JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 98.102.204.158

98.102.204.158 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 0%: ?

ISP	Charter Communications Inc
Usage Type	Fixed Line ISP
ASN	AS10796
Hostname(s)	syn-098-102-204-158.biz.spectrum.com
Domain Name	charter.com
Country	🇺🇸 United States of America
City	Lima, Ohio

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 98.102.204.158

Whois 98.102.204.158

IP Abuse Reports for 98.102.204.158:

This IP address has been reported a total of 34 times from 18 distinct sources. 98.102.204.158 was first reported on November 21st 2022, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 VHosting	2025-11-23 16:42:32 (7 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇷🇸 Smel	2024-11-25 12:49:22 (1 year ago)	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	Email Spam Hacking Brute-Force
🇩🇪 nyuuzyou	2024-11-25 01:01:25 (1 year ago)	Intensive scraping: /web?s=%22Thanks%20for%20installing%20Wikka%21%20This%20wiki%20runs%20on%20versi ... show more Intensive scraping: /web?s=%22Thanks%20for%20installing%20Wikka%21%20This%20wiki%20runs%20on%20version%22&country=id-id&scraper=yep. User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0. show less	Bad Web Bot
🇳🇱 Linuxmalwarehuntingnl	2024-07-01 10:52:13 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇺🇸 TPI-Abuse	2024-06-06 23:04:41 (2 years ago)	(mod_security) mod_security (id:240335) triggered by 98.102.204.158 (syn-098-102-204-158.biz.spectru ... show more (mod_security) mod_security (id:240335) triggered by 98.102.204.158 (syn-098-102-204-158.biz.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 06 19:04:34.799654 2024] [security2:error] [pid 434] [client 98.102.204.158:49057] [client 98.102.204.158] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 98.102.204.158 (+1 hits since last alert)\|www.bikinitweets.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.bikinitweets.com"] [uri "/xmlrpc.php"] [unique_id "ZmJAgoQDvlM9P3WRd5IxhQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-06-06 20:06:36 (2 years ago)	(mod_security) mod_security (id:240335) triggered by 98.102.204.158 (syn-098-102-204-158.biz.spectru ... show more (mod_security) mod_security (id:240335) triggered by 98.102.204.158 (syn-098-102-204-158.biz.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 06 16:06:31.969955 2024] [security2:error] [pid 8321] [client 98.102.204.158:51903] [client 98.102.204.158] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 98.102.204.158 (+1 hits since last alert)\|joevallone.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "joevallone.com"] [uri "/xmlrpc.php"] [unique_id "ZmIWxzJmxET1ucrcaSlK8gAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-06-06 14:16:17 (2 years ago)	(mod_security) mod_security (id:240335) triggered by 98.102.204.158 (syn-098-102-204-158.biz.spectru ... show more (mod_security) mod_security (id:240335) triggered by 98.102.204.158 (syn-098-102-204-158.biz.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 06 10:16:12.410456 2024] [security2:error] [pid 7811] [client 98.102.204.158:40230] [client 98.102.204.158] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 98.102.204.158 (+1 hits since last alert)\|www.penguinexpressmag.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.penguinexpressmag.com"] [uri "/xmlrpc.php"] [unique_id "ZmHErB3b4T8VfmvKooN7ugAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-06-06 13:17:59 (2 years ago)	(mod_security) mod_security (id:240335) triggered by 98.102.204.158 (syn-098-102-204-158.biz.spectru ... show more (mod_security) mod_security (id:240335) triggered by 98.102.204.158 (syn-098-102-204-158.biz.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 06 09:17:54.182519 2024] [security2:error] [pid 10320] [client 98.102.204.158:44857] [client 98.102.204.158] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 98.102.204.158 (+1 hits since last alert)\|drendels.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "drendels.com"] [uri "/xmlrpc.php"] [unique_id "ZmG3Ao_5U5lnwKkremAdVwAAACk"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2024-06-06 11:21:21 (2 years ago)	98.102.204.158 - - [06/Jun/2024:13:21:20 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; ... show more 98.102.204.158 - - [06/Jun/2024:13:21:20 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.6422.60 Safari/537.36" Brute-force password attempt show less	Hacking Brute-Force Web App Attack
🇳🇱 applemooz	2024-06-06 08:52:58 (2 years ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-06-06 06:35:13 (2 years ago)	(mod_security) mod_security (id:240335) triggered by 98.102.204.158 (syn-098-102-204-158.biz.spectru ... show more (mod_security) mod_security (id:240335) triggered by 98.102.204.158 (syn-098-102-204-158.biz.spectrum.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 06 02:35:09.284175 2024] [security2:error] [pid 25866] [client 98.102.204.158:34663] [client 98.102.204.158] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 98.102.204.158 (+1 hits since last alert)\|tigerpathteam.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "tigerpathteam.org"] [uri "/xmlrpc.php"] [unique_id "ZmFYnR-QiUkcYTJbIjczTgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇹 neo72	2024-06-06 05:40:28 (2 years ago)	Spam	Email Spam
Anonymous	2024-06-06 00:07:41 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇩🇪 FutureFm	2024-06-05 20:03:00 (2 years ago)	98.102.204.158 - - [05/Jun/2024:22:02:15 +0200] "POST /wp-login.php	Hacking Brute-Force Web App Attack
🇪🇸 10dencehispahard SL	2024-06-05 19:00:06 (2 years ago)	Unauthorized login attempts [ dovecot, wordpress-xmlrpc]	Brute-Force Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 40.160.67.166

🇳🇱 143.20.114.227

🇳🇱 107.6.151.170

🇺🇸 65.49.1.54

🇪🇸 5.182.83.231

🇮🇩 202.72.196.75

🇮🇹 188.219.104.210

🇩🇪 185.30.32.114

🇱🇹 91.224.92.127

🇺🇸 65.49.1.101

🇳🇱 45.148.10.151

🇯🇵 218.33.111.9

🇸🇪 176.10.197.168

🇺🇸 147.185.132.254

🇮🇳 103.191.198.149

🇮🇳 103.130.91.175

🇳🇱 45.148.10.152

🇸🇬 213.179.203.133

🇦🇷 190.244.39.224

🇩🇪 167.71.56.135