JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 198.16.108.10

198.16.108.10 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 55%: ?

55%

ISP	FDCservers.net
Usage Type	Data Center/Web Hosting/Transit
ASN	AS30058
Domain Name	fdcservers.net
Country	🇳🇱 Netherlands
City	Lelystad, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 198.16.108.10

Whois 198.16.108.10

IP Abuse Reports for 198.16.108.10:

This IP address has been reported a total of 15 times from 10 distinct sources. 198.16.108.10 was first reported on June 7th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-14 06:06:59 (6 days ago)	Blocked by UFW (TCP on 56577) Source port: 31175 TTL: 110 Packet length: 52 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 56577) Source port: 31175 TTL: 110 Packet length: 52 TOS: 0x08 This report (for 198.16.108.10) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-13 06:49:25 (1 week ago)	[redacted] 198.16.108.10 - - [13/Jun/2026:08:48:41 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "W ... show more [redacted] 198.16.108.10 - - [13/Jun/2026:08:48:41 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 198.16.108.10 - - [13/Jun/2026:08:48:52 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 198.16.108.10 - - [13/Jun/2026:08:49:03 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.5; WordPress/6.1; http://site49827419.com" [redacted] 198.16.108.10 - - [13/Jun/2026:08:49:13 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)" [redacted] 198.16.108.10 - - [13/Jun/2026:08:49:23 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.1; WordPress/6.3; http://site70070697.com" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 05:51:00 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 198.16.108.10 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 198.16.108.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 01:50:55.634419 2026] [security2:error] [pid 19722:tid 19722] [client 198.16.108.10:60378] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 198.16.108.10 (+1 hits since last alert)\|aifactoid.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "aifactoid.com"] [uri "/xmlrpc.php"] [unique_id "aizvvy0Fs2E7-W79DSe33AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 02:13:53 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 198.16.108.10 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 198.16.108.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 22:13:46.961854 2026] [security2:error] [pid 16324:tid 16324] [client 198.16.108.10:1349] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 198.16.108.10 (+1 hits since last alert)\|lightupaustralia.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lightupaustralia.org"] [uri "/xmlrpc.php"] [unique_id "aiy82i2emibrds2ANhFfpwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-13 00:40:03 (1 week ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇩🇪 BlueWire Hosting	2026-06-12 23:27:47 (1 week ago)	Probing websites for vulnerabilities	Web App Attack
🇫🇷 dynamix	2026-06-12 21:55:05 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇷 dynamix	2026-06-09 20:20:39 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-08 13:21:10 (1 week ago)	Attac	Brute-Force
Anonymous	2026-06-08 03:15:51 (1 week ago)		Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 21:07:40 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 198.16.108.10 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 198.16.108.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 17:07:36.541875 2026] [security2:error] [pid 1525:tid 1525] [client 198.16.108.10:23527] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 198.16.108.10 (+1 hits since last alert)\|kentsavagelaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kentsavagelaw.com"] [uri "/xmlrpc.php"] [unique_id "aiXdmLeaECVBBrejpVXSBgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-07 20:32:54 (1 week ago)	Blocked by CSF 13 firewall - Rule: XMLRPC NL/Netherlands/-	Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 19:25:12 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 198.16.108.10 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 198.16.108.10 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 15:25:06.540827 2026] [security2:error] [pid 9610:tid 9610] [client 198.16.108.10:13394] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 198.16.108.10 (+1 hits since last alert)\|smilingorc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "smilingorc.com"] [uri "/xmlrpc.php"] [unique_id "aiXFkhJZNc6EmvmFXJRFPAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 grassau.com	2026-06-07 14:55:45 (1 week ago)	(wordpress) Failed wordpress login from 198.16.108.10 (US/United States/-/-/-)	Brute-Force
🇫🇷 masterguru	2026-06-07 14:54:47 (1 week ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇴 176.29.30.18

🇺🇸 172.234.199.190

🇺🇸 107.170.38.77

🇻🇳 103.149.86.208

🇳🇱 91.92.40.7

🇫🇷 85.217.140.19

🇺🇸 66.132.172.110

🇳🇱 45.148.10.183

🇨🇦 38.70.138.10

🇺🇸 2607:f8b0:4004:c06::12a

🇳🇱 192.253.248.169

🇬🇧 172.236.25.75

🇨🇳 171.104.83.160

🇭🇰 150.5.169.138

🇳🇱 91.92.40.12

🇳🇱 91.92.40.10

🇮🇹 78.134.49.171

🇳🇱 45.148.10.152

🇺🇸 162.216.149.173

🇨🇦 134.41.217.155