JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 198.46.148.6

198.46.148.6 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 0%: ?

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	198-46-148-6-host.colocrossing.com
Domain Name	hostpapa.com
Country	🇺🇸 United States of America
City	Buffalo, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 198.46.148.6

Whois 198.46.148.6

IP Abuse Reports for 198.46.148.6:

This IP address has been reported a total of 5 times from 5 distinct sources. 198.46.148.6 was first reported on October 27th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2024-11-28 06:19:34 (1 year ago)	198.46.148.6 - - [28/Nov/2024:07:19:34 +0100] "GET /static/%255c%255c..%255c/..%255c/..%255c/..%255c ... show more 198.46.148.6 - - [28/Nov/2024:07:19:34 +0100] "GET /static/%255c%255c..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/windows/win.ini HTTP/1.1" 404 5458 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36" ... show less	Hacking
🇩🇪 Alejandro Docasar	2024-11-27 21:53:23 (1 year ago)		Web App Attack
🇩🇪 ps-center	2024-11-27 02:49:52 (1 year ago)	SS1: Web Attack GET /node_modules/../../../../../etc/passwd	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-10-27 02:32:37 (1 year ago)	(mod_security) mod_security (id:211190) triggered by 198.46.148.6 (198-46-148-6-host.colocrossing.co ... show more (mod_security) mod_security (id:211190) triggered by 198.46.148.6 (198-46-148-6-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 26 22:31:18.744248 2024] [security2:error] [pid 12545:tid 12625] [client 198.46.148.6:48551] [client 198.46.148.6] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|autodiscover.kettlehill.net\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.kettlehill.net"] [uri "/index.php"] [unique_id "Zx2l9j4Zp7GZDS7DVHfdXQAAAVM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-10-27 01:00:20 (1 year ago)	\| A web attack returned code 200 (success).	Hacking SQL Injection Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.188.24.203

🇵🇰 153.117.9.33

🇰🇿 109.248.156.49

🇺🇸 100.51.6.16

🇺🇿 213.230.86.35

🇩🇪 207.154.230.149

🇱🇻 185.22.175.148

🇸🇬 152.32.218.244

🇺🇸 136.0.251.108

🇮🇳 122.180.250.161

🇻🇳 115.77.96.234

🇨🇳 113.142.60.99

🇨🇳 111.59.125.171

🇧🇩 103.87.214.162

🇻🇳 103.68.69.6

🇮🇩 103.67.80.61

🇺🇸 64.62.156.114

🇸🇬 47.84.126.137

🇳🇱 45.148.10.231

🇫🇮 45.130.127.41