JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 198.46.246.11

198.46.246.11 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	198-46-246-11-host.colocrossing.com
Domain Name	colocrossing.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 198.46.246.11

Whois 198.46.246.11

IP Abuse Reports for 198.46.246.11:

This IP address has been reported a total of 9 times from 7 distinct sources. 198.46.246.11 was first reported on November 7th 2023, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-27 02:35:55 (4 months ago)	(mod_security) mod_security (id:221260) triggered by 198.46.246.11 (198-46-246-11-host.colocrossing. ... show more (mod_security) mod_security (id:221260) triggered by 198.46.246.11 (198-46-246-11-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 26 21:34:41.562497 2026] [security2:error] [pid 1914:tid 1940] [client 198.46.246.11:38429] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\$\\\$\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)\|\|kettlehill.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.net"] [uri "/cgi-bin/test-cgi"] [unique_id "aXgkQcPq0E0MroPkyLy2xwAAABQ"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Kurtbaby	2025-12-30 20:35:00 (5 months ago)	Part of a coordinated attack from many different source IPs that targeted our company's VPN Christma ... show more Part of a coordinated attack from many different source IPs that targeted our company's VPN Christmas Eve through the end of the 26th. show less	Hacking
🇺🇸 TPI-Abuse	2025-07-26 23:55:43 (10 months ago)	(mod_security) mod_security (id:221260) triggered by 198.46.246.11 (198-46-246-11-host.colocrossing. ... show more (mod_security) mod_security (id:221260) triggered by 198.46.246.11 (198-46-246-11-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 19:55:03.165686 2025] [security2:error] [pid 10867:tid 11120] [client 198.46.246.11:36835] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\$\\\$\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)\|\|staging.kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "staging.kettlehill.com"] [uri "/cgi-bin/test-cgi"] [unique_id "aIVq1w_rIjJN72fj-Yt4lQAAAM8"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 15:31:59 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 198.46.246.11 (198-46-246-11-host.colocrossing. ... show more (mod_security) mod_security (id:210730) triggered by 198.46.246.11 (198-46-246-11-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 11:31:52.151120 2025] [security2:error] [pid 2881540:tid 2881540] [client 198.46.246.11:37619] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.farmers123.com\|F\|2"] [data ".com.db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.farmers123.com"] [uri "/farmers123.com.db"] [unique_id "aDh96PcAwiXwgmfTGHy1qAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-02-28 11:30:06 (1 year ago)	\| A web attack returned code 200 (success).	Hacking SQL Injection Web App Attack
Anonymous	2024-12-30 06:13:28 (1 year ago)	$f2bV_matches	Brute-Force
Anonymous	2024-12-21 19:59:37 (1 year ago)	Malicious activity detected	Hacking Web App Attack
🇫🇮 nyuuzyou	2024-10-07 16:37:18 (1 year ago)	Intensive scraping: /web?s=%22Answer%20Questions%20or%20Ask%20a%20Question%22%20results&scraper=yand ... show more Intensive scraping: /web?s=%22Answer%20Questions%20or%20Ask%20a%20Question%22%20results&scraper=yandex. User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36. show less	Bad Web Bot
Anonymous	2023-11-07 07:17:36 (2 years ago)	Common attack or app scan event detected and blocked	Port Scan Hacking Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2601:ca:8200:7f60:4c2f:ede8:233c:7976

🇭🇰 220.246.47.169

🇺🇸 205.210.31.88

🇧🇷 170.79.61.171

🇺🇸 165.140.202.17

🇵🇪 161.132.37.31

🇺🇸 136.109.155.86

🇮🇳 103.88.76.27

🇫🇷 92.103.134.183

🇺🇸 52.20.198.190

🇳🇬 41.242.115.83

🇳🇱 5.61.209.43

🇷🇺 178.185.136.57

🇺🇸 135.237.126.135

🇮🇳 122.172.84.48

🇵🇰 103.156.153.48

🇸🇬 103.47.224.225

🇺🇸 98.148.133.31

🇩🇪 85.215.107.193

🇹🇼 59.120.92.169