JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.54.152

212.56.54.152 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 2%: ?

ISP	VPN Consumer New Jersey, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4213
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Trenton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.54.152

Whois 212.56.54.152

IP Abuse Reports for 212.56.54.152:

This IP address has been reported a total of 21 times from 11 distinct sources. 212.56.54.152 was first reported on July 4th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 donarev419	2026-06-07 00:17:18 (2 weeks ago)	Connection to port 14307 with data transfer. Data preview: W��D�� FF\|�3a�x�I�!�^(��L&�(\1g�z� �0� ... show more Connection to port 14307 with data transfer. Data preview: W��D�� FF\|�3a�x�I�!�^(��L&�(\1g�z� �0��2T��X6�!wO��Ax�l��K�d=�L��t�;��3��of-S�� show less	Port Scan Hacking
🇺🇸 agabeckov	2026-04-16 03:01:56 (2 months ago)	Fail2Ban detected brute-force attempt on Cisco Anyconnect	VPN IP Brute-Force
🇺🇸 Secure Gateway®️	2026-03-23 22:00:27 (3 months ago)	Report By Secure Gateway Security Team: Suspicious File Upload Attempt	Hacking
🇺🇸 ALSCO®️	2026-03-23 22:00:27 (3 months ago)	Report By ALSCO Security Team: Brute Force Login Attempt	Web App Attack
🇺🇸 ALSCO®️	2026-03-22 22:00:26 (3 months ago)	Report By ALSCO Security Team: Unauthorized Connection Attempt	Web App Attack
🇺🇸 Secure Gateway®️	2026-03-22 22:00:25 (3 months ago)	Report By Secure Gateway Security Team: SQL Injection Attempt Detected	SQL Injection
🇺🇸 Secure Gateway®️	2026-03-21 22:00:23 (3 months ago)	Report By Secure Gateway Security Team: XSS Injection Attempt Detected	SQL Injection
🇺🇸 ALSCO®️	2026-03-21 22:00:23 (3 months ago)	Report By ALSCO Security Team: XSS Injection Attempt Detected	Web App Attack
🇩🇪 netclix.gr	2026-02-19 17:45:27 (4 months ago)	(mysaslmatch) Failed SASL login from 212.56.54.152 (US/United States/-): 2 in the last 4600 secs; Po ... show more (mysaslmatch) Failed SASL login from 212.56.54.152 (US/United States/-): 2 in the last 4600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: Feb 19 19:45:26 anak postfix/smtpd[18493]: warning: unknown[212.56.54.152]: SASL PLAIN authentication failed: authentication failure Feb 19 19:45:26 anak postfix/smtpd[18493]: warning: unknown[212.56.54.152]: SASL LOGIN authentication failed: authentication failure show less	Port Scan
🇮🇩 sockominfo	2026-01-09 08:00:47 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 4.7/10 (MEDIUM). Reported by Tangeran ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 4.7/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-01-09 07:00:12 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 7.4/10 (HIGH). CVSS: 6.8/10 (Medium). ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 7.4/10 (HIGH). CVSS: 6.8/10 (Medium). Bayesian: 85%. MITRE: T1071. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Exploited Host
🇮🇩 sockominfo	2026-01-09 06:00:46 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 4.9/10 (MEDIUM). Reported by Tangeran ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 4.9/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-01-09 04:00:46 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 5.1/10 (MEDIUM). Reported by Tangeran ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 5.1/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-01-09 03:00:07 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 7.4/10 (HIGH). CVSS: 6.8/10 (Medium). ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 7.4/10 (HIGH). CVSS: 6.8/10 (Medium). Bayesian: 84%. MITRE: T1071. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Exploited Host
🇮🇩 sockominfo	2026-01-09 02:00:46 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 5.3/10 (MEDIUM). Reported by Tangeran ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 5.3/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 168.144.92.125

🇨🇳 120.48.181.192

🇺🇸 74.192.225.229

🇺🇸 147.185.132.66

🇮🇩 103.132.236.30

🇰🇷 59.22.54.58

🇸🇬 43.172.194.130

🇬🇧 35.203.210.150

🇳🇱 204.76.203.231

🇺🇸 95.173.217.162

🇷🇺 95.167.225.76

🇺🇸 52.248.40.89

🇫🇷 207.180.234.155

🇹🇼 198.235.24.95

🇨🇳 58.208.84.103

🇺🇸 24.9.62.92

🇳🇱 192.178.118.157

🇺🇸 185.191.171.14

🇺🇸 50.84.211.204

🇰🇷 211.196.31.2