JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.54.129

212.56.54.129 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 0%: ?

ISP	VPN Consumer New Jersey, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4213
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Trenton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.54.129

Whois 212.56.54.129

IP Abuse Reports for 212.56.54.129:

This IP address has been reported a total of 19 times from 16 distinct sources. 212.56.54.129 was first reported on May 9th 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-12 05:00:15 (3 months ago)	BruteForce IMAP/POP3/SMTP	Brute-Force
🇮🇹 VHosting	2026-03-12 04:59:17 (3 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
Anonymous	2026-03-12 04:19:01 (3 months ago)	...	Brute-Force
🇮🇩 xveil	2026-03-12 03:18:07 (3 months ago)	2026-03-12T10:18:04.997465 mail-honeypot postfix/submission/smtpd[1078]: warning: unknown[212.56.54. ... show more 2026-03-12T10:18:04.997465 mail-honeypot postfix/submission/smtpd[1078]: warning: unknown[212.56.54.129]: SASL PLAIN authentication failed: authentication failure ... show less	Brute-Force
🇮🇩 aaKenshin	2026-03-12 03:16:52 (3 months ago)	Suspicious activity detected from IP 212.56.54.129 based on mailserver logs. Sample logs: 2026-03-12 ... show more Suspicious activity detected from IP 212.56.54.129 based on mailserver logs. Sample logs: 2026-03-12 10:26:49,668 INFO [qtp2102534528-127673] [name=*@.id;ip=172.16.0.182;oip=212.56.54.129;oport=10061;oproto=smtp;port=51226;soapId=2e79618f;] soap - AuthRequest elapsed=76 2026-03-12 11:16:46,485 INFO [qtp2102534528-127998] [name=*@.id;ip=172.16.0.182;oip=212.56.54.129;oport=4322;oproto=smtp;port=36652;soapId=2e7961ae;] SoapEngine - handler exception: authentication failed for [], LDAP error: - unable to ldap authenticate: invalid credentials 2026-03-12 11:16:46,485 INFO [qtp2102534528-127998] [name=@.id;ip=172.16.0.182;oip=212.56.54.129;oport=4322;oproto=smtp;port=36652;soapId=2e7961ae;] soap - AuthRequest elapsed=2 2026-03-12 11:16:47,001 INFO [qtp2102534528-127894] [name=@.id;ip=172.16.0.182;oip=212.56.54.129;oport=4322;oproto=smtp;port=36660;soapId=2e7961af;] SoapEngine - handler exception: authentication failed for [**], LDAP error: - unable to ldap authenticate: in show less	Brute-Force
🇨🇿 lp	2026-03-12 03:07:46 (3 months ago)	Email account brute force: 10 attempts were recorded from 212.56.54.129 2026-03-12T02:28:24+01:00 wa ... show more Email account brute force: 10 attempts were recorded from 212.56.54.129 2026-03-12T02:28:24+01:00 warning: unknown[212.56.54.129]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-03-12T02:28:24+01:00 warning: unknown[212.56.54.129]: SASL LOGIN authentication failed: authentication failure, [email protected] 2026-03-12T02:28:25+01:00 warning: unknown[212.56.54.129]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-03-12T02:28:25+01:00 warning: unknown[212.56.54.129]: SASL LOGIN authentication failed: authentication failure, [email protected] 2026-03-12T02:29:56+01:00 warning: unknown[212.56.54.129]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-03-12T02:29:56+01:00 warning: unknown[212.56.54.129]: SASL LOGIN authentication failed: authentica show less	Brute-Force
Anonymous	2026-03-12 02:33:25 (3 months ago)	Authentication failure	Brute-Force
