JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 84.239.48.16

84.239.48.16 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	INVITE Systems SRL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	invitesys.ro
Country	🇺🇸 United States of America
City	Fargo, North Dakota

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 84.239.48.16

Whois 84.239.48.16

IP Abuse Reports for 84.239.48.16:

This IP address has been reported a total of 22 times from 18 distinct sources. 84.239.48.16 was first reported on June 5th 2024, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2025-11-27 20:10:10 (6 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇷 SpaceHost-Server	2025-11-26 23:42:58 (6 months ago)		Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2025-11-26 20:10:07 (6 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 09:08:46 (6 months ago)	(mod_security) mod_security (id:240335) triggered by 84.239.48.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 84.239.48.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:08:40.622829 2025] [security2:error] [pid 14635:tid 14635] [client 84.239.48.16:39741] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 84.239.48.16 (+1 hits since last alert)\|www.yuichiro.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.yuichiro.us"] [uri "/xmlrpc.php"] [unique_id "aSbDmNfkjOTvMElXpj128AAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 YF	2025-11-26 09:01:04 (6 months ago)	xmlrpc.php (Potential DDoS or brute force)	Brute-Force Web App Attack
🇳🇱 Mangelot Hosting	2025-11-26 08:38:20 (6 months ago)	(modsecurity) srv101 ModSecurity 84.239.48.16 (US/United States/-): 5 in the last 3600 secs; Ports: ... show more (modsecurity) srv101 ModSecurity 84.239.48.16 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇩🇪 R.G.	2025-11-26 08:36:01 (6 months ago)	(WPLOGINorWHATEVER) Get lost please 84.239.48.16 (US/United States/-): 7 in the last 600 secs; Ports ... show more (WPLOGINorWHATEVER) Get lost please 84.239.48.16 (US/United States/-): 7 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇩🇪 LRob.fr	2025-11-26 08:30:34 (6 months ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇮🇹 🐷🐷🐷	2025-11-26 08:00:45 (6 months ago)	Multiple WordPress unauthorized access attempts ...	Brute-Force Bad Web Bot
🇮🇹 VHosting	2025-11-26 08:00:04 (6 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:37:35 (6 months ago)	(mod_security) mod_security (id:240335) triggered by 84.239.48.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 84.239.48.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:37:29.228499 2025] [security2:error] [pid 20565:tid 20565] [client 84.239.48.16:19066] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 84.239.48.16 (+1 hits since last alert)\|shhcenter.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "shhcenter.com"] [uri "/xmlrpc.php"] [unique_id "aSauOZ36M9LNRvou0Qui6QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-26 07:33:42 (6 months ago)	[redacted] 84.239.48.16 - - [26/Nov/2025:08:33:27 +0100] "POST /xmlrpc.php HTTP/1.1" 200 218 "-" "Mo ... show more [redacted] 84.239.48.16 - - [26/Nov/2025:08:33:27 +0100] "POST /xmlrpc.php HTTP/1.1" 200 218 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36" [redacted] 84.239.48.16 - - [26/Nov/2025:08:33:27 +0100] "POST /xmlrpc.php HTTP/1.1" 200 218 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36" [redacted] 84.239.48.16 - - [26/Nov/2025:08:33:27 +0100] "POST /xmlrpc.php HTTP/1.1" 200 218 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36" [redacted] 84.239.48.16 - - [26/Nov/2025:08:33:27 +0100] "POST /xmlrpc.php HTTP/1.1" 200 218 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36" [redacted] 84.239.48.16 - - [26/Nov/2025:08:33:27 +0100] "POST /xmlrpc.php HTTP/1.1" 200 218 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, ... show less	Hacking Web App Attack
🇩🇪 barateza	2025-10-19 01:00:06 (8 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇳🇱 nitrix	2025-09-07 00:13:24 (9 months ago)	ZMap scanning detected	Port Scan Hacking
🇨🇭 backslash	2025-08-30 13:00:16 (9 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.245.203.177

🇷🇴 80.94.92.177

🇺🇸 44.187.134.31

🇳🇱 34.178.21.247

🇺🇸 216.180.246.233

🇬🇧 209.42.21.165

🇹🇼 198.235.24.101

🇳🇱 185.223.235.54

🇮🇹 172.253.13.150

🇯🇵 160.251.197.41

🇷🇴 141.98.83.240

🇨🇳 61.142.115.207

🇨🇳 49.7.212.16

🇺🇸 44.55.104.106

🇳🇵 202.70.78.237

🇷🇴 80.94.92.206

🇸🇬 47.128.110.182

🇺🇸 45.79.153.51

🇺🇸 44.32.0.154

🇳🇱 195.178.110.30