JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 67.227.1.108

67.227.1.108 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 0%: ?

ISP	code200 UAB
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13332
Hostname(s)	67.227.1.108.rdns.ColocationAmerica.com
Domain Name	code200.global
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 67.227.1.108

Whois 67.227.1.108

IP Abuse Reports for 67.227.1.108:

This IP address has been reported a total of 5 times from 2 distinct sources. 67.227.1.108 was first reported on May 1st 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-16 16:33:50 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 67.227.1.108 (67.227.1.108.rdns.ColocationAmeri ... show more (mod_security) mod_security (id:210492) triggered by 67.227.1.108 (67.227.1.108.rdns.ColocationAmerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 11:33:35.084340 2026] [security2:error] [pid 9393:tid 9393] [client 67.227.1.108:51579] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.nbcnewsradio.com"] [uri "/.env.old"] [unique_id "aWpoX_X58rAmoIcCc8ZS8gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-12 16:58:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 67.227.1.108 (67.227.1.108.rdns.ColocationAmeri ... show more (mod_security) mod_security (id:210492) triggered by 67.227.1.108 (67.227.1.108.rdns.ColocationAmerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 11:58:35.299197 2025] [security2:error] [pid 3411:tid 3411] [client 67.227.1.108:56119] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nbcnewsradio.com"] [uri "/.svn/entries"] [unique_id "aRS8u9DuVZ1ghn7veO4CPgAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-22 00:30:11 (7 months ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-07-01 09:06:06 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 67.227.1.108 (67.227.1.108.rdns.ColocationAmeri ... show more (mod_security) mod_security (id:210730) triggered by 67.227.1.108 (67.227.1.108.rdns.ColocationAmerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 01 05:06:00.992324 2025] [security2:error] [pid 15240:tid 15259] [client 67.227.1.108:46273] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kettlehill.kettlehill.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.kettlehill.com"] [uri "/log.log"] [unique_id "aGOk-FEMdJRstfLTz5SaQgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-01 03:13:20 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 67.227.1.108 (67.227.1.108.rdns.ColocationAmeri ... show more (mod_security) mod_security (id:210492) triggered by 67.227.1.108 (67.227.1.108.rdns.ColocationAmerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 30 23:12:48.425477 2025] [security2:error] [pid 13509:tid 13531] [client 67.227.1.108:55739] [client 67.227.1.108] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.com"] [uri "/wp-config.php.orig"] [unique_id "aBLmsKZtnGr1kuZXaNSfVwAAAUQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 123.240.242.122

🇺🇸 47.89.247.18

🇬🇧 198.244.226.43

🇵🇱 188.125.33.54

🇲🇴 182.93.50.90

🇺🇸 162.216.149.133

🇵🇰 103.154.64.176

🇮🇳 103.100.7.197

🇳🇱 89.21.67.149

🇳🇱 77.83.39.241

🇮🇳 43.249.225.91

🇷🇴 2.57.122.238

🇷🇴 2.57.121.25

🇺🇸 216.180.246.146

🇸🇬 194.5.82.117

🇧🇬 185.255.212.3

🇧🇷 170.247.252.81

🇺🇸 162.216.150.97

🇺🇸 162.216.149.47

🇩🇪 162.19.243.145