AbuseIPDB » 67.227.42.238
67.227.42.238
This IP was reported 4 times. Confidence of
Abuse
is 0% : ?
ISP
code200 UAB
Usage Type
Data Center/Web Hosting/Transit
ASN
AS13332
Hostname(s)
67.227.42.238.rdns.ColocationAmerica.com
Domain Name
code200.global
Country
๐บ๐ธ
United States of America
City
Los Angeles, California
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 67.227.42.238 :
This IP address has been reported a total of
4
times from
4 distinct
sources.
67.227.42.238 was first reported on
March 26th 2025 , and the most recent report was
3 months ago
Old Reports:
The most recent abuse report for this IP address is from
3 months ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฆ๐ฑ
cheatmaster.store
2026-02-27 02:15:47
(3 months ago)
Automated report: This IP address has been identified as an active public open proxy.
Classification ...
show more
Automated report: This IP address has been identified as an active public open proxy.
Classification: Open Proxy | Spoofing | VPN/Anonymizer | Bad Web Bot.
Country: United States
Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic.
Reported by automated threat intelligence pipeline. Do not whitelist without manual verification.
show less
Web Spam
Port Scan
Web App Attack
๐ฉ๐ช
SCHAPPY
2025-07-19 00:50:10
(10 months ago)
IP was involved in L7 DDoS attack.
DDoS Attack
๐บ๐ธ
TPI-Abuse
2025-04-18 10:09:35
(1 year ago)
(mod_security) mod_security (id:210350) triggered by 67.227.42.238 (67.227.42.238.rdns.ColocationAme ...
show more
(mod_security) mod_security (id:210350) triggered by 67.227.42.238 (67.227.42.238.rdns.ColocationAmerica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 18 06:09:27.799311 2025] [security2:error] [pid 2773366:tid 2773366] [client 67.227.42.238:59175] [client 67.227.42.238] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.happyvalleynh.org|F|4"] [data "keep-alive, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.happyvalleynh.org"] [uri "/contact-us"] [unique_id "aAIk1982xg0dBWdOv9sl4QAAABQ"], referer: https://www.happyvalleynh.org/contact-us
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
rafamiga
2025-03-26 23:25:00
(1 year ago)
67.227.42.238:50098 [26/Mar/2025:23:25:15.976] in~~ nomatch/<NOSRV> 0/-1/-1/-1/0 503 216 SC 94/94/0/ ...
show more
67.227.42.238:50098 [26/Mar/2025:23:25:15.976] in~~ nomatch/<NOSRV> 0/-1/-1/-1/0 503 216 SC 94/94/0/0/0 {US|www.*.pl||Go-http-client/1.1} "GET https://www.*.pl/forum/index.php?topic=+or+1%3D%28SELECT+1+FROM+%28SELECT+COUNT%28%2A%29%2C+CONCAT%28%28SELECT+%28SELECT+CONCAT%28CAST%28VERSION%28%29+AS+CHAR%29%2C0x7e%29%29%29%2C+FLOOR%28RAND%280%29+%2A+2%29%29+x+FROM+INFORMATION_SCHEMA.TABLES+GROUP+BY+x%29+a%29+and+1%3D1 HTTP/2.0"
show less
Port Scan
Hacking
SQL Injection
Showing 1 to
4
of 4 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: