JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.54.243

212.56.54.243 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 0%: ?

ISP	VPN Consumer New Jersey, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4213
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Trenton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.54.243

Whois 212.56.54.243

IP Abuse Reports for 212.56.54.243:

This IP address has been reported a total of 7 times from 7 distinct sources. 212.56.54.243 was first reported on August 6th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 SvrAdmin	2026-04-03 06:35:25 (2 months ago)	[101] (smtpauth) Failed SMTP AUTH login from 212.56.54.243 (US/United States/-): 5 in the last 3600 ... show more [101] (smtpauth) Failed SMTP AUTH login from 212.56.54.243 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-04-03 03:34:53 dovecot_plain authenticator failed for H=([10.34.18.112]) [212.56.54.243]:53965: 535 Incorrect authentication data ([email protected]) 2026-04-03 03:34:59 dovecot_login authenticator failed for H=([10.34.18.112]) [212.56.54.243]:53965: 535 Incorrect authentication data ([email protected]) 2026-04-03 03:35:17 dovecot_plain authenticator failed for H=([10.34.18.112]) [212.56.54.243]:53345: 535 Incorrect authentication data ([email protected]) 2026-04-03 03:35:19 dovecot_login authenticator failed for H=([10.34.18.112]) [212.56.54.243]:53345: 535 Incorrect authentication data ([email protected]) 2026-04-03 03:35:22 dovecot_plain authenticator failed for H=([10.34.18.112]) [212.56.54.243]:36785: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
🇩🇪 kreativstrecke	2026-04-03 06:35:15 (2 months ago)	2026-04-03T08:35:06.127077+02:00 srv02 postfix/submission/smtpd[668087]: lost connection after CONNE ... show more 2026-04-03T08:35:06.127077+02:00 srv02 postfix/submission/smtpd[668087]: lost connection after CONNECT from unknown[212.56.54.243] 2026-04-03T08:35:08.421958+02:00 srv02 postfix/submission/smtpd[668087]: warning: unknown[212.56.54.243]: SASL PLAIN authentication failed: (reason unavailable), [email protected] 2026-04-03T08:35:14.321110+02:00 srv02 postfix/submission/smtpd[668087]: warning: unknown[212.56.54.243]: SASL LOGIN authentication failed: (reason unavailable), [email protected] ... show less	Brute-Force
🇨🇿 lp	2026-01-29 07:25:25 (4 months ago)	Email account brute force: 5 attempts were recorded from 212.56.54.243 2026-01-29T07:16:21+01:00 war ... show more Email account brute force: 5 attempts were recorded from 212.56.54.243 2026-01-29T07:16:21+01:00 warning: unknown[212.56.54.243]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-01-29T07:16:21+01:00 warning: unknown[212.56.54.243]: SASL LOGIN authentication failed: authentication failure, [email protected] 2026-01-29T07:16:22+01:00 warning: unknown[212.56.54.243]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-01-29T07:16:22+01:00 warning: unknown[212.56.54.243]: SASL LOGIN authentication failed: authentication failure, [email protected] 2026-01-29T07:16:30+01:00 warning: unknown[212.56.54.243]: SASL PLAIN authentication failed: authentication failure, [email protected] show less	Brute-Force
Anonymous	2025-11-07 03:02:53 (7 months ago)	VPN Bruteforce, 34 unique users, 211 total failures, and 100.00% failures	Brute-Force
Anonymous	2025-11-07 00:58:51 (7 months ago)	This IP was involved in an brute force and password spray attack on 2025/11/06 18:57:11	Port Scan Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2025-08-18 09:51:14 (10 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.54.243 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 212.56.54.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 18 05:51:07.436992 2025] [security2:error] [pid 24801:tid 24801] [client 212.56.54.243:37157] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|spacebooger.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "spacebooger.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aKL3i3R6J_ehUW30V7yRuQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 S.O.B.A. Dev.	2025-08-06 20:20:15 (10 months ago)	Threat Blocked by BeeHive from (ASN:4213) (Network:EVOCATIVE-GLOBAL) (Host:soba.dev) (Method:GET) (P ... show more Threat Blocked by BeeHive from (ASN:4213) (Network:EVOCATIVE-GLOBAL) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2025-08-06T20:20:15Z) show less	Web Spam Brute-Force Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 193.56.116.118

🇺🇸 162.216.149.22

🇮🇳 103.245.34.226

🇩🇪 47.245.142.138

🇱🇹 45.227.254.38

🇳🇱 45.148.10.152

🇮🇩 43.129.33.244

🇨🇳 222.141.130.227

🇲🇿 197.219.208.58

🇺🇸 178.156.161.157

🇧🇷 152.32.200.213

🇨🇦 148.113.221.241

🇹🇭 125.25.183.157

🇨🇳 116.162.53.80

🇺🇸 66.132.186.200

🇺🇸 52.238.198.211

🇳🇱 45.148.10.157

🇨🇴 186.146.235.58

🇸🇬 157.230.250.138

🇰🇷 118.39.57.133