AbuseIPDB » 103.98.214.69

Check an IP Address, Domain Name, or Subnet

e.g. 3.238.118.27, microsoft.com, or 5.188.10.0/24

103.98.214.69 was found in our database!

This IP was reported 67 times. Confidence of Abuse is 100%: ?

100%

ISP	Kamatera Inc.
Usage Type	Data Center/Web Hosting/Transit
Domain Name	kamatera.com
Country	United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 103.98.214.69

Whois 103.98.214.69

IP Abuse Reports for 103.98.214.69:

This IP address has been reported a total of 67 times from 39 distinct sources. 103.98.214.69 was first reported on May 22nd 2023, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
charmicat	28 May 2023	AUTOMATED REPORT - suspicious request from 103.98.214.69: [Sun, 28 May 2023 04:53:57 -0400] GET /wp- ... show moreAUTOMATED REPORT - suspicious request from 103.98.214.69: [Sun, 28 May 2023 04:53:57 -0400] GET /wp-content/themes/seotheme/db.php?u HTTP/1.1 Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36 show less	Web App Attack
niceshops.com	28 May 2023	Web Attack ([28/May/2023:02:45:24.390] GET /wp-content/themes/seotheme/db.php?u)	Web App Attack
Donovan_DMC	26 May 2023	GET /wp-content/themes/seotheme/db.php?u - 103.98.214.69 (Mozlila/5.0 (Linux; Android 7.0; SM-G892A ... show moreGET /wp-content/themes/seotheme/db.php?u - 103.98.214.69 (Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36) [wp-content]: WordPress Content Scanner [php-scanner]: PHP Scanner show less	Bad Web Bot Web App Attack
Anonymous	26 May 2023	/wp-content/themes/seotheme/db.php?u	Web App Attack
mypatricks	26 May 2023	103.98.214.69 \| Port: 22086 \| DNS: 103.98.214.69 2023-05-26T14:06:23+08:00 Asia/Singapore \| Suspicio ... show more103.98.214.69 \| Port: 22086 \| DNS: 103.98.214.69 2023-05-26T14:06:23+08:00 Asia/Singapore \| Suspicious User Abuse Activity \| UA: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36 HTTP/1.1 443 POST \| URL: /ALFA_DATA/alfacgiapi/perl.alfa \| Ref: www.google.com \| Country: US/United States/-08:00 IP City: Chicago 7cd3d4f59bce86ea-ORD/Chicago, IL, United States 1 hits/0 secs Robots 3 show less	Web Spam Blog Spam Brute-Force Exploited Host Web App Attack
mawan	26 May 2023	Suspected of having performed illicit activity on LAX server.	Web App Attack
CryptoYakari	26 May 2023	103.98.214.69 - - [26/May/2023:04:13:36 +0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.0" 4 ... show more103.98.214.69 - - [26/May/2023:04:13:36 +0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.0" 404 28040 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.98.214.69 - - [26/May/2023:04:13:36 +0300] "POST /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.0" 404 27712 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.98.214.69 - - [26/May/2023:04:13:36 +0300] "POST /wp-plain.php HTTP/1.0" 404 27516 "www.google.com" "Mozilla/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36" 103.98.214.69 - - [26/May/2023:04:13:37 +0300] "GET /wp-content/themes/seotheme/db.php?u HTTP/1.0" 404 28040 "www.google.com" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; ... show less	Web Spam Blog Spam Bad Web Bot Web App Attack
SleepyHosting	25 May 2023	(mod_security) mod_security (id:400010) triggered by 103.98.214.69 (JP/Japan/-): 5 in the last 3600 ... show more(mod_security) mod_security (id:400010) triggered by 103.98.214.69 (JP/Japan/-): 5 in the last 3600 secs show less	Brute-Force
