JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 98.159.43.21

98.159.43.21 was found in our database!

This IP was reported 120 times. Confidence of Abuse is 42%: ?

42%

ISP	F.N.S. HOLDINGS LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	fns-holdings.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 98.159.43.21

Whois 98.159.43.21

IP Abuse Reports for 98.159.43.21:

This IP address has been reported a total of 120 times from 58 distinct sources. 98.159.43.21 was first reported on May 28th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 07:02:23 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 98.159.43.21 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 98.159.43.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 03:02:15.398773 2026] [security2:error] [pid 16359:tid 16359] [client 98.159.43.21:55609] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.mympizzas.com.mx\|F\|2"] [data ".google.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.mympizzas.com.mx"] [uri "/render/https:/www.google.com"] [unique_id "ai-jd4kYglb6RXqLD1k--gAAAIA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 04:34:00 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 98.159.43.21 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 98.159.43.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 00:32:59.291262 2026] [security2:error] [pid 30567:tid 30567] [client 98.159.43.21:25399] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.animatuevento.com.mx\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.animatuevento.com.mx"] [uri "/wp-content/uploads/dump.sql"] [unique_id "aiOi-2pkhk16W4AWWX7QUQAAAFc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 17:41:16 (1 week ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
Anonymous	2026-06-05 16:32:50 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted] 98.159.43.21 (TH/Thailand/-)	SQL Injection
🇪🇸 masterguru	2026-05-25 08:00:40 (3 weeks ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇳🇱 Site.eu	2026-05-25 06:38:12 (3 weeks ago)	Excessive 404/403 errors	Brute-Force
Anonymous	2026-05-17 04:36:49 (4 weeks ago)	Banned by Fail2Ban on server	Web App Attack
🇩🇪 ghostwarriors	2026-05-16 21:50:34 (4 weeks ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-05-16 14:13:02 (1 month ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-123) show less	Bad Web Bot
🇫🇷 dynamix	2026-05-10 21:47:34 (1 month ago)	Multiple WAF Violations	Web App Attack
🇫🇷 Octopuce	2026-05-10 09:45:10 (1 month ago)	Aggressive web search of vulnerable pages: /wp.php /fm.php /1.php /a.php /m.php /modules/ets_whatsap ... show more Aggressive web search of vulnerable pages: /wp.php /fm.php /1.php /a.php /m.php /modules/ets_whatsapp/security.php /templates/beez/ /templates/ ... show less	Web App Attack
🇫🇷 dynamix	2026-04-19 20:08:51 (1 month ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-04-19 14:17:20 (1 month ago)	[redacted] 98.159.43.21 - - [19/Apr/2026:16:17:12 +0200] "GET /wp-admin/css/colors/blue/navi.php HTT ... show more [redacted] 98.159.43.21 - - [19/Apr/2026:16:17:12 +0200] "GET /wp-admin/css/colors/blue/navi.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0" [redacted] 98.159.43.21 - - [19/Apr/2026:16:17:13 +0200] "GET /wp-admin/js/elementskit.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" [redacted] 98.159.43.21 - - [19/Apr/2026:16:17:15 +0200] "GET /wp-admin/css/colors/error.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" [redacted] 98.159.43.21 - - [19/Apr/2026:16:17:15 +0200] "GET /wp-admin/images/autoload_classmap.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" [redacted] 98.159.43.21 - - [19/Apr/2026:16:17:15 +0200] "GET /wp-admin/maint/repairs.php HTTP/1.1" 404 196 "-" "Mozilla/ ... show less	Hacking Web App Attack
🇳🇿 Antinson	2026-04-19 11:07:34 (1 month ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇺🇸 mawan	2026-04-15 10:41:57 (2 months ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack

Showing 1 to 15 of 120 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.223.235.43

🇺🇸 73.36.177.174

🇺🇸 72.18.80.230

🇮🇳 49.205.183.78

🇭🇰 46.20.109.223

🇺🇸 45.33.96.214

🇨🇳 36.32.104.89

🇹🇯 85.9.141.25

🇺🇸 66.132.172.209

🇭🇰 43.254.216.229

🇨🇳 112.86.225.186

🇸🇬 97.74.87.152

🇺🇸 45.33.96.174

🇨🇳 218.13.26.42

🇺🇸 216.218.206.91

🇸🇳 213.154.80.51

🇭🇰 199.45.154.118

🇸🇬 161.118.247.181

🇩🇪 77.110.107.31

🇵🇱 57.128.214.238