JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.188.91.212

64.188.91.212 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 68%: ?

68%

ISP	H2.NEXUS Frankfurt Network
Usage Type	Data Center/Web Hosting/Transit
ASN	AS215730
Hostname(s)	s294018.love-is.nexus
Domain Name	h2.nexus
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.188.91.212

Whois 64.188.91.212

IP Abuse Reports for 64.188.91.212:

This IP address has been reported a total of 24 times from 20 distinct sources. 64.188.91.212 was first reported on August 21st 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 tomkolp	2026-06-13 00:00:08 (1 day ago)	CSF/LFD block: WPLOGIN - WP Login Attack 64.188.91.212 (DE/Germany/s294018.love-is.nexus): 5 in the ... show more CSF/LFD block: WPLOGIN - WP Login Attack 64.188.91.212 (DE/Germany/s294018.love-is.nexus): 5 in the last 3600 secs show less	Brute-Force Web App Attack
🇫🇮 6kilowatti	2026-06-12 23:14:29 (1 day ago)	64.188.91.212 - [13/Jun/2026:02:14:28 +0300] "GET /wp-login.php?action=register HTTP/1.1" 404 30720 ... show more 64.188.91.212 - [13/Jun/2026:02:14:28 +0300] "GET /wp-login.php?action=register HTTP/1.1" 404 30720 "https://alma.6kw.fi/wp-login.php?action=register" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_4) AppleWebKit/605.1.15 Safari/605.1.15" 64.188.91.212 - - [13/Jun/2026:02:14:28 +0300] "GET /wp-login.php?action=register HTTP/1.1" 404 5916 "https://alma.6kw.fi/wp-login.php?action=register" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_4) AppleWebKit/605.1.15 Safari/605.1.15" ... show less	Web App Attack
🇦🇺 FireGuard Server	2026-06-12 15:25:07 (1 day ago)	Blocked by OPNsense firewall; 24 hits, proto=tcp, ports=443	Port Scan Hacking
🇮🇹 LTM	2026-06-12 06:20:01 (1 day ago)	WebServer - Attempts to exploit	Hacking Brute-Force Web App Attack
🇫🇮 inlink.ltd	2026-06-11 22:09:53 (2 days ago)	Known malicious PHP file or CMS probe	Web App Attack
Anonymous	2026-06-11 19:57:23 (2 days ago)	Bot / scanning and/or hacking attempts: GET /wp-login.php?action=register HTTP/1.1, GET /wp-login.ph ... show more Bot / scanning and/or hacking attempts: GET /wp-login.php?action=register HTTP/1.1, GET /wp-login.php?registration=disabled HTTP/1.1 show less	Hacking Web App Attack
🇩🇪 stinpriza	2026-06-11 19:32:56 (2 days ago)	Web App Attack	Web App Attack
🇳🇴 jad@	2026-06-11 19:25:02 (2 days ago)	ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: wp_login. Ob ... show more ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: wp_login. Observed by 1 sensor(s); 2 hits. show less	Brute-Force Web App Attack
🇬🇷 setupgr	2026-06-11 18:34:38 (2 days ago)	(mod_security) mod_security (id:900001) triggered by 64.188.91.212: 1 in the last 86400 secs; Ports: ... show more (mod_security) mod_security (id:900001) triggered by 64.188.91.212: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Thu Jun 11 21:34:37.666386 2026] [security2:error] [pid 2151995:tid 2152064] [client 64.188.91.212:53386] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: ftiaxtomonosou.gr"] [severity "CRITICAL"] [tag "security"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-login.php"] [unique_id "air_vaQxLvBYCmP7IY8-8AAAAAQ"], referer: https://ftiaxtomonosou.gr/wp-login.php?action=register show less	Port Scan
🇺🇸 Jason Howell	2026-06-11 17:34:41 (2 days ago)	64.188.91.212 - - [11/Jun/2026:12:34:39 -0500] "GET /wp-login.php?action=register HTTP/1.1" 302 3038 ... show more 64.188.91.212 - - [11/Jun/2026:12:34:39 -0500] "GET /wp-login.php?action=register HTTP/1.1" 302 3038 "https://www.barbsgardenandpantry.com/wp-login.php?action=register" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_4) AppleWebKit/605.1.15 Safari/605.1.15" 64.188.91.212 - - [11/Jun/2026:12:34:40 -0500] "GET /wp-login.php?registration=disabled HTTP/1.1" 200 1952 "https://www.barbsgardenandpantry.com/wp-login.php?action=register" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_4) AppleWebKit/605.1.15 Safari/605.1.15" 64.188.91.212 - - [11/Jun/2026:12:34:40 -0500] "GET /wp-login.php?action=register HTTP/1.1" 301 613 "http://www.barbsgardenandpantry.com/wp-login.php?action=register" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 64.188.91.212 - - [11/Jun/2026:12:34:40 -0500] "GET /wp-login.php?action=register HTTP/1.1" 302 444 "http://www.barbsgardenandpantry.com/wp-login.php?action=register" "Mozilla/5.0 (Windows NT 10.0; Win64; x6 ... show less	Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-11 17:08:16 (2 days ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN US/United States/s294018.love-is.nexus	Web App Attack
🇺🇸 WeekendWeb	2026-06-11 16:02:59 (2 days ago)	Wordpress Vunerability attack	Web App Attack
🇳🇿 Tripwire	2026-06-11 15:28:04 (2 days ago)	Wordpress login attempts	Brute-Force Web App Attack
Anonymous	2025-09-18 21:12:58 (8 months ago)	Aggressive web graphql scan	Web App Attack
🇳🇱 Savvii	2025-09-14 21:47:46 (8 months ago)	138 attempts against mh_ha-misbehave-ban on iron	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 217.216.81.77

🇨🇭 209.99.191.217

🇭🇺 193.68.57.43

🇲🇽 177.225.219.120

🇺🇸 172.234.220.62

🇺🇸 135.237.126.9

🇺🇸 107.173.200.223

🇦🇹 80.66.35.103

🇮🇳 34.131.36.35

🇮🇳 34.14.186.255

🇺🇸 2604:a940:301:225:0:12::

🇩🇪 217.142.18.84

🇸🇬 165.154.29.93

🇺🇸 162.216.149.195

🇺🇸 147.185.132.224

🇧🇩 103.86.198.253

🇫🇷 85.217.140.35

🇧🇷 45.164.251.106

🇮🇹 37.119.96.252

🇭🇺 37.76.11.192