CryptoYakari	25 May 2023	103.98.214.69 - - [25/May/2023:22:02:36 +0300] "GET /wordpress HTTP/1.0" 404 27526 "-" "-" 103 ... show more103.98.214.69 - - [25/May/2023:22:02:36 +0300] "GET /wordpress HTTP/1.0" 404 27526 "-" "-" 103.98.214.69 - - [25/May/2023:22:02:36 +0300] "GET /wp HTTP/1.0" 404 27442 "-" "-" 103.98.214.69 - - [25/May/2023:22:02:37 +0300] "GET /blog HTTP/1.0" 404 27466 "-" "-" 103.98.214.69 - - [25/May/2023:22:02:38 +0300] "GET /new HTTP/1.0" 404 27454 "-" "-" 103.98.214.69 - - [25/May/2023:22:02:38 +0300] "GET /old HTTP/1.0" 404 27454 "-" "-" ... show less	Web Spam Blog Spam Bad Web Bot Web App Attack
mypatricks	25 May 2023	103.98.214.69 \| Port: 40028 \| DNS: 103.98.214.69 2023-05-25T15:59:56+00:00 UTC \| Unauthorized connec ... show more103.98.214.69 \| Port: 40028 \| DNS: 103.98.214.69 2023-05-25T15:59:56+00:00 UTC \| Unauthorized connect attempts \| UA: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36 HTTP/1.1 443 GET \| URL: / \| Ref: - \| Country: US/United States/-08:00 IP City: Chicago 7ccefd008fb910f0-ORD/Chicago, IL, United States 1 hits/0 secs Robots 0 show less	Web Spam Blog Spam Brute-Force Exploited Host Web App Attack
Anonymous	25 May 2023	(NGINX) Security rule triggered from 103.98.214.69 (US/United States/-): 5 in the last 3600 secs	Web App Attack
Hirte	25 May 2023	MYH: Web Attack GET /wp-content/themes/seotheme/db.php?u	Web Spam Hacking Bad Web Bot Web App Attack
www.blocklist.de	25 May 2023	[2023-05-25T14:20:13+00:00] Detected: 103.98.214.69 MYH: Web Attack: GET /wp-content/themes/seotheme ... show more[2023-05-25T14:20:13+00:00] Detected: 103.98.214.69 MYH: Web Attack: GET /wp-content/themes/seotheme/db.php?u [2023-05-24T17:52:08+00:00] Detected: 103.98.214.69 MYH: Web Attack: GET /wp-content/themes/seotheme/db.php?u [2023-05-22T23:09:17+00:00] Detected: 103.98.214.69 MYH: Web Attack: GET /wp-content/themes/seotheme/db.php?u ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.98.214.69 show less	Web Spam Blog Spam
el-brujo	25 May 2023	25/May/2023:16:23:03 +0200Apache-Error: [file "apache2_util.c"] [line 273] [level 3] [client 103.98. ... show more25/May/2023:16:23:03 +0200Apache-Error: [file "apache2_util.c"] [line 273] [level 3] [client 103.98.214.69] ModSecurity: Warning. Pattern match "(?:^\|=)\\\\\\\\s(?:{\|\\\\\\\\s\\\\\\\$\\\\\\\\s\|\\\\\\\\w+=(?:[^\\\\\\\\s]\|\\\\\\\\$.\|\\\\\\\\$.\|<.\|>.\|\\\\\\\\'.\\\\\\\\'\|\\\\".\\\\")\\\\\\\\s+\|!\\\\\\\\s\|\\\\\\\\$)\\\\\\\\s(?:'\|\\\\")(?:[\\\\\\\\?\\\\\\\\\\\\\\\\[\\\\\\\\]\\\\\\\\(\\\\\\\$\\\\\\\\-\\\\\\\\\|+\\\\\\\\w'\\\\"\\\\\\\\./\\\\\\\\\\\\\\\\]+/)?[\\\\\\\\\\\\\\\\'\\\\"](?:l[\\\\\\\\\\\\\\\\'\\\\"](?:s(?:[\\\\\\\\\\\\\\\\'\\\\"](?:b[\\\\\\\\\\\\\\\\'\\\\"]_[\\\\\\\\\\\\\\\\'\\\\"]r[\\\\\\\\\\\\\\\\'\\\\"]e[\\\\\\\\\\\\\\\\'\\\\"]l[\\\\\\\\\\\\\\\\' ..." at REQUEST_COOKIES:g. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "463"] [id "932150"] [msg "Remote Command Execution: Direct Unix Command Execution"] [data "Matched Data: echo found within REQUEST_COOKIES:g: echo Sp3ctra"] [severity "CRITICAL"] [ver "OWASP_C ... show less	Hacking
ghostwarriors	25 May 2023	Webpage scraping	Brute-Force Bad Web Bot Web App Attack