JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 188.212.135.136

188.212.135.136 was found in our database!

This IP was reported 156 times. Confidence of Abuse is 50%: ?

50%

ISP	VPN Consumer Warsaw, Poland
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 188.212.135.136

Whois 188.212.135.136

IP Abuse Reports for 188.212.135.136:

This IP address has been reported a total of 156 times from 66 distinct sources. 188.212.135.136 was first reported on March 21st 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-12 22:30:27 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇷🇺 sms.ru	2026-06-11 19:34:14 (2 days ago)	/wp-admin/css/colors/blue/wp-trackback.php	Web App Attack
🇺🇸 nyt	2026-06-11 18:22:31 (2 days ago)	Web Shell Upload	Hacking Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-11 11:09:50 (2 days ago)	Blocked by CSF 13 firewall - Rule: XMLRPC GB/United Kingdom/-	Web App Attack
🇬🇧 consul.to	2026-06-11 05:27:35 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 dynamix	2026-06-10 22:27:28 (3 days ago)	Multiple WAF Violations	Web App Attack
🇫🇷 dynamix	2026-06-08 18:03:18 (5 days ago)	Multiple WAF Violations	Web App Attack
🇮🇩 securejdprop	2026-06-08 15:47:59 (5 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET HUNTING Request ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET HUNTING Request for Webshell in .well-known directory). Ip 188.212.135.136 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-08 15:47:57.977618745 +0000 UTC show less	Hacking Web App Attack
🇫🇷 Octopuce	2026-06-08 13:19:03 (5 days ago)	Aggressive web search of vulnerable pages: /gifclass.php /plugin.php /wp-content/themes/twentytwenty ... show more Aggressive web search of vulnerable pages: /gifclass.php /plugin.php /wp-content/themes/twentytwentyfour/bypass.php /update-core.php /wp-admin/ ... show less	Web App Attack
🇫🇷 conseilgouz	2026-05-05 17:40:25 (1 month ago)	ame-6 : Trying access system files=>/license.php(license.php)	Hacking
🇨🇭 zynex	2026-04-30 08:56:25 (1 month ago)	URL Probing: /sys.php	Web App Attack
🇬🇧 consul.to	2026-04-30 01:38:06 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 dynamix	2026-04-29 18:25:30 (1 month ago)	Multiple WAF Violations	Web App Attack
🇬🇧 consul.to	2026-04-24 09:43:25 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-04-19 03:37:22 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 188.212.135.136 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 188.212.135.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 18 23:36:58.313067 2026] [security2:error] [pid 2418431:tid 2418431] [client 188.212.135.136:39059] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.justicehoward.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.justicehoward.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aeRN2mTEg7NdGDXujyM6OQAAAFg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 156 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 219.91.220.210

🇰🇷 218.236.61.29

🇺🇸 205.210.31.39

🇺🇸 173.244.60.241

🇺🇸 147.185.132.191

🇵🇭 120.29.91.166

🇰🇷 118.33.113.1

🇰🇷 112.219.151.50

🇨🇳 111.228.10.226

🇳🇱 91.92.40.7

🇺🇸 63.135.169.175

🇨🇳 59.36.233.74

🇬🇧 35.203.211.78

🇭🇰 223.26.57.83

🇺🇸 172.212.171.149

🇦🇷 131.161.184.46

🇯🇵 124.18.182.99

🇨🇳 115.223.175.68

🇮🇩 43.133.148.170

🇭🇰 38.207.133.27