JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.32.76.64

212.32.76.64 was found in our database!

This IP was reported 94 times. Confidence of Abuse is 93%: ?

93%

ISP	VPN Consumer Osaka, Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇯🇵 Japan
City	Osaka, Osaka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.32.76.64

Whois 212.32.76.64

IP Abuse Reports for 212.32.76.64:

This IP address has been reported a total of 94 times from 49 distinct sources. 212.32.76.64 was first reported on September 30th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Admin-Gito	2026-06-17 03:07:25 (2 days ago)	212.32.76.64 - - [17/Jun/2026:04:44:14 +0200] "GET /wp-includes/sitemaps/admin.php HTTP/1.1" 404 290 ... show more 212.32.76.64 - - [17/Jun/2026:04:44:14 +0200] "GET /wp-includes/sitemaps/admin.php HTTP/1.1" 404 290712 "-" "Go-http-client/1.1" 212.32.76.64 - - [17/Jun/2026:04:44:16 +0200] "GET /wp-includes/assets/config.php HTTP/1.1" 404 290704 "-" "Go-http-client/1.1" 212.32.76.64 - - [17/Jun/2026:04:44:19 +0200] "GET /wp-includes/block-patterns/config.php HTTP/1.1" 404 290719 "-" "Go-http-client/1.1" 212.32.76.64 - - [17/Jun/2026:04:44:21 +0200] "GET /wp-includes/sitemaps/providers/config.php HTTP/1.1" 404 290711 "-" "Go-http-client/1.1" 212.32.76.64 - - [17/Jun/2026:04:44:24 +0200] "GET /wp-includes/style-engine/config.php HTTP/1.1" 404 290717 "-" "Go-http-client/1.1" 212.32.76.64 - - [17/Jun/2026:04:44:30 +0200] "GET /wp-includes/SimplePie/wp-conflg.php HTTP/1.1" 404 290710 "-" "Go-http-client/1.1" 212.32.76.64 - - [17/Jun/2026:04:44:46 +0200] "GET /wp-includes/css/dist/commands/wp-cron.php HTTP/1.1" 404 290718 "-" "Go-http-client/1.1" 212.32.76.64 - - [17/Jun/2026:04:44:47 +0200] "GET /wp-incl ... show less	Web App Attack
🇷🇴 iulianh	2026-06-17 02:16:38 (2 days ago)	80,443	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-06-17 02:14:28 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 212.32.76.64 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.32.76.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 22:14:22.939444 2026] [security2:error] [pid 31032:tid 31032] [client 212.32.76.64:33517] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paguilar.com"] [uri "/wp-includes/images/wp-config.php"] [unique_id "ajIC_p4bL9cJ_xztyPLleAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-16 21:17:47 (2 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 Admin-Gito	2026-06-16 18:17:01 (2 days ago)	212.32.76.64 - - [16/Jun/2026:19:55:26 +0200] "GET /wp-includes/fonts/zoom.php HTTP/1.1" 404 290739 ... show more 212.32.76.64 - - [16/Jun/2026:19:55:26 +0200] "GET /wp-includes/fonts/zoom.php HTTP/1.1" 404 290739 "-" "Go-http-client/1.1" 212.32.76.64 - - [16/Jun/2026:19:55:32 +0200] "GET /wp-includes/js/jcrop/config.php HTTP/1.1" 404 290706 "-" "Go-http-client/1.1" 212.32.76.64 - - [16/Jun/2026:19:55:35 +0200] "GET /wp-includes/widgets/login.php HTTP/1.1" 404 290711 "-" "Go-http-client/1.1" 212.32.76.64 - - [16/Jun/2026:19:55:37 +0200] "GET /wp-includes/rest-api/config.php HTTP/1.1" 404 290713 "-" "Go-http-client/1.1" 212.32.76.64 - - [16/Jun/2026:19:55:43 +0200] "GET /wp-includes/rest-api/admin.php HTTP/1.1" 404 290712 "-" "Go-http-client/1.1" 212.32.76.64 - - [16/Jun/2026:19:55:45 +0200] "GET /wp-includes/Requests/Utility/config.php HTTP/1.1" 404 290721 "-" "Go-http-client/1.1" 212.32.76.64 - - [16/Jun/2026:19:55:47 +0200] "GET /wp-includes/Requests/config.php HTTP/1.1" 404 290713 "-" "Go-http-client/1.1" 212.32.76.64 - - [16/Jun/2026:19:55:50 +0200] "GET /wp-includes/widgets/config.php HTTP/1. ... show less	Web App Attack
Anonymous	2026-06-16 18:15:26 (2 days ago)	Multiple, malicious web requests detected	Port Scan Hacking
🇳🇱 BlueWire Hosting	2026-06-16 16:13:24 (2 days ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 14:16:55 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 212.32.76.64 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.32.76.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 10:16:50.470636 2026] [security2:error] [pid 5809:tid 5809] [client 212.32.76.64:34207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mosheimlib.org"] [uri "/wp-content/uploads/wp-config.php"] [unique_id "ajFa0r2l-5nnCyIRDibxnwAAAAc"], referer: http://mosheimlib.org/wp-content/uploads/wp-config.php show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-16 09:27:02 (3 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇫🇷 masterguru	2026-06-16 03:42:38 (3 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-193) show less	Bad Web Bot
🇫🇷 masterguru	2026-06-16 01:55:17 (3 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-13 04:05:54 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 212.32.76.64 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 212.32.76.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 00:05:46.554865 2026] [security2:error] [pid 1227:tid 1227] [client 212.32.76.64:21117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "baliaccommodationpadangpadang.com"] [uri "/wp-includes/wp-config.php"] [unique_id "aizXGgu-UgUL2cC-zJq6fQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 paulshipley.com.au	2026-06-12 23:36:20 (6 days ago)	balcomberetreat.com.au:443 212.32.76.64 - - [13/Jun/2026:09:36:18 +1000] "GET /goods.php HTTP/1.1" 4 ... show more balcomberetreat.com.au:443 212.32.76.64 - - [13/Jun/2026:09:36:18 +1000] "GET /goods.php HTTP/1.1" 404 72002 "https://balcomberetreatmornington.com.au/goods.php" "Go-http-client/1.1" ... show less	Web App Attack
🇧🇪 cmbplf	2026-06-11 20:40:06 (1 week ago)	259 requests with url.path *config.php	Brute-Force Bad Web Bot
🇫🇷 masterguru	2026-06-10 13:55:06 (1 week ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot

Showing 1 to 15 of 94 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 35.203.211.78

🇺🇸 200.10.46.153

🇭🇰 199.45.155.70

🇺🇸 194.146.134.180

🇺🇸 194.146.134.137

🇺🇸 193.34.75.57

🇧🇷 187.17.228.218

🇸🇬 152.32.218.77

🇩🇪 128.14.225.164

🇫🇷 91.196.152.196

🇷🇴 80.94.92.130

🇬🇧 35.203.211.248

🇬🇧 35.203.211.157

🇬🇧 35.203.210.129

🇺🇸 20.64.105.253

🇺🇸 16.58.224.28

🇨🇳 220.177.9.21

🇺🇸 195.184.76.200

🇺🇸 193.34.75.223

🇺🇸 193.34.75.210