JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.32.76.52

212.32.76.52 was found in our database!

This IP was reported 124 times. Confidence of Abuse is 100%: ?

100%

ISP	VPN Consumer Osaka, Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vpnconsumer.com
Country	🇯🇵 Japan
City	Osaka, Osaka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.32.76.52

Whois 212.32.76.52

IP Abuse Reports for 212.32.76.52:

This IP address has been reported a total of 124 times from 60 distinct sources. 212.32.76.52 was first reported on April 22nd 2025, and the most recent report was 2 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇦 URAN Publishing Service	2026-06-06 02:31:13 (2 minutes ago)	212.32.76.52 - - [06/Jun/2026:05:31:12 +0300] "GET /wp-includes/assets/ HTTP/1.1" 404 707 "-" "Go-ht ... show more 212.32.76.52 - - [06/Jun/2026:05:31:12 +0300] "GET /wp-includes/assets/ HTTP/1.1" 404 707 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇩🇪 Holger	2026-06-06 00:47:29 (1 hour ago)	Bruteforce WebAttack	Brute-Force Web App Attack
🇺🇦 URAN Publishing Service	2026-06-05 22:30:35 (4 hours ago)	212.32.76.52 - - [06/Jun/2026:01:30:33 +0300] "GET /wp-content/plugins/about.php HTTP/1.1" 404 704 " ... show more 212.32.76.52 - - [06/Jun/2026:01:30:33 +0300] "GET /wp-content/plugins/about.php HTTP/1.1" 404 704 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇦🇺 2000cn.com.au	2026-06-05 19:14:43 (7 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-wordpress-scan	Web App Attack Hacking
🇮🇩 soc-yk	2026-06-05 18:18:13 (8 hours ago)	Type: web_scanning Risk: 100 Events: 106 Evidence: - Automated hostile web probing detected - Repea ... show more Type: web_scanning Risk: 100 Events: 106 Evidence: - Automated hostile web probing detected - Repeated web scanning activity observed - Multi-event operational persistence identified - Threat escalation behavior observed show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-05 18:09:33 (8 hours ago)	212.32.76.52 - - [05/Jun/2026:21:09:33 +0300] "GET /wp-content/themes/news-portal/error.php HTTP/1.1 ... show more 212.32.76.52 - - [05/Jun/2026:21:09:33 +0300] "GET /wp-content/themes/news-portal/error.php HTTP/1.1" 404 720 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-05 16:56:50 (9 hours ago)	212.32.76.52 - - [05/Jun/2026:19:56:49 +0300] "GET /wp-content/plugins/wp_helper_hzkys/shell.php HTT ... show more 212.32.76.52 - - [05/Jun/2026:19:56:49 +0300] "GET /wp-content/plugins/wp_helper_hzkys/shell.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1" 212.32.76.52 - - [05/Jun/2026:19:56:49 +0300] "GET /wp-content/plugins/nux.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇳🇱 Site.eu	2026-06-05 07:16:54 (19 hours ago)	Excessive multi-domain requests	Brute-Force
🇪🇸 alferez	2026-06-05 03:21:30 (23 hours ago)	Searching hacked php files	Hacking Exploited Host Web App Attack
🇩🇪 Holger	2026-06-04 11:13:57 (1 day ago)	Bruteforce WebAttack	Brute-Force Web App Attack
🇫🇮 6kilowatti	2026-06-04 00:53:03 (2 days ago)	2026/06/04 03:53:02 [error] 1118#1118: 383760 FastCGI sent in stderr: "Primary script unknown" whil ... show more 2026/06/04 03:53:02 [error] 1118#1118: 383760 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 212.32.76.52, server: 6kw.fi, request: "GET /we.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/6kw.fi.sock:", host: "6kw.fi" 2026/06/04 03:53:02 [error] 1118#1118: *383760 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 212.32.76.52, server: 6kw.fi, request: "GET /files.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/6kw.fi.sock:", host: "6kw.fi" ... show less	Web App Attack
🇩🇪 4server	2026-06-03 23:26:46 (2 days ago)	[ThuJun0401:26:41.3626002026][security2:error][pid2464387:tid2464526][client212.32.76.52:0]ModSecuri ... show more [ThuJun0401:26:41.3626002026][security2:error][pid2464387:tid2464526][client212.32.76.52:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"assmra.org\"][uri\"/wp-config-sample.php\"][unique_id\"aiC4MTbgAFBHgPB6p9o9sgAAAQE\"] show less	Port Scan Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-03 17:48:43 (2 days ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-195) show less	Bad Web Bot
🇺🇸 Major Hostility	2026-06-03 16:38:34 (2 days ago)	"GET /wp-content/chosen.php HTTP/1.1" 404 "GET /wp-admin/css/admin.php HTTP/1.1" 404 "GET /wp-conten ... show more "GET /wp-content/chosen.php HTTP/1.1" 404 "GET /wp-admin/css/admin.php HTTP/1.1" 404 "GET /wp-content/zsdhb.php HTTP/1.1" 404 "GET /wp-admin/revision-long.php HTTP/1.1" 404 "GET /wp-includes/ID3/getid3-exception.php HTTP/1.1" 404 "GET /wp-includes/class-json-restful.php HTTP/1.1" 404 "GET /wp-admin/xml.php HTTP/1.1" 404 "GET /wp-admin/includes/revision-path.php HTTP/1.1" 404 "GET /wp-includes/images/media/build/irys/ HTTP/1.1" 404 "GET /wp-includes/blocks/details/xmu.php HTTP/1.1" 404 "GET /wp-admin/css/colors/modern/dist/resources/js/tal/admin.php HTTP/1.1" 404 "GET /wp-includes/l10n/build/dist/cache/cache/uploads/build/uco/ HTTP/1.1" 404 "GET /wp-includes/classwithtostring.php HTTP/1.1" 404 "GET /imag show less	Web App Attack
Anonymous	2026-06-03 13:30:23 (2 days ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot

Showing 1 to 15 of 124 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 212.32.76.47

🇩🇿 154.241.53.49

🇮🇳 143.110.177.177

🇦🇪 132.243.121.237

🇮🇪 52.208.106.223

🇳🇱 45.198.224.141

🇬🇧 35.203.210.196

🇺🇸 207.90.244.17

🇧🇷 205.210.31.204

🇺🇸 205.210.31.81

🇺🇸 205.210.31.69

🇹🇼 198.235.24.31

🇳🇱 185.136.15.13

🇫🇮 178.20.210.152

🇺🇸 172.56.253.130

🇺🇸 162.216.150.121

🇺🇸 108.181.22.199

🇻🇳 103.179.188.195

🇺🇸 91.230.168.29

🇺🇸 85.239.151.41