AbuseIPDB » 198.37.118.94
198.37.118.94
This IP was reported 6 times. Confidence of
Abuse
is 0% : ?
ISP
H4Y Technologies LLC
Usage Type
Data Center/Web Hosting/Transit
ASN
AS397423
Domain Name
h4y.us
Country
๐บ๐ธ
United States of America
City
Hapeville, Georgia
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 198.37.118.94 :
This IP address has been reported a total of
6
times from
5 distinct
sources.
198.37.118.94 was first reported on
July 22nd 2025 , and the most recent report was
10 months ago
Old Reports:
The most recent abuse report for this IP address is from
10 months ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐จ๐ด
j458rjqwi348fhjq46
2025-08-16 03:41:48
(10 months ago)
Malicious IP detected by WAF with anomaly score 10.0. Attack types: Exposure of environment file (.e ...
show more
Malicious IP detected by WAF with anomaly score 10.0. Attack types: Exposure of environment file (.env), Timestamp deviates by 1.2 hours, Suspicious short random path (+1 more). Activity: 373 requests to 10 URLs. Time: 2025-08-15 21:17:02 (America/Bogota). Origin: US. Source: Automated WAF log analysis.
show less
Hacking
Web App Attack
2025-08-07 00:50:24
(10 months ago)
$f2bV_matches
Brute-Force
๐บ๐ธ
FireballDWF
2025-07-31 08:55:11
(10 months ago)
404 NOT FOUND
Web App Attack
๐ป๐ณ
Xuan Can
2025-07-22 08:34:14
(11 months ago)
(WPLOGIN) WP Login Attack 198.37.118.94 (US/United States/-): 5 in the last 3600 secs; Ports: 80,443 ...
show more
(WPLOGIN) WP Login Attack 198.37.118.94 (US/United States/-): 5 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER; Logs: 198.37.118.94 - - [22/Jul/2025:15:34:07 +0700] "GET /wp-login.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0"
198.37.118.94 - - [22/Jul/2025:15:34:07 +0700] "GET /wp-login.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0"
198.37.118.94 - - [22/Jul/2025:15:34:07 +0700] "GET /wp-login.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0"
198.37.118.94 - - [22/Jul/2025:15:34:07 +0700] "GET /wp-login.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0"
198.37.118.94 - - [22/Jul/2025:15:34:07 +0700] "GET /wp-login.php HTTP/1.1" 404 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:123.0) Gecko/20100101 Firefox/123.0"
show less
Brute-Force
SSH
๐ป๐ณ
Xuan Can
2025-07-22 08:34:14
(11 months ago)
(mod_security) mod_security (id:6) triggered by 198.37.118.94 (US/United States/-): 1 in the last 36 ...
show more
(mod_security) mod_security (id:6) triggered by 198.37.118.94 (US/United States/-): 1 in the last 3600 secs; Ports: 80,443; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 22 15:34:07.982027 2025] [security2:error] [pid 7616:tid 7645] [client 198.37.118.94:0] ModSecurity: Access denied with connection close (phase 2). Pattern match "wp-login.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "62"] [id "6"] [severity "CRITICAL"] [hostname "sieuthimaychu.vn"] [uri "/wp-login.php"] [unique_id "aH9M_wE8kOcqo1E80hiyMwAAAEI"]
show less
Brute-Force
SSH
๐บ๐ธ
ipblock.com
2025-07-22 08:00:00
(11 months ago)
IPBlock protected site ID [4055-d][s=02].
Exploit request, vulnerability scanner.
Hacking
Bad Web Bot
Web App Attack
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: