JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 198.46.137.97

198.46.137.97 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 12%: ?

12%

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	198-46-137-97-host.colocrossing.com
Domain Name	colocrossing.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 198.46.137.97

Whois 198.46.137.97

IP Abuse Reports for 198.46.137.97:

This IP address has been reported a total of 11 times from 6 distinct sources. 198.46.137.97 was first reported on August 27th 2023, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-27 05:46:07 (1 day ago)	Blocked by UFW (TCP on 3128) Source port: 41733 TTL: 51 Packet length: 60 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 3128) Source port: 41733 TTL: 51 Packet length: 60 TOS: 0x08 This report (for 198.46.137.97) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-14 11:10:02 (1 month ago)	\| A web attack returned code 200 (success).	Web App Attack Hacking SQL Injection
🇺🇸 TPI-Abuse	2026-04-08 21:22:01 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing. ... show more (mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 17:21:56.507907 2026] [security2:error] [pid 153684:tid 153684] [client 198.46.137.97:38039] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.nbcnewsradio.com"] [uri "/.env.bak"] [unique_id "adbG9JjSgR6HpiKkeiijqgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Sklurk	2026-02-23 08:00:19 (4 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-02-01 11:43:23 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing. ... show more (mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 06:38:42.912033 2026] [security2:error] [pid 483:tid 650] [client 198.46.137.97:41191] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.net"] [uri "/.env.prod"] [unique_id "aX87QgMxl-cQ0UzvOvSCOQAAAEQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-16 10:30:32 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing. ... show more (mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 05:30:26.990352 2026] [security2:error] [pid 6793:tid 6793] [client 198.46.137.97:41077] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nbcnewsradio.com"] [uri "/.git/config"] [unique_id "aWoTQrnfJgHksbxfJBshkQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 22:12:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing. ... show more (mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 17:12:45.182464 2025] [security2:error] [pid 16366:tid 16366] [client 198.46.137.97:40469] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.farmers123.com"] [uri "/.env.live"] [unique_id "aS9kXSbBoOKY2TWeRzhD7gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-01 06:32:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing. ... show more (mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 01:32:31.426473 2025] [security2:error] [pid 30768:tid 30788] [client 198.46.137.97:44917] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kettlehill.com"] [uri "/api/.env"] [unique_id "aS02f_5kVQ-rlVW6wYRzLQAAAVA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-01 14:39:54 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing. ... show more (mod_security) mod_security (id:210492) triggered by 198.46.137.97 (198-46-137-97-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 10:39:48.146451 2025] [security2:error] [pid 8590:tid 8613] [client 198.46.137.97:50309] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whm.kettlehill.net"] [uri "/.env.stage"] [unique_id "aQYbtHl6EaMmM6sQysSUGAAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oncord	2023-08-31 02:57:13 (2 years ago)	Form spam	Web Spam
Anonymous	2023-08-27 05:27:04 (2 years ago)	Malicious activity detected	Hacking Brute-Force

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.75

🇨🇴 186.146.235.58

🇨🇳 223.199.191.29

🇺🇸 205.210.31.71

🇺🇸 205.210.31.66

🇺🇸 205.210.31.6

🇧🇭 109.63.118.180

🇺🇸 45.79.190.10

🇺🇸 4.227.178.208

🇧🇷 205.210.31.138

🇺🇸 205.210.31.56

🇺🇸 205.210.31.5

🇩🇪 185.242.3.195

🇺🇸 158.94.187.63

🇺🇸 147.185.132.237

🇻🇳 125.212.244.35

🇮🇳 122.167.158.4

🇰🇷 119.209.12.20

🇨🇳 116.8.53.127

🇸🇮 102.220.160.38