JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.53.147

212.56.53.147 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 0%: ?

ISP	VPN Consumer Los Angeles, United States
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4213
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.53.147

Whois 212.56.53.147

IP Abuse Reports for 212.56.53.147:

This IP address has been reported a total of 18 times from 11 distinct sources. 212.56.53.147 was first reported on April 28th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-04-18 03:16:59 (2 months ago)	Blocked by UFW (TCP on 110) Source port: 15220 TTL: 24 Packet length: 44 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 110) Source port: 15220 TTL: 24 Packet length: 44 TOS: 0x08 This report (for 212.56.53.147) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 Dampen59	2026-04-17 01:56:03 (2 months ago)	(sshd) Failed SSH login from 212.56.53.147 (US/United States/-): 5 in the last 3600 secs; Ports: ; ... show more (sshd) Failed SSH login from 212.56.53.147 (US/United States/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_SSHD; Logs: Apr 17 03:48:29 odedi99222 sshd[1814]: Did not receive identification string from 212.56.53.147 port 27219 Apr 17 03:48:30 odedi99222 sshd[1857]: Invalid user OpenVASVT from 212.56.53.147 port 20807 Apr 17 03:48:33 odedi99222 sshd[1857]: Failed password for invalid user OpenVASVT from 212.56.53.147 port 20807 ssh2 Apr 17 03:50:39 odedi99222 sshd[8741]: Did not receive identification string from 212.56.53.147 port 51301 Apr 17 03:55:59 odedi99222 sshd[25280]: Did not receive identification string from 212.56.53.147 port 25142 show less	Port Scan
🇮🇩 xveil	2026-04-09 00:03:15 (2 months ago)	2026-04-09T07:03:13.495404 mail-honeypot postfix/submission/smtpd[12273]: warning: unknown[212.56.53 ... show more 2026-04-09T07:03:13.495404 mail-honeypot postfix/submission/smtpd[12273]: warning: unknown[212.56.53.147]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force
🇦🇺 oncord	2026-02-16 08:46:29 (4 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-01 16:37:22 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.53.147 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.56.53.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 11:37:14.498665 2026] [security2:error] [pid 531245:tid 531245] [client 212.56.53.147:58261] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|georgelaceysales.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "georgelaceysales.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aX-BOr9onkX65Vp-63l2lgAAAA0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 catalink.com	2026-02-01 15:35:34 (4 months ago)	Brute forcing Wordpress login	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-02-01 15:17:39 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.53.147 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.56.53.147 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 10:17:32.010205 2026] [security2:error] [pid 1989:tid 1989] [client 212.56.53.147:7920] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|advancedmachininginc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "advancedmachininginc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aX9ujM5lwp0amO1WieAd3QAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-01 14:31:02 (4 months ago)	Malicious activity detected	Hacking Web App Attack
🇪🇸 Global Cyber Police	2025-07-27 18:10:12 (10 months ago)	Malicious bot activity detected: Hitting honeypot page (200 OK with 258/259 bytes sent).	Port Scan Brute-Force Web App Attack
Anonymous	2025-06-22 05:05:10 (11 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2025-06-19 05:00:17 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2025-06-16 05:00:13 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2025-06-06 09:35:14 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2025-06-03 09:35:11 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2025-05-31 09:30:12 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.223.107.86

🇧🇷 187.109.130.140

🇮🇶 185.166.25.150

🇻🇳 115.77.111.2

🇮🇹 87.20.194.35

🇬🇧 35.203.211.8

🇺🇸 2607:f8b0:4004:c17::127

🇪🇸 213.194.159.252

🇬🇧 194.74.196.10

🇬🇧 193.163.125.246

🇫🇮 185.148.3.54

🇳🇱 176.65.139.181

🇺🇸 173.48.127.244

🇩🇪 167.94.145.29

🇻🇳 116.99.174.84

🇩🇪 91.21.229.244

🇧🇪 84.197.45.175

🇮🇶 62.201.239.79

🇫🇷 37.67.108.154

🇨🇳 36.140.123.73