JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 162.55.96.252

162.55.96.252 was found in our database!

This IP was reported 67 times. Confidence of Abuse is 100%: ?

100%

ISP	Hetzner Online GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24940
Hostname(s)	svr1.web-management.gr
Domain Name	hetzner.com
Country	🇩🇪 Germany
City	Falkenstein, Saxony

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 162.55.96.252

Whois 162.55.96.252

IP Abuse Reports for 162.55.96.252:

This IP address has been reported a total of 67 times from 59 distinct sources. 162.55.96.252 was first reported on November 14th 2025, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SpaceHost-Server	2026-06-25 22:27:06 (3 hours ago)		Brute-Force Web App Attack
🇫🇷 tecnicorioja	2026-06-25 22:02:05 (3 hours ago)	wp-login attack [25/Jun/2026:06:19:22	Brute-Force Web App Attack
🇨🇦 polycoda	2026-06-25 12:11:13 (13 hours ago)	📄 Probes for wp-login.php and other inexistent URLs	Hacking Web App Attack
🇺🇸 RLDD	2026-06-25 06:14:32 (19 hours ago)	High volume WP login attempts -nov	Brute-Force
Anonymous	2026-06-25 05:46:03 (19 hours ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-06-25 05:41:40 (19 hours ago)	162.55.96.252 - - [25/Jun/2026:07:26:57 +0200] "POST /wp-login.php HTTP/1.1" 200 2643 "https://wasar ... show more 162.55.96.252 - - [25/Jun/2026:07:26:57 +0200] "POST /wp-login.php HTTP/1.1" 200 2643 "https://wasarec.org/wp-login.php" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 162.55.96.252 - - [25/Jun/2026:07:31:51 +0200] "POST /wp-login.php HTTP/1.1" 200 3217 "https://chandazinklabsolutions.online/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 162.55.96.252 - - [25/Jun/2026:07:31:52 +0200] "POST /wp-login.php HTTP/1.1" 200 2710 "https://chandazinklabsolutions.online/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 162.55.96.252 - - [25/Jun/2026:07:41:38 +0200] "POST /wp-login.php HTTP/1.1" 200 9975 "https://joycomfortlodge.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 162.55.96.252 - - [25/Jun/20 ... show less	Brute-Force Web App Attack
🇩🇪 juutis	2026-06-25 05:40:38 (19 hours ago)	Multiple WAF abuses - IP blocked	Hacking Brute-Force Web App Attack
🇳🇱 tmiland	2026-06-25 05:40:18 (19 hours ago)	(wordpress_login) WordPress Login Attack 162.55.96.252 (DE/Germany/svr1.web-management.gr): 3 in the ... show more (wordpress_login) WordPress Login Attack 162.55.96.252 (DE/Germany/svr1.web-management.gr): 3 in the last 3600 secs; IP: 162.55.96.252; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 162.55.96.252 - - [25/Jun/2026:06:49:13 +0200] "GET /wp-login.php HTTP/1.1" 200 1935 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 162.55.96.252 - - [25/Jun/2026:06:49:18 +0200] "POST /wp-login.php HTTP/1.1" 200 2069 "https://autoconfig..*/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 162.55.96.252 - - [25/Jun/2026:07:40:16 +0200] "GET /wp-login.php HTTP/1.1" 200 1935 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Brute-Force
🇩🇪 BlueWire Hosting	2026-06-25 05:38:07 (19 hours ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