Anonymous	2026-03-12 02:07:50 (3 months ago)	(smtpauth) Failed SMTP AUTH login from 212.56.54.129 (US/United States/New Jersey/Trenton/-/[redacte ... show more (smtpauth) Failed SMTP AUTH login from 212.56.54.129 (US/United States/New Jersey/Trenton/-/[redacted]) show less	Brute-Force
Anonymous	2026-03-12 01:23:34 (3 months ago)	SMTP AUTH 212.56.54.129 (SMTP_LOGIN_ATTEMPT)	Brute-Force
🇫🇷 GabrielJST	2026-03-12 00:53:09 (3 months ago)	(smtpauth) Failed SMTP AUTH login from 212.56.54.129 (US/United States/-)	Brute-Force
🇺🇸 bigscoots.com	2026-03-12 00:52:27 (3 months ago)	(smtpauth) Failed SMTP AUTH login from 212.56.54.129 (US/United States/-): 5 in the last 3600 secs; ... show more (smtpauth) Failed SMTP AUTH login from 212.56.54.129 (US/United States/-): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2026-03-11 20:51:57 dovecot_plain authenticator failed for H=([10.40.18.8]) [212.56.54.129]:5301: 535 Incorrect authentication data ([email protected]) 2026-03-11 20:52:03 dovecot_login authenticator failed for H=([10.40.18.8]) [212.56.54.129]:5301: 535 Incorrect authentication data ([email protected]) 2026-03-11 20:52:09 dovecot_plain authenticator failed for H=([10.40.18.8]) [212.56.54.129]:43023: 535 Incorrect authentication data ([email protected]) 2026-03-11 20:52:15 dovecot_login authenticator failed for H=([10.40.18.8]) [212.56.54.129]:43023: 535 Incorrect authentication data ([email protected]) 2026-03-11 20:52:23 dovecot_plain authenticator failed for H=([10.40.18.8]) [212.56.54.129]:13873: 535 Incorrect authentication data ([email protected]) show less	Brute-Force SSH
🇩🇪 www.fransveldman.world	2026-03-12 00:46:25 (3 months ago)	Mar 12 00:46:23 mail postfix/submission/smtpd[2179621]: lost connection after CONNECT from unknown[2 ... show more Mar 12 00:46:23 mail postfix/submission/smtpd[2179621]: lost connection after CONNECT from unknown[212.56.54.129] Mar 12 00:46:25 mail postfix/submission/smtpd[2179621]: warning: unknown[212.56.54.129]: SASL PLAIN authentication failed: ... show less	Brute-Force Email Spam
🇬🇧 cg-design.co.uk	2026-01-25 15:29:58 (4 months ago)	(smtpauth) Failed SMTP AUTH login from 212.56.54.129 (US/United States/-)	Brute-Force
🇺🇸 TPI-Abuse	2025-07-11 12:43:35 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 212.56.54.129 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 212.56.54.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 11 08:43:29.137056 2025] [security2:error] [pid 1232:tid 1232] [client 212.56.54.129:58944] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.221"] [uri "/.env"] [unique_id "aHEG8fGXqr7XoubTclYo8gAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-11 12:24:20 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 212.56.54.129 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 212.56.54.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 11 08:24:12.980216 2025] [security2:error] [pid 31889:tid 31889] [client 212.56.54.129:65223] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.218"] [uri "/.env"] [unique_id "aHECbOF7UuUJGSu2Z6GcwgAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇺 197.225.146.23

🇬🇧 195.206.182.197

🇺🇸 147.185.132.195

🇺🇸 147.185.132.162

🇱🇹 141.98.10.26

🇧🇴 138.36.78.144

🇮🇷 130.185.72.228

🇰🇷 124.5.94.72

🇨🇳 123.145.29.229

🇯🇵 104.28.157.24

🇭🇰 101.36.123.67

🇳🇱 45.148.10.34

🇨🇭 37.120.213.13

🇨🇳 223.71.0.211

🇧🇷 205.210.31.198

🇧🇷 185.99.19.116

🇲🇾 183.171.47.32

🇭🇰 165.154.6.34

🇭🇰 152.32.213.86

🇭🇰 152.32.128.214