶🇦 2001:1a10:18f9:2501:1507:c9b1:d345:ac81

🇺🇸 207.90.244.2

🇸🇬 172.69.176.90

🇭🇰 152.32.171.73

🇫🇷 86.208.222.61

🇫🇷 85.217.140.50

🇱🇹 81.30.98.158