JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.54.36

212.56.54.36 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 0%: ?

ISP	VPN Consumer New Jersey, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4213
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Trenton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.54.36

Whois 212.56.54.36

IP Abuse Reports for 212.56.54.36:

This IP address has been reported a total of 13 times from 13 distinct sources. 212.56.54.36 was first reported on May 7th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 Progetto1	2026-03-15 20:11:02 (2 months ago)	Mail - Multiple failed login attempts	Brute-Force Exploited Host
🇺🇸 bigscoots.com	2026-02-21 06:19:27 (3 months ago)	(smtpauth) Failed SMTP AUTH login from 212.56.54.36 (US/United States/-): 5 in the last 3600 secs; P ... show more (smtpauth) Failed SMTP AUTH login from 212.56.54.36 (US/United States/-): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2026-02-21 01:18:57 dovecot_plain authenticator failed for H=([10.27.18.25]) [212.56.54.36]:8589: 535 Incorrect authentication data ([email protected]) 2026-02-21 01:19:03 dovecot_login authenticator failed for H=([10.27.18.25]) [212.56.54.36]:8589: 535 Incorrect authentication data ([email protected]) 2026-02-21 01:19:09 dovecot_plain authenticator failed for H=([10.27.18.25]) [212.56.54.36]:43287: 535 Incorrect authentication data ([email protected]) 2026-02-21 01:19:15 dovecot_login authenticator failed for H=([10.27.18.25]) [212.56.54.36]:43287: 535 Incorrect authentication data ([email protected]) 2026-02-21 01:19:23 dovecot_plain authenticator failed for H=([10.27.18.25]) [212.56.54.36]:31560: 535 Incorrect authentication data ([email protected]) show less	Brute-Force SSH
🇨🇿 lp	2026-02-20 16:25:25 (3 months ago)	Email account brute force: 6 attempts were recorded from 212.56.54.36 2026-02-20T16:15:13+01:00 warn ... show more Email account brute force: 6 attempts were recorded from 212.56.54.36 2026-02-20T16:15:13+01:00 warning: unknown[212.56.54.36]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-02-20T16:15:14+01:00 warning: unknown[212.56.54.36]: SASL LOGIN authentication failed: authentication failure, [email protected] 2026-02-20T16:15:15+01:00 warning: unknown[212.56.54.36]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-02-20T16:15:15+01:00 warning: unknown[212.56.54.36]: SASL LOGIN authentication failed: authentication failure, [email protected] 2026-02-20T16:15:23+01:00 warning: unknown[212.56.54.36]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-02-20T16:15:24+01:00 warning: unknown[212.56.54.36]: SASL LOGIN authentication failed: authenticatio show less	Brute-Force
🇫🇷 vhnmn	2026-02-18 23:02:28 (3 months ago)	spam/brute force attack blocked attempt from fail2ban ...	Email Spam Brute-Force
Anonymous	2026-02-12 02:05:14 (4 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2026-02-01 04:30:50 (4 months ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇫🇷 Dampen59	2026-01-31 17:08:50 (4 months ago)	(smtpauth) Failed SMTP AUTH login from 212.56.54.36 (US/United States/-): 5 in the last 3600 secs; P ... show more (smtpauth) Failed SMTP AUTH login from 212.56.54.36 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-01-31 17:08:34 dovecot_login authenticator failed for H=(ADMIN) [212.56.54.36]:28749: 535 Incorrect authentication data ([email protected]) 2026-01-31 17:08:40 dovecot_login authenticator failed for H=(ADMIN) [212.56.54.36]:19325: 535 Incorrect authentication data ([email protected]) 2026-01-31 17:08:43 dovecot_login authenticator failed for H=(ADMIN) [212.56.54.36]:21379: 535 Incorrect authentication data ([email protected]) 2026-01-31 17:08:49 dovecot_login authenticator failed for H=(ADMIN) [212.56.54.36]:5142: 535 Incorrect authentication data ([email protected]) 2026-01-31 17:08:49 dovecot_login authenticator failed for H=(ADMIN) [212.56.54.36]:45065: 535 Incorrect authentication data ([email protected]) show less	Port Scan
🇫🇷 Kraften	2025-10-14 15:26:07 (8 months ago)	Tentative Web App attack ...	Web App Attack
🇩🇪 stinpriza	2025-08-05 13:08:52 (10 months ago)	Web App Attack	Web App Attack
🇦🇺 MAGIC	2025-06-09 17:03:26 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 LRob.fr	2025-05-31 00:15:06 (1 year ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-18 05:51:48 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 212.56.54.36 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 212.56.54.36 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 18 01:51:43.564914 2025] [security2:error] [pid 1651554:tid 1651554] [client 212.56.54.36:63750] [client 212.56.54.36] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cnprcertificationreviews.org\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cnprcertificationreviews.org"] [uri "/instagram.com"] [unique_id "aCl1b2UeTl3zTxKCLHWp7gAAABI"], referer: https://cnprcertificationreviews.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-05-07 03:03:04 (1 year ago)	Form spam	Web Spam

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 207.219.221.101

🇬🇧 198.244.168.113

🇩🇪 193.124.20.246

🇩🇪 158.94.208.109

🇻🇳 125.212.244.35

🇭🇰 103.20.223.56

🇺🇸 52.186.169.24

🇨🇩 41.79.235.70

🇨🇴 152.200.205.179

🇨🇳 113.135.194.170

🇺🇸 52.165.82.22

🇫🇷 2a02:c206:2163:3416::1

🇯🇵 153.121.70.198

🇬🇧 147.148.205.252

🇻🇳 103.172.236.241

🇬🇧 35.203.211.193

🇺🇸 2602:80d:1007::50

🇩🇪 194.88.98.89

🇵🇱 172.253.13.220

🇺🇸 161.35.2.225