JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.49.133

212.56.49.133 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 19%: ?

19%

ISP	VPN Consumer Montreal, Canada
Usage Type	Fixed Line ISP
ASN	AS3257
Domain Name	vpnconsumer.com
Country	🇨🇦 Canada
City	Montreal, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.49.133

Whois 212.56.49.133

IP Abuse Reports for 212.56.49.133:

This IP address has been reported a total of 27 times from 22 distinct sources. 212.56.49.133 was first reported on February 16th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-05-24 23:32:08 (2 weeks ago)	Fail2Ban banned 212.56.49.133 for security violations in jail wp-armour. Log: 2026/05/24 23:32:08 [e ... show more Fail2Ban banned 212.56.49.133 for security violations in jail wp-armour. Log: 2026/05/24 23:32:08 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 212.56.49.133 \| Target: wplogin" , client: 212.56.49.133, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Web Spam
🇩🇪 itak	2026-04-23 15:03:06 (1 month ago)	SMTP SASL Brute-Force Attack	Port Scan Hacking Brute-Force
🇩🇪 rh24	2026-04-23 13:16:40 (1 month ago)	(smtpauth) Failed SMTP AUTH login from 212.56.49.133 (CA/Canada/-)	Brute-Force
🇩🇪 FeG Deutschland	2026-04-19 17:54:11 (1 month ago)	Mail: - login with unknown user - bruteforce	Brute-Force
🇫🇷 ✨	2026-04-17 01:42:21 (1 month ago)	Rule : SMTP 04/17/26 01:41:20 3020 212.56.49.133 *hidden-privacy* ESMTP MailEnable Service, V ... show more Rule : SMTP 04/17/26 01:41:20 3020 212.56.49.133 *hidden-privacy* ESMTP MailEnable Service, Version: 10.54-- ready at 04/17/26 01:41:20 96 0 04/17/26 01:41:20 3020 212.56.49.133 EHLO ehlo [10.4.18.203] *hidden-privacy* [212.56.49.133], this server offers 5 extensions 246 20 04/17/26 01:41:20 3020 212.56.49.133 AUTH {blank} 334 UGFzc3dvcmQ6 18 37 [email protected] 04/17/26 01:41:20 3020 212.56.49.133 AUTH {blank} 535 Invalid Username or Password 34 14 [email protected] show less	Email Spam Port Scan Spoofing
🇺🇸 bigscoots.com	2026-04-17 00:40:40 (1 month ago)	(smtpauth) Failed SMTP AUTH login from 212.56.49.133 (CA/Canada/-): 5 in the last 3600 secs; Ports: ... show more (smtpauth) Failed SMTP AUTH login from 212.56.49.133 (CA/Canada/-): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2026-04-16 20:17:44 dovecot_plain authenticator failed for H=([10.4.18.73]) [212.56.49.133]:8705: 535 Incorrect authentication data ([email protected]) 2026-04-16 20:17:50 dovecot_login authenticator failed for H=([10.4.18.73]) [212.56.49.133]:8705: 535 Incorrect authentication data ([email protected]) 2026-04-16 20:17:56 dovecot_plain authenticator failed for H=([10.4.18.73]) [212.56.49.133]:18908: 535 Incorrect authentication data ([email protected]) 2026-04-16 20:18:02 dovecot_login authenticator failed for H=([10.4.18.73]) [212.56.49.133]:18908: 535 Incorrect authentication data ([email protected]) 2026-04-16 20:40:38 dovecot_plain authenticator failed for H=([10.4.18.203]) [212.56.49.133]:54247: 535 Incorrect authentication data ([email protected]) show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-04-15 21:37:59 (1 month ago)	(smtpauth) Failed SMTP AUTH login from 212.56.49.133 (CA/Canada/-): 5 in the last 3600 secs; Ports: ... show more (smtpauth) Failed SMTP AUTH login from 212.56.49.133 (CA/Canada/-): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2026-04-15 17:37:50 dovecot_plain authenticator failed for H=([10.4.18.147]) [212.56.49.133]:46018: 535 Incorrect authentication data ([email protected]) 2026-04-15 17:37:55 dovecot_plain authenticator failed for H=([10.4.18.147]) [212.56.49.133]:64497: 535 Incorrect authentication data ([email protected]) 2026-04-15 17:37:56 dovecot_plain authenticator failed for H=([10.4.18.147]) [212.56.49.133]:21797: 535 Incorrect authentication data ([email protected]) 2026-04-15 17:37:56 dovecot_plain authenticator failed for H=([10.4.18.147]) [212.56.49.133]:45821: 535 Incorrect authentication data ([email protected]) 2026-04-15 17:37:56 dovecot_plain authenticator failed for H=([10.4.18.147]) [212.56.49.133]:33904: 535 Incorrect authentication data ([email protected]) show less	Brute-Force SSH
🇳🇱 e.fierstra	2026-03-24 18:15:42 (2 months ago)	Failed SMTP logins	Brute-Force
Anonymous	2026-03-24 18:15:30 (2 months ago)	Authentication failure	Brute-Force
Anonymous	2026-03-20 04:30:18 (2 months ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇩🇪 filstal.org	2026-03-20 03:38:13 (2 months ago)	CrowdSec-Report: crowdsecurity/postfix-spam	Email Spam Brute-Force
🇳🇱 Sonar	2026-03-15 11:38:13 (2 months ago)	Bad_host	Brute-Force
🇧🇷 SOC Blue Team	2026-03-13 21:26:00 (2 months ago)	IPs get by Hunting on SIEM	Phishing Web Spam Port Scan Hacking
🇦🇺 AWW-Admin	2026-03-13 19:16:18 (2 months ago)	(smtpauth) Failed SMTP AUTH login from 212.56.49.133 (CA/Canada/-)	Brute-Force
🇷🇺 DZBOT	2026-03-13 14:33:16 (2 months ago)	SMTP. Brute-force users (authenticator failed)	Brute-Force

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.140.214.25

🇺🇸 45.61.184.228

🇳🇱 195.178.110.155

🇬🇧 193.163.125.131

🇺🇸 192.178.10.2

🇧🇷 187.93.68.178

🇵🇰 119.152.233.144

🇨🇳 116.113.236.212

🇹🇭 101.109.81.11

🇯🇵 74.176.205.111

🇧🇷 45.164.251.67

🇭🇰 35.220.152.173

🇺🇸 216.73.161.243

🇻🇪 201.249.89.102

🇵🇰 182.180.55.16

🇺🇸 136.109.242.196

🇩🇪 128.1.34.69

🇨🇳 118.126.108.11

🇸🇬 103.187.146.72

🇵🇱 87.251.64.146