JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.64.108.29

64.64.108.29 was found in our database!

This IP was reported 101 times. Confidence of Abuse is 49%: ?

49%

ISP	LogicWeb Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	logicweb.com
Country	🇮🇹 Italy
City	Milan, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.64.108.29

Whois 64.64.108.29

IP Abuse Reports for 64.64.108.29:

This IP address has been reported a total of 101 times from 46 distinct sources. 64.64.108.29 was first reported on September 7th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇦 URAN Publishing Service	2026-06-09 17:42:29 (1 week ago)	64.64.108.29 - - [09/Jun/2026:20:42:27 +0300] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 404 ... show more 64.64.108.29 - - [09/Jun/2026:20:42:27 +0300] "GET /wp-content/themes/pridmag/db.php?u HTTP/1.1" 404 707 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 64.64.108.29 - - [09/Jun/2026:20:42:29 +0300] "GET /wp-content/plugins/linkpreview/db.php?u HTTP/1.1" 404 707 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:66.0) Gecko/20100101 Firefox/66.0" ... show less	Web App Attack
🇩🇪 Ba-Yu	2026-06-09 11:09:34 (1 week ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇷🇺 sms.ru	2026-06-05 23:55:19 (1 week ago)	/blog/wp-admin/about.php	Web App Attack
🇫🇷 masterguru	2026-06-05 23:22:20 (1 week ago)	Too much 404 requests in 1 minute. Operator GE matched 10 at IP:block_script. (46020-195)	Hacking
🇬🇧 consul.to	2026-06-05 20:29:39 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 fabrice	2026-06-02 11:01:18 (2 weeks ago)	Repeated Trusted domain errors : 64.64.108.29 - - [02/Jun/2026:13:01:18 +0200] "GET /wp-content/plug ... show more Repeated Trusted domain errors : 64.64.108.29 - - [02/Jun/2026:13:01:18 +0200] "GET /wp-content/plugins/wpcall-button/button-image.php HTTP/1.1" 403 4919 "http://cmil.fr/wp-content/plugins/wpcall-button/button-image.php" "Go-http-client/1.1" ... show less	Web App Attack
🇩🇪 Vegascosmetics	2026-06-02 06:10:00 (2 weeks ago)	Kingcopy(AI-IDS) Report: This IP is Banned after Attacks automatically because Pattern: /wp-includes ... show more Kingcopy(AI-IDS) Report: This IP is Banned after Attacks automatically because Pattern: /wp-includes/ - Vegascosmetics Security System show less	Hacking Web App Attack
Anonymous	2026-06-02 04:37:26 (2 weeks ago)	64.64.108.29 - - [02/Jun/2026:06:37:25 +0200] "GET /wp-content/themes/news-portal/error.php HTTP/1.1 ... show more 64.64.108.29 - - [02/Jun/2026:06:37:25 +0200] "GET /wp-content/themes/news-portal/error.php HTTP/1.1" 404 444 "http://lnjconsultancy.online/wp-content/themes/news-portal/error.php" "Go-http-client/1.1" 64.64.108.29 - - [02/Jun/2026:06:37:25 +0200] "GET /wp-content/themes/news-portal/error.php HTTP/1.1" 404 247 "http://lnjconsultancy.online/wp-content/themes/news-portal/error.php" "Go-http-client/1.1" 64.64.108.29 - - [02/Jun/2026:06:37:25 +0200] "GET /wp-includes/customize/wp-conflg.php HTTP/1.1" 404 444 "http://lnjconsultancy.online/wp-includes/customize/wp-conflg.php" "Go-http-client/1.1" 64.64.108.29 - - [02/Jun/2026:06:37:25 +0200] "GET /wp-includes/customize/wp-conflg.php HTTP/1.1" 404 247 "http://lnjconsultancy.online/wp-includes/customize/wp-conflg.php" "Go-http-client/1.1" 64.64.108.29 - - [02/Jun/2026:06:37:26 +0200] "GET /wp-content/plugins/core/core.php HTTP/1.1" 404 444 "http://lnjconsultancy.online/wp-content/plugins/core/core.php" "Go-http-client/1.1" ... show less	Brute-Force Web App Attack
🇿🇦 Tokolosh Hunters	2026-06-01 16:37:12 (2 weeks ago)	AutoBlockWindow-Known bad useragent query-2026-06-01 16:37:10	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-28 11:28:12 (3 weeks ago)	(mod_security) mod_security (id:240335) triggered by 64.64.108.29 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:240335) triggered by 64.64.108.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 28 07:28:07.138209 2026] [security2:error] [pid 23048:tid 23048] [client 64.64.108.29:37389] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 64.64.108.29 (+1 hits since last alert)\|www.konahawaiirealty.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.konahawaiirealty.com"] [uri "/xmlrpc.php"] [unique_id "ahgmx2tVUBEzrIJeAU7jRwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TAY	2026-05-28 11:26:10 (3 weeks ago)	64.64.108.29 - - [28/May/2026:19:25:16 +0800] "POST //xmlrpc.php HTTP/1.1" 200 4456 "-" "Mozilla/5.0 ... show more 64.64.108.29 - - [28/May/2026:19:25:16 +0800] "POST //xmlrpc.php HTTP/1.1" 200 4456 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 64.64.108.29 - - [28/May/2026:19:25:51 +0800] "POST //xmlrpc.php HTTP/1.1" 200 4456 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 OPR/120.0.0.0" 64.64.108.29 - - [28/May/2026:19:26:09 +0800] "POST //xmlrpc.php HTTP/1.1" 200 4456 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3 Safari/605.1.15" ... show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-13 22:38:47 (2 months ago)	(mod_security) mod_security (id:234930) triggered by 64.64.108.29 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:234930) triggered by 64.64.108.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 18:38:43.521775 2026] [security2:error] [pid 294568:tid 294572] [client 64.64.108.29:32065] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)\|\|truthjusticecommission.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "truthjusticecommission.com"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "ad1wc8Hvys3Xp4m7gvtcGgAAAYE"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-04-10 13:29:21 (2 months ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇩🇪 ghostwarriors	2026-03-31 06:50:10 (2 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-03-31 06:05:09 (2 months ago)	Blocking for trying to access an exploit file: //login.php	Hacking

Showing 1 to 15 of 101 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.72.195.114

🇺🇸 173.239.218.104

🇺🇦 91.124.37.223

🇫🇷 194.60.201.87

🇳🇱 176.65.139.85

🇺🇸 173.239.218.100

🇺🇸 172.104.11.4

🇨🇳 123.56.24.159

🇨🇳 121.43.116.91

🇲🇽 110.238.81.15

🇭🇺 86.106.74.247

🇨🇳 61.178.209.47

🇱🇹 45.227.254.170

🇬🇧 5.181.124.187

🇧🇷 181.189.10.9

🇩🇪 167.94.146.32

🇩🇪 167.94.145.28

🇺🇸 167.89.109.112

🇺🇸 165.154.173.141

🇺🇸 162.216.150.177