JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.53.173

212.56.53.173 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	VPN Consumer Los Angeles, United States
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4213
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.53.173

Whois 212.56.53.173

IP Abuse Reports for 212.56.53.173:

This IP address has been reported a total of 9 times from 5 distinct sources. 212.56.53.173 was first reported on October 8th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-02-14 09:55:07 (4 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2026-02-11 09:50:17 (4 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
🇹🇷 rtbh.com.tr	2026-02-05 08:11:23 (4 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 TPI-Abuse	2026-01-29 23:01:38 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.53.173 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.56.53.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 29 18:01:33.494022 2026] [security2:error] [pid 29165:tid 29189] [client 212.56.53.173:63919] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|andestravel.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "andestravel.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aXvmzfDi3bXh13C6JR9fcgAAABE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 rtbh.com.tr	2026-01-29 20:11:17 (4 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 xmission.com	2026-01-20 02:21:08 (5 months ago)	Blocked by UFW (TCP on 1) Source port: 33541 TTL: 115 Packet length: 52 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 1) Source port: 33541 TTL: 115 Packet length: 52 TOS: 0x08 This report (for 212.56.53.173) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2025-11-05 23:24:38 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.53.173 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.56.53.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 05 18:24:32.305742 2025] [security2:error] [pid 29328:tid 29328] [client 212.56.53.173:3009] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|34thprs.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "34thprs.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aQvcsLsNl064irSeTSFwpwAAAAk"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-05 21:37:55 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.53.173 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.56.53.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 05 16:37:51.113629 2025] [security2:error] [pid 25833:tid 25833] [client 212.56.53.173:8472] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|saadeh.ws\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "saadeh.ws"] [uri "/wp-json/wp/v2/users"] [unique_id "aQvDrzcOBKd4MZEdDgL8wQAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-08 00:29:58 (8 months ago)	Botnet activity detected: Botnet scanning activity, Horizontal + coordinated pattern, Complex coordi ... show more Botnet activity detected: Botnet scanning activity, Horizontal + coordinated pattern, Complex coordinated attack, Repeated interval SYN attack, Distributed botnet participant, Advanced persistent scanning, Horizontal + regular pattern, Coordinated SYN scan, Distributed coordinated scan, Multi-IP interval attack (+1 more). Total 11 blocks. show less	DDoS Attack Port Scan Hacking

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 201.165.168.2

🇺🇸 74.208.177.56

🇺🇸 3.87.27.156

🇲🇦 196.75.134.173

🇲🇽 186.96.158.180

🇮🇶 185.166.25.150

🇨🇳 118.196.13.204

🇦🇪 51.112.131.195

🇺🇸 50.6.228.32

🇪🇬 41.128.181.199

🇹🇭 202.29.223.30

🇩🇪 167.94.145.27

🇻🇳 118.70.131.235

🇨🇳 111.38.36.219

🇮🇳 103.160.153.158

🇺🇸 65.49.1.23

🇰🇷 58.229.253.119

🇳🇱 52.233.193.61

🇺🇸 47.251.65.123

🇸🇬 43.160.250.64