JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 95.164.53.211

95.164.53.211 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 100%: ?

100%

ISP	QWINS Hosting
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213702
Hostname(s)	cleantalk.org
Domain Name	qwins.co
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 95.164.53.211

Whois 95.164.53.211

IP Abuse Reports for 95.164.53.211:

This IP address has been reported a total of 44 times from 33 distinct sources. 95.164.53.211 was first reported on April 20th 2026, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-21 00:30:12 (22 hours ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇩🇪 FeG Deutschland	2026-06-20 21:40:22 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
Anonymous	2026-06-20 21:19:57 (1 day ago)	Web attack blocked by Wordfence on 1valkenburg.nl (4 hits). Reported by CRMON.	Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-20 21:19:28 (1 day ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇫🇷 YF	2026-06-20 06:30:38 (1 day ago)	WordPress admin probe	Web App Attack
🇩🇪 on-com	2026-06-20 06:03:54 (1 day ago)	URL scan	Brute-Force Web App Attack
🇫🇮 [email protected]	2026-06-20 05:44:23 (1 day ago)	Attack attempt against Interwebbi servers; (WPNINJA) Ninja Firewall attack on sommerakademie-kinderb ... show more Attack attempt against Interwebbi servers; (WPNINJA) Ninja Firewall attack on sommerakademie-kinderbesserverstehen.de (WP vulnerability) 95.164.53.211 (DE/Germany/cleantalk.org): 1 in the last 3600 secs (CF_ENABLE); IP: 95.164.53.211; Ports: *; Direction: 0; Trigger: LF_CUSTOMTRIGGER; show less	Web App Attack
🇲🇾 Rizzy	2026-06-20 04:30:39 (1 day ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇵🇱 nfsec.pl	2026-06-20 02:28:30 (1 day ago)	95.164.53.211 - - [20/Jun/2026:02:28:29 +0000] "POST /wp-admin/admin-ajax.php HTTP/1.1" 403 357 "-" ... show more 95.164.53.211 - - [20/Jun/2026:02:28:29 +0000] "POST /wp-admin/admin-ajax.php HTTP/1.1" 403 357 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.5 Safari/605.1.15" 95.164.53.211 - - [20/Jun/2026:02:28:29 +0000] "POST / HTTP/1.1" 403 357 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 OPR/112.0.0.0" 95.164.53.211 - - [20/Jun/2026:02:28:29 +0000] "POST /wp-admin/admin-ajax.php HTTP/1.1" 403 357 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36 OPR/112.0.0.0" 95.164.53.211 - - [20/Jun/2026:02:28:29 +0000] "POST / HTTP/1.1" 403 357 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 95.164.53.211 - - [20/Jun/2026:02:28:29 +0000] "POST /wp-admin/admin-ajax.php HTTP/1.1" 403 357 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_5) AppleWebKit/6 ... show less	Web App Attack Exploited Host
🇳🇿 Tripwire	2026-06-20 01:54:56 (1 day ago)	Wordpress login attempts	Brute-Force Web App Attack
🇩🇪 london2038.com	2026-06-20 00:54:14 (1 day ago)	Probing for exploits 95.164.53.211 - - [20/Jun/2026:02:54:10 +0200] "POST /wp-admin/admin-ajax.php H ... show more Probing for exploits 95.164.53.211 - - [20/Jun/2026:02:54:10 +0200] "POST /wp-admin/admin-ajax.php HTTP/1.1" 301 169 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" 95.164.53.211 - - [20/Jun/2026:02:54:10 +0200] "POST /wp-admin/admin-ajax.php HTTP/1.1" 301 169 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇩🇪 Viveronese	2026-06-19 23:03:34 (2 days ago)	HTTP vulnerability scanning	Web App Attack
🇺🇸 nationaleventpros.com	2026-06-19 22:45:32 (2 days ago)	WordPress login attempt	Brute-Force
🇫🇮 JimArchon72	2026-06-19 22:45:04 (2 days ago)	2026/06/19 22:41:18 "GET /wp-login.php?action=register HTTP/1.1"	Web App Attack
🇺🇸 Ar1s	2026-06-19 19:51:40 (2 days ago)	[1:2610312] TGI HUNT HTTP POST to wp-.* Path Without Referer ::: Port: 80/TCP	Exploited Host

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇦 196.92.7.246

🇷🇺 188.168.86.6

🇲🇾 183.171.249.240

🇸🇬 159.223.76.255

🇺🇸 47.251.143.199

🇷🇺 46.39.254.221

🇺🇸 44.243.219.237

🇦🇴 197.234.117.198

🇩🇪 185.242.3.195

🇺🇸 173.89.109.162

🇨🇦 172.218.244.227

🇨🇳 122.156.185.59

🇳🇿 121.73.168.139

🇨🇳 106.75.36.195

🇷🇺 95.108.213.200

🇰🇿 92.46.241.27

🇷🇺 87.250.224.89

🇺🇸 72.253.251.3

🇳🇱 45.148.10.31

🇺🇸 44.34.145.150