JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 98.159.36.130

98.159.36.130 was found in our database!

This IP was reported 90 times. Confidence of Abuse is 30%: ?

30%

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	logicweb.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 98.159.36.130

Whois 98.159.36.130

IP Abuse Reports for 98.159.36.130:

This IP address has been reported a total of 90 times from 43 distinct sources. 98.159.36.130 was first reported on October 24th 2023, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 nfsec.pl	2026-06-07 09:44:05 (2 weeks ago)	Detected: TCP scan on port: 8000 with flags: SYN	Port Scan
🇷🇺 Agrohim	2026-05-29 00:52:56 (3 weeks ago)	Gate Inet blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force
🇨🇿 vitex	2026-05-26 04:00:00 (3 weeks ago)	Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically cr ... show more Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically crawled git blame endpoints (/*/blame/commit/<hash>/file) across all commits of public repositories, causing server load of 17+ (normal: <2). Over 71,000 unique IPs involved. Attack window: 2026-05-26 03:30-06:37 UTC. Primary target: PureHTML/purezencart (9933 commits, 5065 files). Each blame request triggers expensive git operations; 30,000+ slow requests per hour. show less	DDoS Attack Bad Web Bot
🇩🇪 FeG Deutschland	2026-05-24 07:58:39 (4 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 28	Exploited Host Web App Attack
🇳🇱 Savvii	2026-05-11 13:35:33 (1 month ago)	20 attempts against mh-misbehave-ban on redirect	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-05-11 02:20:35 (1 month ago)	98.159.36.130 - - [11/May/2026:05:20:34 +0300] "GET /wp-content/plugins/excel-like-price-change-for- ... show more 98.159.36.130 - - [11/May/2026:05:20:34 +0300] "GET /wp-content/plugins/excel-like-price-change-for-woocommerce-and-wp-e-commerce-light/readme.txt HTTP/1.1" 404 708 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" 98.159.36.130 - - [11/May/2026:05:20:34 +0300] "GET /wp-content/plugins/wp-event-solution/readme.txt HTTP/1.1" 404 628 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Mobile/15E148 Safari/604.1" ... show less	Web App Attack
🇬🇧 consul.to	2026-05-11 02:19:43 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 Octopuce	2026-05-11 02:16:48 (1 month ago)	Aggressive web search of vulnerable pages: /wp-content/themes/statfort-new/include/lang_upload.php / ... show more Aggressive web search of vulnerable pages: /wp-content/themes/statfort-new/include/lang_upload.php /wp-content/themes/faith-theme/include/lang_ ... show less	Web App Attack
🇺🇸 nyt	2026-05-11 01:51:52 (1 month ago)	404 flood (16/60s)	Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-05-09 12:38:19 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 John Chrys.	2026-04-21 17:06:21 (2 months ago)	Apr 21 20:05:38 loki dovecot: pop3-login: Disconnected: Aborted login by logging out (auth failed, 1 ... show more Apr 21 20:05:38 loki dovecot: pop3-login: Disconnected: Aborted login by logging out (auth failed, 1 attempts in 4 secs): user=<[email protected]>, method=PLAIN, rip=98.159.36.130, lip=139.162.162.70, session=<B2JnbPtPjJlinySC> Apr 21 20:06:00 loki dovecot: pop3-login: Disconnected: Aborted login by logging out (auth failed, 1 attempts in 13 secs): user=<[email protected]>, method=PLAIN, rip=98.159.36.130, lip=139.162.162.70, TLS, session=<Y6w1bftPeP5inySC> Apr 21 20:06:20 loki dovecot: pop3-login: Disconnected: Connection closed (auth failed, 1 attempts in 20 secs): user=<info>, method=PLAIN, rip=98.159.36.130, lip=139.162.162.70, TLS, session=<+Uf6bftP41hinySC> ... show less	Brute-Force Email Spam
🇦🇹 urnilxfgbez	2026-04-02 22:45:00 (2 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 EinfxchFinn	2026-04-01 22:26:00 (2 months ago)	Unauthorized connection attempt to port 9001 from 98.159.36.130	Port Scan
🇫🇷 security.rdmc.fr	2026-04-01 22:06:17 (2 months ago)	Port Scan Attack proto:TCP src:15126 dst:990	Port Scan
🇺🇸 sumnone	2026-04-01 22:03:56 (2 months ago)	Port probing on unauthorized port 123	Port Scan Hacking Exploited Host

Showing 1 to 15 of 90 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 223.204.217.84

🇩🇪 212.30.36.113

🇩🇪 172.217.34.16

🇫🇷 159.26.112.22

🇨🇳 223.109.255.172

🇨🇳 218.13.26.42

🇱🇻 81.30.98.144

🇺🇸 47.189.194.174

🇳🇱 45.142.193.53

🇬🇧 35.203.211.83

🇨🇦 4.204.184.210

🇩🇪 2.26.64.64

🇲🇦 196.65.30.29

🇵🇪 179.6.6.45

🇫🇮 147.185.133.52

🇺🇸 91.230.168.215

🇨🇦 20.63.8.12

🇪🇸 217.160.226.51

🇺🇸 199.104.120.84

🇫🇮 147.185.133.5