JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 98.20.248.12

98.20.248.12 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 4%: ?

ISP	WINDSTREAM COMMUNICATIONS LLC
Usage Type	Fixed Line ISP
ASN	AS7029
Hostname(s)	h12.248.20.98.dynamic.ip.windstream.net
Domain Name	onecommunications.net
Country	🇺🇸 United States of America
City	Nelson, Georgia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 98.20.248.12

Whois 98.20.248.12

IP Abuse Reports for 98.20.248.12:

This IP address has been reported a total of 3 times from 3 distinct sources. 98.20.248.12 was first reported on April 16th 2025, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 mypatricks	2026-06-27 05:36:05 (7 hours ago)	98.20.248.12 \| Port: 9221 \| DNS: h12.248.20.98.dynamic.ip.windstream.net 2026-06-27T13:36:04+08:00 A ... show more 98.20.248.12 \| Port: 9221 \| DNS: h12.248.20.98.dynamic.ip.windstream.net 2026-06-27T13:36:04+08:00 America/New_York \| DYN Data Center/Web Hosting/Transit Spam list \| UA: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Mobile Safari/537.36 HTTP/1.1 443 GET \| URL: /?fe9afbabb9cd8ef8dcca=d889a99becb \| Ref: - \| Country: US/United States/-08:00 IP City: Nelson a122174a38be456a-ATL/Atlanta, GA, United States 1 hits/0 secs Browser 1 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇺🇸 TPI-Abuse	2025-12-02 19:14:05 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 98.20.248.12 (h12.248.20.98.dynamic.ip.windstre ... show more (mod_security) mod_security (id:210350) triggered by 98.20.248.12 (h12.248.20.98.dynamic.ip.windstream.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 14:13:56.440315 2025] [security2:error] [pid 21553:tid 21553] [client 98.20.248.12:45182] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|agapeaccounting.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "agapeaccounting.com"] [uri "/sitemap.xml.gz"] [unique_id "aS86dPcZdXQjLIPYOWMHUAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oncord	2025-04-16 20:26:23 (1 year ago)	Form spam	Web Spam

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 163.61.226.107

🇮🇩 163.7.8.79

🇹🇷 109.228.206.83

🇱🇻 81.30.98.49

🇬🇧 2a06:4880:c000::f9

🇨🇦 216.81.8.167

🇲🇽 187.190.203.121

🇧🇬 185.253.160.7

🇩🇪 185.242.3.87

🇹🇭 171.100.67.250

🇺🇸 162.216.150.147

🇺🇸 129.121.77.134

🇵🇱 79.110.201.164

🇯🇲 72.252.32.102

🇺🇸 64.62.156.161

🇮🇳 49.207.244.28

🇬🇧 35.203.210.93

🇻🇳 27.79.0.180

🇻🇳 14.225.23.94

🇬🇧 5.226.140.57