JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.54.208

212.56.54.208 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 0%: ?

ISP	VPN Consumer New Jersey, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4213
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Trenton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.54.208

Whois 212.56.54.208

IP Abuse Reports for 212.56.54.208:

This IP address has been reported a total of 7 times from 4 distinct sources. 212.56.54.208 was first reported on July 10th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-29 13:42:56 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.54.208 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.56.54.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 29 08:42:49.935310 2026] [security2:error] [pid 25524:tid 25524] [client 212.56.54.208:24497] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|misscrankypants.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "misscrankypants.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXtj2TNHdDofcaKSilB2cgAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-29 13:09:22 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.54.208 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.56.54.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 29 08:09:19.230032 2026] [security2:error] [pid 20325:tid 20370] [client 212.56.54.208:36214] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|vavryn.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "vavryn.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aXtb_x-jvlvApSxpUERacwAAAoA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-29 12:29:45 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.54.208 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.56.54.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 29 07:29:41.724903 2026] [security2:error] [pid 3696372:tid 3696372] [client 212.56.54.208:36849] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mavikalem.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mavikalem.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aXtStUSuI-UplMkr04CthAAAAAE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-29 11:37:10 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.54.208 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.56.54.208 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 29 06:37:03.258438 2026] [security2:error] [pid 11406:tid 11406] [client 212.56.54.208:51443] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|opere.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "opere.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXtGX8vNAKZe89xNaVr3EwAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 VXG-NET	2025-12-14 02:30:19 (6 months ago)	port=8080, indicator_type=code-execution	Hacking
🇮🇹 VHosting	2025-11-26 16:11:19 (6 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇩🇪 marzzzello	2025-07-10 02:08:33 (11 months ago)	Ports: 3x 51413	Port Scan

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.184.244.252

🇺🇸 143.42.1.52

🇻🇳 103.82.195.111

🇺🇸 100.50.17.159

🇷🇴 92.118.39.77

🇺🇸 104.243.35.120

🇷🇴 80.94.92.234

🇺🇸 45.84.162.125

🇵🇱 20.215.52.204

🇨🇳 124.236.76.72

🇨🇳 112.102.220.145

🇳🇱 91.92.40.4

🇨🇳 58.242.190.39

🇭🇰 45.10.175.193

🇺🇸 3.131.24.55

🇺🇸 2607:ff10:c8:594::e

🇮🇳 203.192.211.180

🇨🇳 111.53.8.101

🇱🇹 62.60.130.219

🇸🇬 43.156.37.91