Please, I need help. I got a mail yesterday that my IP was involved in some kind of abuse that I am not aware of. I use CyberPanel on Vultr and had 3 domains running on WordPress.
Since I got that message, I’ve been trying to know what I’m doing wrong. I’m not sharing my hosting IP with anyone I know.
My ip has been reported 23 times on AbuseIpDb and I am not making any progress with fixing this issue yet.
I checked my CyberPanel access log and discovered some websites that I could never have known in my lifetime… Here is an excerpt of my access log:
127.0.0.1 - - [30/Sep/2022:13:31:11 +0000] “POST /xmlrpc.php HTTP/1.1” 404 705 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96”
127.0.0.1 - - [30/Sep/2022:13:31:11 +0000] “GET / HTTP/1.1” 404 705 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96”
127.0.0.1 - - [30/Sep/2022:13:31:11 +0000] “GET / HTTP/1.1” 404 705 “http://leonardoeirene.it/xmlrpc.php” “Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96”
127.0.0.1 - - [30/Sep/2022:13:31:11 +0000] “GET / HTTP/1.1” 404 705 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96”
127.0.0.1 - - [30/Sep/2022:13:31:12 +0000] “GET / HTTP/1.1” 404 705 “http://bartaprotikkhon.com/xmlrpc.php” “Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:96.0) Gecko/20100101 Firefox/96”
There are more but I’m unable to add them since I’m new.
Please can anyone help me on how to resolve this?