JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.54.152

212.56.54.152 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 2%: ?

ISP	VPN Consumer New Jersey, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4213
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Trenton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.54.152

Whois 212.56.54.152

IP Abuse Reports for 212.56.54.152:

This IP address has been reported a total of 21 times from 11 distinct sources. 212.56.54.152 was first reported on July 4th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 donarev419	2026-06-07 00:17:18 (2 weeks ago)	Connection to port 14307 with data transfer. Data preview: W��D�� FF\|�3a�x�I�!�^(��L&�(\1g�z� �0� ... show more Connection to port 14307 with data transfer. Data preview: W��D�� FF\|�3a�x�I�!�^(��L&�(\1g�z� �0��2T��X6�!wO��Ax�l��K�d=�L��t�;��3��of-S�� show less	Port Scan Hacking
🇺🇸 agabeckov	2026-04-16 03:01:56 (2 months ago)	Fail2Ban detected brute-force attempt on Cisco Anyconnect	VPN IP Brute-Force
🇺🇸 Secure Gateway®️	2026-03-23 22:00:27 (3 months ago)	Report By Secure Gateway Security Team: Suspicious File Upload Attempt	Hacking
🇺🇸 ALSCO®️	2026-03-23 22:00:27 (3 months ago)	Report By ALSCO Security Team: Brute Force Login Attempt	Web App Attack
🇺🇸 ALSCO®️	2026-03-22 22:00:26 (3 months ago)	Report By ALSCO Security Team: Unauthorized Connection Attempt	Web App Attack
🇺🇸 Secure Gateway®️	2026-03-22 22:00:25 (3 months ago)	Report By Secure Gateway Security Team: SQL Injection Attempt Detected	SQL Injection
🇺🇸 Secure Gateway®️	2026-03-21 22:00:23 (3 months ago)	Report By Secure Gateway Security Team: XSS Injection Attempt Detected	SQL Injection
🇺🇸 ALSCO®️	2026-03-21 22:00:23 (3 months ago)	Report By ALSCO Security Team: XSS Injection Attempt Detected	Web App Attack
🇩🇪 netclix.gr	2026-02-19 17:45:27 (4 months ago)	(mysaslmatch) Failed SASL login from 212.56.54.152 (US/United States/-): 2 in the last 4600 secs; Po ... show more (mysaslmatch) Failed SASL login from 212.56.54.152 (US/United States/-): 2 in the last 4600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: Feb 19 19:45:26 anak postfix/smtpd[18493]: warning: unknown[212.56.54.152]: SASL PLAIN authentication failed: authentication failure Feb 19 19:45:26 anak postfix/smtpd[18493]: warning: unknown[212.56.54.152]: SASL LOGIN authentication failed: authentication failure show less	Port Scan
🇮🇩 sockominfo	2026-01-09 08:00:47 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 4.7/10 (MEDIUM). Reported by Tangeran ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 4.7/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-01-09 07:00:12 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 7.4/10 (HIGH). CVSS: 6.8/10 (Medium). ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 7.4/10 (HIGH). CVSS: 6.8/10 (Medium). Bayesian: 85%. MITRE: T1071. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Exploited Host
🇮🇩 sockominfo	2026-01-09 06:00:46 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 4.9/10 (MEDIUM). Reported by Tangeran ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 4.9/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-01-09 04:00:46 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 5.1/10 (MEDIUM). Reported by Tangeran ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 5.1/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-01-09 03:00:07 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 7.4/10 (HIGH). CVSS: 6.8/10 (Medium). ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 7.4/10 (HIGH). CVSS: 6.8/10 (Medium). Bayesian: 84%. MITRE: T1071. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Exploited Host
🇮🇩 sockominfo	2026-01-09 02:00:46 (5 months ago)	Postfix: Multiple SASL authentication failures.. Threat Score: 5.3/10 (MEDIUM). Reported by Tangeran ... show more Postfix: Multiple SASL authentication failures.. Threat Score: 5.3/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇾 188.133.4.44

🇺🇸 66.228.53.204

🇨🇳 49.72.73.233

🇧🇭 46.184.160.233

🇬🇧 35.203.210.11

🇩🇪 213.209.159.236

🇺🇸 184.168.21.211

🇻🇳 171.244.201.80

🇺🇸 162.240.35.200

🇺🇦 88.81.224.3

🇩🇪 69.5.169.151

🇫🇷 37.66.107.250

🇹🇼 198.235.24.91

🇲🇽 187.190.35.163

🇺🇿 185.163.26.39

🇨🇴 181.56.210.115

🇮🇶 169.224.38.149

🇫🇮 147.185.133.218

🇵🇭 138.84.110.177

🇶🇦 135.136.47.161