JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 198.37.118.216

198.37.118.216 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 0%: ?

ISP	H4Y Technologies LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS397423
Domain Name	h4y.us
Country	🇺🇸 United States of America
City	Hapeville, Georgia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 198.37.118.216

Whois 198.37.118.216

IP Abuse Reports for 198.37.118.216:

This IP address has been reported a total of 4 times from 4 distinct sources. 198.37.118.216 was first reported on March 9th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ne1for23	2026-04-13 11:46:53 (2 months ago)	Attempt to access invalid virtual host name (###.###.###.###). Typically used to access "internal" ... show more Attempt to access invalid virtual host name (###.###.###.###). Typically used to access "internal" resources improperly exposed externally and "protected" only by a lack of external DNS resolution. 198.37.118.216 - - [13/Apr/2026:11:46:53 +0000] "GET /.env HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.140 Safari/537.36" "-" show less	Hacking
🇺🇸 TPI-Abuse	2026-01-22 10:27:45 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 198.37.118.216 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 198.37.118.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 05:27:40.154244 2026] [security2:error] [pid 21736:tid 21736] [client 198.37.118.216:33829] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|intothebigempty.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "intothebigempty.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "aXH7nNKjRfEX-lm5T0ZxOgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇴 j458rjqwi348fhjq46	2025-08-08 17:07:43 (10 months ago)	Malicious IP detected by WAF with anomaly score 10.0. Attack types: Suspicious URL detected (extende ... show more Malicious IP detected by WAF with anomaly score 10.0. Attack types: Suspicious URL detected (extended rules), Timestamp deviates by 1.2 hours, Exposure of environment file (.env) (+1 more). Activity: 176 requests to 4 URLs. Period: 2025-08-08 11:52:44 - 2025-08-08 11:52:44 (America/Bogota). Origin: US. Source: Automated WAF log analysis. show less	Hacking Web App Attack
Anonymous	2025-03-09 18:05:48 (1 year ago)	Malicious activity detected	Hacking Web App Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 185.182.186.243

🇩🇪 154.16.6.56

🇮🇳 123.252.174.205

🇰🇷 115.71.233.62

🇳🇱 92.112.126.183

🇦🇺 45.132.225.22

🇺🇸 34.48.105.10

🇧🇦 195.222.57.190

🇵🇱 194.180.49.54

🇰🇷 110.14.190.221

🇫🇷 91.231.89.245

🇷🇺 46.151.242.210

🇸🇩 41.95.217.183

🇺🇸 20.168.124.0

🇬🇧 193.163.125.134

🇻🇳 171.231.185.120

🇰🇷 123.58.200.120

🇻🇳 103.118.28.17

🇺🇸 66.132.224.84

🇺🇸 45.61.187.220