JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.56.54.73

212.56.54.73 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	VPN Consumer New Jersey, United States of America
Usage Type	Data Center/Web Hosting/Transit
ASN	AS4213
Domain Name	vpnconsumer.com
Country	🇺🇸 United States of America
City	Trenton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.56.54.73

Whois 212.56.54.73

IP Abuse Reports for 212.56.54.73:

This IP address has been reported a total of 8 times from 6 distinct sources. 212.56.54.73 was first reported on June 6th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-29 22:25:21 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.54.73 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 212.56.54.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 29 17:25:17.229962 2026] [security2:error] [pid 15786:tid 15786] [client 212.56.54.73:4522] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|texasbordertours.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "texasbordertours.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXveTZA16Ui8cyX_21JzbwAAAAo"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-16 08:19:11 (6 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇨🇭 backslash	2025-11-23 21:10:08 (6 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇪🇸 el-brujo	2025-11-04 12:02:52 (7 months ago)	[Tue Nov 04 13:02:49.540459 2025] [proxy_fcgi:error] [pid 1124550:tid 1125387] [remote 212.56.54.73: ... show more [Tue Nov 04 13:02:49.540459 2025] [proxy_fcgi:error] [pid 1124550:tid 1125387] [remote 212.56.54.73:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com [Tue Nov 04 13:02:51.881970 2025] [proxy_fcgi:error] [pid 1124550:tid 1125514] [remote 212.56.54.73:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com ... show less	Hacking Web App Attack
🇪🇸 el-brujo	2025-11-04 12:02:46 (7 months ago)	Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: elhacker.net userAgent: Apache-HttpC ... show more Cloudflare WAF: Request Path: /xmlrpc.php Request Query: Host: elhacker.net userAgent: Apache-HttpClient/4.5.13 (Java/11.0.28) Action: managed_challenge Source: firewallManaged ASN Description: EVOCATIVE-GLOBAL Country: US Method: POST Timestamp: 2025-11-04T12:02:46Z ruleId: 5de7edfa648c4d6891dc3e7f84534ffa. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇩🇪 kjaerulff	2025-11-04 11:09:22 (7 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇺🇸 TPI-Abuse	2025-11-02 13:53:57 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 212.56.54.73 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 212.56.54.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 02 08:53:51.730133 2025] [security2:error] [pid 12570:tid 12695] [client 212.56.54.73:20603] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pref-realestate.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pref-realestate.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQdib_wyiU2ouVb8wp4qMAAAAI0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-06-06 03:31:04 (1 year ago)	Form spam	Web Spam

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.13.141.86

🇧🇷 186.226.214.94

🇺🇸 147.185.132.157

🇱🇹 45.227.254.170

🇮🇷 5.114.203.132

🇺🇸 147.185.132.222

🇭🇰 118.193.38.26

🇫🇷 109.199.125.217

🇫🇷 85.217.140.30

🇸🇪 83.233.113.250

🇺🇸 45.56.103.200

🇺🇸 34.150.236.136

🇨🇳 218.89.48.175

🇺🇸 195.184.76.174

🇳🇱 176.65.139.181

🇩🇪 167.94.145.21

🇺🇸 162.216.149.181

🇭🇰 152.32.135.48

🇵🇰 119.156.28.157

🇻🇳 115.79.40.41