🇲🇾 Rizzy	2026-06-25 05:37:26 (19 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇨🇦 KIsmay	2026-06-25 05:36:32 (19 hours ago)	Jun 25 01:16:43 www4 WPAudit[3106073]: 162.55.96.252 trilloperelloyates.com "Mozilla/5.0 (X11; Linux ... show more Jun 25 01:16:43 www4 WPAudit[3106073]: 162.55.96.252 trilloperelloyates.com "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" trillo:Trillo2020 FAIL Jun 25 01:17:01 www4 WPAudit[3106082]: 162.55.96.252 www.lemoncreekcampground.ca "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" lemoncreek:lemoncreek@123456 FAIL Jun 25 01:18:03 www4 WPAudit[3106097]: 162.55.96.252 www.trilloperelloyates.com "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" trillo:trillo2015 FAIL Jun 25 01:26:19 www4 WPAudit[3106706]: 162.55.96.252 bestnelson.org "Mozilla/5.0 (X11; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" sbd-admin:sbd-admin123. FAIL Jun 25 01:36:31 www4 WPAudit[3107453]: 162.55.96.252 www.terratherma.com "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" sbd-admin:sbd-admin2015 FAIL ... show less	Brute-Force Web App Attack
🇺🇸 cwytech	2026-06-25 05:36:18 (19 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wp-us-login-only-high.	Bad Web Bot Web App Attack
🇺🇸 integrantservices.com	2026-06-25 05:35:48 (19 hours ago)	(PERMBLOCK) 162.55.96.252 (DE/Germany/svr1.web-management.gr) has had more than 4 temp blocks	Hacking
🇺🇸 Victor López	2026-06-25 05:34:05 (19 hours ago)	ulibertadores.unyrealsoftapp.com 162.55.96.252 - - [25/Jun/2026:00:29:52 -0500] "GET /wp-login.php H ... show more ulibertadores.unyrealsoftapp.com 162.55.96.252 - - [25/Jun/2026:00:29:52 -0500] "GET /wp-login.php HTTP/2.0" 200 2913 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ulibertadores.unyrealsoftapp.com 162.55.96.252 - - [25/Jun/2026:00:29:54 -0500] "POST /wp-login.php HTTP/2.0" 200 3090 "https://ulibertadores.unyrealsoftapp.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" evangeliodehoy.buscaempresas.co 162.55.96.252 - - [25/Jun/2026:00:34:04 -0500] "GET /wp-login.php HTTP/2.0" 200 1864 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Hacking Web App Attack
Anonymous	2026-06-25 05:33:58 (20 hours ago)	[Thu Jun 25 07:08:23.656383 2026] [authz_core:error] [pid 1880:tid 2070] [client 162.55.96.252:53316 ... show more [Thu Jun 25 07:08:23.656383 2026] [authz_core:error] [pid 1880:tid 2070] [client 162.55.96.252:53316] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php [Thu Jun 25 07:08:24.529965 2026] [authz_core:error] [pid 1880:tid 2080] [client 162.55.96.252:53316] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php, referer: https://cimt-precision.de/wp-login.php [Thu Jun 25 07:33:56.512079 2026] [authz_core:error] [pid 1880:tid 2044] [client 162.55.96.252:43048] AH01630: client denied by server configuration: /var/www/wordp/wp-login.php [Thu Jun 25 07:33:57.063755 2026] [authz_core:error] [pid 1880:tid 2067] [client 162.55.96.252:43048] AH01630: client denied by server configuration: /var/www/wordp/wp-login.php, referer: https://akcurate.de/wordpress/wp-login.php ... show less	Brute-Force Web App Attack

Showing 1 to 15 of 67 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 43.228.157.136

🇺🇸 216.45.50.119

🇳🇱 195.178.110.232

🇬🇧 195.96.139.240

🇷🇴 193.32.162.84

🇨🇳 175.19.206.189

🇧🇷 168.194.66.66

🇺🇸 162.216.150.248

🇧🇷 152.32.197.159

🇺🇸 147.185.132.10

🇭🇰 143.92.38.231

🇨🇳 116.179.37.48

🇹🇼 101.13.5.26

🇹🇼 101.13.1.58

🇳🇱 91.92.40.27

🇱🇻 81.30.98.49

🇩🇪 69.5.169.249

🇺🇸 64.95.9.252

🇺🇸 64.62.197.157

🇪🇬 41.33.199.13