JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.56.58.49

5.56.58.49 was found in our database!

This IP was reported 75 times. Confidence of Abuse is 100%: ?

100%

ISP	Gigas Hosting SL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS57286
Domain Name	gigas.com
Country	🇪🇸 Spain
City	Madrid, Madrid

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.56.58.49

Whois 5.56.58.49

IP Abuse Reports for 5.56.58.49:

This IP address has been reported a total of 75 times from 48 distinct sources. 5.56.58.49 was first reported on June 9th 2026, and the most recent report was 2 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-14 02:45:08 (2 minutes ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
Anonymous	2026-06-14 00:50:08 (1 hour ago)	WordPress Brute Force	Brute-Force
🇮🇩 origrata	2026-06-13 23:27:02 (3 hours ago)	[OGWAF] crs_932 attack blocked \| severity: high \| POST /xmlrpc.php \| UA: Mozilla/5.0 (Windows NT 10. ... show more [OGWAF] crs_932 attack blocked \| severity: high \| POST /xmlrpc.php \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0 \| payload: Remote code execution (shell metachar) show less	Web App Attack
🇫🇷 tecnicorioja	2026-06-13 22:01:35 (4 hours ago)	wp-login attack [13/Jun/2026:17:21:34	Brute-Force Web App Attack
🇫🇷 ELYAZ	2026-06-13 21:01:29 (5 hours ago)	(wordpress) Failed wordpress login from 5.56.58.49 (ES/Spain/-): (CF_ENABLE)	Brute-Force
🇺🇸 TAY	2026-06-13 18:51:09 (7 hours ago)	5.56.58.49 - - [14/Jun/2026:02:45:22 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6263 "-" "Mozilla/5.0 (X ... show more 5.56.58.49 - - [14/Jun/2026:02:45:22 +0800] "POST /xmlrpc.php HTTP/1.1" 200 6263 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 5.56.58.49 - - [14/Jun/2026:02:50:50 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4833 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 5.56.58.49 - - [14/Jun/2026:02:51:08 +0800] "POST /wp-login.php HTTP/1.1" 200 2975 "https://mail.autism-cvc.org/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force
🇩🇪 nyt	2026-06-13 17:08:28 (9 hours ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
🇫🇷 solution.it	2026-06-13 13:26:31 (13 hours ago)	[Sat Jun 13 15:26:31.198980 2026] [php7:error] [pid 3389155:tid 3389155] [client 5.56.58.49:37530] s ... show more [Sat Jun 13 15:26:31.198980 2026] [php7:error] [pid 3389155:tid 3389155] [client 5.56.58.49:37530] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat show less	Web App Attack
🇲🇹 Malta	2026-06-13 12:02:54 (14 hours ago)	5.56.58.49 - - [13/Jun/2026:14:02:54 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 1 ... show more 5.56.58.49 - - [13/Jun/2026:14:02:54 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇩🇪 FeG Deutschland	2026-06-13 06:45:33 (20 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 omc	2026-06-13 05:12:59 (21 hours ago)	Banned IP [QC]. GET unauthorized endpoint [Q4].	Bad Web Bot
🇩🇪 sverson	2026-06-13 04:33:52 (22 hours ago)	Trolling for resource vulnerabilities	Hacking
🇧🇪 taivas.nl	2026-06-13 04:33:06 (22 hours ago)	Many_bad_calls	Web App Attack
🇦🇺 FireGuard Server	2026-06-13 03:40:11 (23 hours ago)	Blocked by OPNsense firewall; 4 hits, proto=tcp, ports=443	Port Scan Hacking
🇺🇸 CollideTech	2026-06-13 00:41:45 (1 day ago)	probing for vulnerabilities	Web App Attack

Showing 1 to 15 of 75 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 194.238.57.104

🇨🇦 165.22.226.241

🇨🇳 124.117.194.182

🇱🇰 124.43.6.160

🇩🇪 118.193.59.142

🇹🇭 203.172.40.209

🇯🇵 194.5.48.219

🇳🇱 185.82.72.144

🇪🇨 181.39.158.27

🇺🇸 162.216.150.148

🇭🇰 154.83.16.14

🇨🇳 124.227.31.15

🇨🇳 124.117.195.143

🇻🇳 116.110.1.221

🇺🇸 104.22.20.70

🇳🇱 91.92.40.12

🇷🇴 80.94.92.177

🇨🇳 61.184.128.210

🇺🇸 52.159.227.193

🇬🇧 45.82.76.128