JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 136.158.0.134

136.158.0.134 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 4%: ?

ISP	CONVERGE ICT Net blocks
Usage Type	Fixed Line ISP
ASN	AS17639
Hostname(s)	134.0.158.136-rev.convergeict.com
Domain Name	convergeict.com
Country	🇵🇭 Philippines
City	Quezon City, National Capital Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 136.158.0.134

Whois 136.158.0.134

IP Abuse Reports for 136.158.0.134:

This IP address has been reported a total of 10 times from 9 distinct sources. 136.158.0.134 was first reported on July 31st 2021, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-26 05:24:28 (10 hours ago)	(mod_security) mod_security (id:240335) triggered by 136.158.0.134 (134.0.158.136-rev.convergeict.co ... show more (mod_security) mod_security (id:240335) triggered by 136.158.0.134 (134.0.158.136-rev.convergeict.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 01:24:24.322318 2026] [security2:error] [pid 4903:tid 4903] [client 136.158.0.134:55849] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 136.158.0.134 (+1 hits since last alert)\|abeltours.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "abeltours.com"] [uri "/xmlrpc.php"] [unique_id "aj4NCJSZEyHpY8t870yZAAAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2025-08-31 10:00:44 (9 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-31 03:41:00 (9 months ago)	(mod_security) mod_security (id:225170) triggered by 136.158.0.134 (134.0.158.136-rev.convergeict.co ... show more (mod_security) mod_security (id:225170) triggered by 136.158.0.134 (134.0.158.136-rev.convergeict.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 30 23:40:53.404456 2025] [security2:error] [pid 13608:tid 13608] [client 136.158.0.134:40124] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|newcitypark.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "newcitypark.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aLPERa1y4r9brbvJbyieIQAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 weblite	2025-08-29 04:30:49 (9 months ago)	WP_XMLRPC_ABUSE	Brute-Force Web App Attack
Anonymous	2025-08-29 04:27:28 (9 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇳🇱 BlueWire Hosting	2025-08-29 04:10:04 (9 months ago)	Probing Wordpress websites	Web App Attack
🇫🇮 as211431.net	2025-08-29 03:44:05 (9 months ago)	Triggered Cloudflare WAF (firewallCustom) from PH. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from PH. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (POST method) Endpoint: /xmlrpc.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇭 zynex	2023-03-03 05:49:15 (3 years ago)	URL Probing: /de/wp-login.php	Web App Attack
Anonymous	2023-03-02 01:50:00 (3 years ago)	"Illegal file type"	Brute-Force
🇧🇬 lukanet	2021-07-31 04:41:28 (4 years ago)	Invalid user admin from 136.158.0.134 port 38289	Brute-Force SSH

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 191.210.133.134

🇲🇽 187.228.132.26

🇺🇸 174.48.253.30

🇻🇳 163.223.211.27

🇭🇰 152.32.239.122

🇨🇳 119.181.62.253

🇺🇸 66.132.195.97

🇩🇪 44.148.218.229

🇲🇦 41.142.204.151

🇨🇳 14.103.127.233

🇬🇧 5.226.140.28

🇮🇶 194.31.93.171

🇨🇴 190.253.26.116

🇬🇧 185.247.137.236

🇨🇳 117.84.42.109

🇷🇴 92.118.39.71

🇫🇷 85.217.140.3

🇺🇸 44.6.117.66

🇴🇲 37.28.11.225

🇸🇬 20.212.25.134