JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 198.23.156.122

198.23.156.122 was found in our database!

This IP was reported 454 times. Confidence of Abuse is 80%: ?

80%

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	198-23-156-122-host.colocrossing.com
Domain Name	hostpapa.com
Country	🇺🇸 United States of America
City	Buffalo, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 198.23.156.122

Whois 198.23.156.122

IP Abuse Reports for 198.23.156.122:

This IP address has been reported a total of 454 times from 242 distinct sources. 198.23.156.122 was first reported on April 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 Scampi_ml	2026-06-10 13:40:07 (2 weeks ago)	15x HTTP 403/404 responses in short timeframe. Likely vulnerability scanner or brute-force attack on ... show more 15x HTTP 403/404 responses in short timeframe. Likely vulnerability scanner or brute-force attack on web application paths. show less	Bad Web Bot Web App Attack
🇦🇺 Mengda Wen	2026-05-23 05:43:35 (1 month ago)	Automated threat activity observed on 2026-05-23. Categories: bad_web_bot, hacking.	Bad Web Bot Hacking
🇧🇪 Saec	2026-05-18 06:32:37 (1 month ago)	Jarvis auto-ban: historical honeypot hit (boot import)	Port Scan Web App Attack
🇧🇪 Saec	2026-05-16 23:24:22 (1 month ago)	Jarvis auto-ban: historical honeypot hit (boot import)	Port Scan Web App Attack
🇩🇪 gadix	2026-05-14 11:53:16 (1 month ago)	[14/May/2026:13:53:14.820678 +0200] agW3qtZK1b8OLCe3Wd3ROQAAAMY 198.23.156.122 39086 127.0.0.1 7081 ... show more [14/May/2026:13:53:14.820678 +0200] agW3qtZK1b8OLCe3Wd3ROQAAAMY 198.23.156.122 39086 127.0.0.1 7081 [14/May/2026:13:53:14.821094 +0200] agW3qmK7e9ZZ8nJdh8myIwAAABQ 198.23.156.122 39102 127.0.0.1 7081 [14/May/2026:13:53:14.822270 +0200] agW3qtZK1b8OLCe3Wd3ROwAAAMo 198.23.156.122 39152 127.0.0.1 7081 ... show less	Web App Attack
🇩🇪 paissangroup	2026-05-14 09:03:11 (1 month ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-05-14 04:54:01 (1 month ago)	Unauthorized SSH login attempts	Brute-Force SSH
Anonymous	2026-05-14 03:25:54 (1 month ago)	(mod_security) mod_security triggered on hostname [redacted])	SQL Injection
Anonymous	2026-05-14 02:48:28 (1 month ago)	(PERMBLOCK) 198.23.156.122 (US/United States/198-23-156-122-host.colocrossing.com) has had more than ... show more (PERMBLOCK) 198.23.156.122 (US/United States/198-23-156-122-host.colocrossing.com) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇺🇸 antlac1	2026-05-14 02:11:09 (1 month ago)	crowdsecurity/http-sensitive-files	Brute-Force Web App Attack
🇬🇧 AvonleaConsulting	2026-05-13 20:10:37 (1 month ago)	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	Bad Web Bot Web App Attack
🇩🇪 Live Home Cams	2026-05-13 18:25:36 (1 month ago)	WebApp brute force attack detected. Multiple file scanning attempts from 198.23.156.122. Detected by ... show more WebApp brute force attack detected. Multiple file scanning attempts from 198.23.156.122. Detected by fail2ban. show less	Web App Attack Brute-Force
🇦🇺 2000cn.com.au	2026-05-13 18:05:20 (1 month ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇩🇪 ger-stg-sifi1	2026-05-13 18:03:49 (1 month ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇩🇪 LRob.fr	2026-05-13 18:00:03 (1 month ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot

Showing 1 to 15 of 454 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.176.29.12

🇮🇳 172.217.38.16

🇺🇸 165.154.235.9

🇺🇸 147.182.177.180

🇺🇸 142.248.80.123

🇮🇩 103.165.206.238

🇨🇳 101.126.132.12

🇩🇪 46.101.180.162

🇺🇸 44.16.195.203

🇨🇳 223.109.252.238

🇧🇪 207.175.3.136

🇺🇸 162.240.238.131

🇭🇰 152.32.189.59

🇱🇹 141.98.11.181

🇱🇹 141.98.11.171

🇱🇹 141.98.11.168

🇨🇳 101.126.131.70

🇩🇪 46.224.207.253

🇳🇱 45.148.10.147

🇺🇸 44.9.157.127