JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.65.113.83

64.65.113.83 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 83%: ?

83%

ISP	Saudi Telecom Company JSC
Usage Type	Mobile ISP
ASN	AS39891
Domain Name	stc.com.sa
Country	🇸🇦 Saudi Arabia
City	Jeddah, Mecca Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.65.113.83

Whois 64.65.113.83

IP Abuse Reports for 64.65.113.83:

This IP address has been reported a total of 22 times from 15 distinct sources. 64.65.113.83 was first reported on June 4th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 rh24	2026-06-06 04:55:47 (2 days ago)	(PERMBLOCK) 64.65.113.83 (SA/Saudi Arabia/-) has had more than 10 temp blocks	Hacking
🇩🇪 rh24	2026-06-06 04:38:44 (2 days ago)	(wordpress) Failed wordpress login from 64.65.113.83 (SA/Saudi Arabia/-): (CF_ENABLE)	Brute-Force
🇳🇱 Site.eu	2026-06-06 00:01:28 (2 days ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇩🇪 Marc	2026-06-05 22:37:15 (2 days ago)	64.65.113.83 - - [06/Jun/2026:00:36:54 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3718 "-" "Jetpack by W ... show more 64.65.113.83 - - [06/Jun/2026:00:36:54 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3718 "-" "Jetpack by WordPress.com (Jetpack 12.1; WordPress 6.1)" 64.65.113.83 - - [06/Jun/2026:00:37:04 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3718 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.3)" 64.65.113.83 - - [06/Jun/2026:00:37:14 +0200] "POST /xmlrpc.php HTTP/1.1" 403 3718 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 21:51:11 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 64.65.113.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 64.65.113.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 17:51:06.652364 2026] [security2:error] [pid 5222:tid 5222] [client 64.65.113.83:49713] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 64.65.113.83 (+1 hits since last alert)\|apuntesdeinversion.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "apuntesdeinversion.com"] [uri "/xmlrpc.php"] [unique_id "aiNEygHfFD3TSZvfzTc2FAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TAY	2026-06-05 17:09:58 (2 days ago)	64.65.113.83 - - [06/Jun/2026:01:09:36 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6363 "-" "Jetpack by W ... show more 64.65.113.83 - - [06/Jun/2026:01:09:36 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6363 "-" "Jetpack by WordPress.com" 64.65.113.83 - - [06/Jun/2026:01:09:46 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6379 "-" "WordPress.com; https://wordpress.com" 64.65.113.83 - - [06/Jun/2026:01:09:57 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6347 "-" "Jetpack/13.0; WordPress/6.2; http://site80505295.com" ... show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-05 14:48:41 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 64.65.113.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 64.65.113.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 10:48:37.342041 2026] [security2:error] [pid 17570:tid 17570] [client 64.65.113.83:40796] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 64.65.113.83 (+1 hits since last alert)\|oowoah.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "oowoah.com"] [uri "/xmlrpc.php"] [unique_id "aiLhxYXMnXnNiCAu48u2RQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 13:45:22 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 64.65.113.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 64.65.113.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 09:45:17.607904 2026] [security2:error] [pid 27769:tid 27769] [client 64.65.113.83:45332] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 64.65.113.83 (+1 hits since last alert)\|caddydad.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "caddydad.com"] [uri "/xmlrpc.php"] [unique_id "aiLS7eqNJg81tWSZAGnHyQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇭 thaizone.com	2026-06-05 13:16:41 (3 days ago)	Brute-forcing login against websites (D1-1) #1	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-06-05 12:47:16 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 64.65.113.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 64.65.113.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 08:47:11.126145 2026] [security2:error] [pid 11467:tid 11482] [client 64.65.113.83:62872] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 64.65.113.83 (+1 hits since last alert)\|michaelrandon.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "michaelrandon.com"] [uri "/xmlrpc.php"] [unique_id "aiLFT-1gyHTb1Cp15N9SZAAAAM0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-05 11:00:53 (3 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇳🇱 debestelapp	2026-06-05 09:55:06 (3 days ago)		Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 09:41:21 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 64.65.113.83 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 64.65.113.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 05:41:14.257983 2026] [security2:error] [pid 20875:tid 20875] [client 64.65.113.83:9938] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 64.65.113.83 (+1 hits since last alert)\|genevainvestors.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "genevainvestors.com"] [uri "/xmlrpc.php"] [unique_id "aiKZujAQ_mGbbC7roSfyMAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 09:06:43 (3 days ago)	[redacted] 64.65.113.83 - - [05/Jun/2026:11:06:00 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Je ... show more [redacted] 64.65.113.83 - - [05/Jun/2026:11:06:00 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 64.65.113.83 - - [05/Jun/2026:11:06:09 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 64.65.113.83 - - [05/Jun/2026:11:06:20 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 64.65.113.83 - - [05/Jun/2026:11:06:31 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.3)" [redacted] 64.65.113.83 - - [05/Jun/2026:11:06:41 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" ... show less	Hacking Web App Attack
Anonymous	2026-06-05 07:36:17 (3 days ago)	Attac	Brute-Force

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 152.32.211.139

🇸🇬 101.47.27.73

🇷🇴 92.118.39.236

🇯🇵 8.216.8.13

🇮🇳 209.38.122.178

🇺🇸 172.253.210.93

🇺🇸 161.35.113.158

🇨🇳 115.191.22.111

🇩🇪 37.84.186.89

🇺🇸 34.123.140.239

🇬🇧 193.163.125.238

🇷🇺 176.109.97.11

🇺🇸 173.239.211.120

🇨🇳 121.40.47.210

🇩🇪 69.5.169.66

🇫🇷 46.105.28.235

🇮🇹 45.196.215.21

🇧🇪 34.38.215.54

🇩🇪 130.12.182.140

🇮🇳 122.160.85.144