JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.64.108.21

64.64.108.21 was found in our database!

This IP was reported 102 times. Confidence of Abuse is 52%: ?

52%

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	logicweb.com
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.64.108.21

Whois 64.64.108.21

IP Abuse Reports for 64.64.108.21:

This IP address has been reported a total of 102 times from 50 distinct sources. 64.64.108.21 was first reported on September 10th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇦 URAN Publishing Service	2026-06-09 17:44:13 (1 week ago)	64.64.108.21 - - [09/Jun/2026:20:44:12 +0300] "GET /wp-admin/file.php HTTP/1.1" 404 707 "-" "Mozilla ... show more 64.64.108.21 - - [09/Jun/2026:20:44:12 +0300] "GET /wp-admin/file.php HTTP/1.1" 404 707 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" 64.64.108.21 - - [09/Jun/2026:20:44:12 +0300] "GET /wp-content/plugins/admin.php HTTP/1.1" 404 707 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3" ... show less	Web App Attack
Anonymous	2026-06-09 06:06:26 (1 week ago)	Attempt to scan vulnerabilities	Hacking
🇷🇺 sms.ru	2026-06-05 23:56:43 (2 weeks ago)	/wp-admin/setup-config.php	Web App Attack
🇷🇴 Fn4ticHz	2026-06-05 23:23:26 (2 weeks ago)	DDoS blocked via ZeroGuard.ID	DDoS Attack Exploited Host
🇬🇧 consul.to	2026-06-05 20:29:47 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 Ba-Yu	2026-06-04 23:20:53 (2 weeks ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 21:20:38 (2 weeks ago)	(mod_security) mod_security (id:240000) triggered by 64.64.108.21 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240000) triggered by 64.64.108.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 17:20:34.878507 2026] [security2:error] [pid 10776:tid 10776] [client 64.64.108.21:44439] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder\|\|jbernsteinpc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "jbernsteinpc.com"] [uri "/images/stories/themes.php"] [unique_id "aiHsIoYgSLSiGWVNLisZ2QAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 demonsword	2026-06-04 13:44:35 (2 weeks ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: api.ipvanish.com:443 show less	Open Proxy Port Scan
🇫🇷 dynamix	2026-06-04 12:09:13 (2 weeks ago)	Multiple WAF Violations	Web App Attack
🇦🇺 dyln	2026-06-03 18:20:54 (2 weeks ago)	Dyls honeypot brute-force: SIP (3 total hits)	Hacking Brute-Force
🇫🇷 fabrice	2026-06-02 11:02:25 (2 weeks ago)	Repeated Trusted domain errors : 64.64.108.21 - - [02/Jun/2026:13:02:24 +0200] "GET /wp-content/plug ... show more Repeated Trusted domain errors : 64.64.108.21 - - [02/Jun/2026:13:02:24 +0200] "GET /wp-content/plugins/schema/yanz.php HTTP/1.1" 403 4919 "http://cmil.fr/wp-content/plugins/schema/yanz.php" "Go-http-client/1.1" ... show less	Web App Attack
🇿🇦 Tokolosh Hunters	2026-06-01 16:37:08 (3 weeks ago)	AutoBlockWindow-Known bad useragent query-2026-06-01 16:37:07	Bad Web Bot
🇺🇸 mnsf	2026-04-27 00:05:21 (1 month ago)	Too many Status 40X (23)	Brute-Force Web App Attack
🇫🇷 dynamix	2026-04-26 09:09:47 (1 month ago)	Multiple WAF Violations	Web App Attack
🇮🇹 Inartis	2026-04-26 01:13:59 (1 month ago)	[Sun Apr 26 03:13:54.911165 2026] [autoindex:error] [pid 1939339:tid 1939339] [client 64.64.108.21:4 ... show more [Sun Apr 26 03:13:54.911165 2026] [autoindex:error] [pid 1939339:tid 1939339] [client 64.64.108.21:47765] AH01276: Cannot serve directory /home/venturatopadova.it/public_html/wp-includes/js/: No matching DirectoryIndex (index.php,index.php4,index.php5,index.htm,index.html) found, and server-generated directory index forbidden by Options directive, referer: https://www.venturatopadova.it/wp-includes/js/index.php [Sun Apr 26 03:13:57.818455 2026] [autoindex:error] [pid 1939339:tid 1939339] [client 64.64.108.21:47765] AH01276: Cannot serve directory /home/venturatopadova.it/public_html/wp-admin/maint/: No matching DirectoryIndex (index.php,index.php4,index.php5,index.htm,index.html) found, and server-generated directory index forbidden by Options directive, referer: https://www.venturatopadova.it/wp-admin/maint/index.php [Sun Apr 26 03:13:58.873128 2026] [autoindex:error] [pid 1939339:tid 1939339] [client 64.64.108.21:47765] AH01276: Cannot serve directory /home/venturatopadova.it/public_ ... show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 102 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 143.198.41.193

🇩🇿 105.103.108.19

🇳🇱 45.148.10.141

🇺🇸 34.68.34.91

🇳🇱 34.6.250.227

🇳🇱 5.61.209.43

🇨🇦 192.226.236.158

🇧🇷 177.39.142.9

🇯🇵 172.253.80.218

🇲🇦 81.192.46.29

🇳🇱 64.225.72.42

🇳🇱 45.148.10.152

🇹🇼 198.235.24.66

🇷🇺 195.94.241.98

🇷🇺 193.233.48.169

🇨🇳 183.184.53.72

🇨🇳 182.138.158.155

🇦🇷 181.23.158.187

🇨🇳 122.13.25.186

🇺🇸 107.155.105.122