JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2a00:1828:1000:2561::2

2a00:1828:1000:2561::2 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 61%: ?

61%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	manitu GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS34240
Hostname(s)	ngcobalt461.manitu.net
Domain Name	manitu.de
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2a00:1828:1000:2561::2

Whois 2a00:1828:1000:2561::2

IP Abuse Reports for 2a00:1828:1000:2561::2:

This IP address has been reported a total of 14 times from 10 distinct sources. 2a00:1828:1000:2561::2 was first reported on June 20th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ger-stg-sifi1	2026-06-21 19:15:49 (1 day ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇷🇴 SpamStopper	2026-06-21 19:02:23 (1 day ago)	Fail2Ban - WP Spoofing	Port Scan Brute-Force Web App Attack
🇩🇪 Hazzard	2026-06-21 18:53:44 (1 day ago)	(wordpress) Failed wordpress login from 2a00:1828:1000:2561::2 (DE/Germany/-/-/ngcobalt461.manitu.ne ... show more (wordpress) Failed wordpress login from 2a00:1828:1000:2561::2 (DE/Germany/-/-/ngcobalt461.manitu.net/[redacted]): (CF_ENABLE) show less	Brute-Force
🇩🇪 Hazzard	2026-06-21 04:26:57 (2 days ago)	(PERMBLOCK) 2a00:1828:1000:2561::2 (DE/Germany/-/-/ngcobalt461.manitu.net/[redacted]) has had more t ... show more (PERMBLOCK) 2a00:1828:1000:2561::2 (DE/Germany/-/-/ngcobalt461.manitu.net/[redacted]) has had more than 4 temp blocks show less	Hacking
🇩🇪 gadix	2026-06-21 02:47:35 (2 days ago)	2a00:1828:1000:2561::2 - - [21/Jun/2026:02:13:47 +0200] "POST /wp-login.php HTTP/2.0" 200 3213 "http ... show more 2a00:1828:1000:2561::2 - - [21/Jun/2026:02:13:47 +0200] "POST /wp-login.php HTTP/2.0" 200 3213 "https://proweris.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 2a00:1828:1000:2561::2 - - [21/Jun/2026:04:15:52 +0200] "POST /wp-login.php HTTP/1.1" 200 7234 "https://koerper-u-geist.gadix.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
🇩🇪 LRob.fr	2026-06-21 00:15:06 (2 days ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇫🇷 SpaceHost-Server	2026-06-20 20:40:57 (2 days ago)	2a00:1828:1000:2561::2 - - [20/Jun/2026:22:39:38 +0200] "POST /wp-login.php HTTP/1.1" 200 16093 "htt ... show more 2a00:1828:1000:2561::2 - - [20/Jun/2026:22:39:38 +0200] "POST /wp-login.php HTTP/1.1" 200 16093 "https://demo-2020child.wp4dich.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 2a00:1828:1000:2561::2 - - [20/Jun/2026:22:40:30 +0200] "POST /wp-login.php HTTP/1.1" 200 15136 "https://seniorenrat.wp-knowhow.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 2a00:1828:1000:2561::2 - - [20/Jun/2026:22:40:56 +0200] "POST /wp-login.php HTTP/1.1" 200 14294 "https://wethinking.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇫🇷 SpaceHost-Server	2026-06-20 20:00:40 (2 days ago)	2a00:1828:1000:2561::2 - - [20/Jun/2026:21:59:47 +0200] "POST /wp-login.php HTTP/1.1" 200 20783 "htt ... show more 2a00:1828:1000:2561::2 - - [20/Jun/2026:21:59:47 +0200] "POST /wp-login.php HTTP/1.1" 200 20783 "https://ganznatur-vital.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 2a00:1828:1000:2561::2 - - [20/Jun/2026:22:00:30 +0200] "POST /wp-login.php HTTP/1.1" 200 14302 "https://wethinking.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 2a00:1828:1000:2561::2 - - [20/Jun/2026:22:00:39 +0200] "POST /wp-login.php HTTP/1.1" 200 15128 "https://seniorenrat.wp-knowhow.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇩🇪 Hazzard	2026-06-20 17:38:04 (2 days ago)	(wordpress) Failed wordpress login from 2a00:1828:1000:2561::2 (DE/Germany/-/-/ngcobalt461.manitu.ne ... show more (wordpress) Failed wordpress login from 2a00:1828:1000:2561::2 (DE/Germany/-/-/ngcobalt461.manitu.net/[redacted]): (CF_ENABLE) show less	Brute-Force
🇩🇪 Ba-Yu	2026-06-20 17:31:34 (2 days ago)	WordPress bruteforce	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇩🇪 BlueWire Hosting	2026-06-20 17:24:13 (2 days ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
🇩🇪 LRob.fr	2026-06-20 17:00:06 (2 days ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 cwytech	2026-06-20 16:17:23 (2 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/wordpress-login-lockdown-high.	Bad Web Bot Web App Attack
🇩🇪 F242	2026-06-20 16:16:08 (2 days ago)	Wordpress Login or XMLRPC abuse	Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 47.82.83.190

🇨🇦 20.151.206.212

🇺🇸 162.216.150.40

🇨🇦 129.222.196.2

🇰🇷 115.160.124.86

🇵🇭 110.93.80.47

🇨🇳 106.63.26.13

🇮🇩 103.165.157.50

🇫🇷 91.196.152.217

🇲🇾 47.250.88.100

🇮🇳 45.112.42.250

🇮🇹 37.159.93.99

🇫🇷 35.181.1.127

🇪🇸 216.147.99.205

🇧🇷 205.210.31.230

🇦🇷 181.23.239.78

🇵🇭 180.191.59.9

🇺🇸 172.236.96.130

🇧🇷 170.78.157.200

🇺🇸 91.230.168.128