JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 188.212.135.138

188.212.135.138 was found in our database!

This IP was reported 222 times. Confidence of Abuse is 40%: ?

40%

ISP	VPN Consumer Warsaw, Poland
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 188.212.135.138

Whois 188.212.135.138

IP Abuse Reports for 188.212.135.138:

This IP address has been reported a total of 222 times from 63 distinct sources. 188.212.135.138 was first reported on February 26th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 [email protected]	2026-06-15 23:07:11 (1 week ago)	RdpGuard detected brute-force attempt on RDP	Brute-Force
🇫🇷 dynamix	2026-06-13 11:36:21 (1 week ago)	Multiple WAF Violations	Web App Attack
🇷🇺 sms.ru	2026-06-11 19:37:19 (1 week ago)	/wp-admin/css/about.php	Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-11 11:19:13 (1 week ago)	Blocked by CSF 13 firewall - Rule: XMLRPC GB/United Kingdom/-	Web App Attack
🇬🇧 consul.to	2026-06-11 02:25:00 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 dynamix	2026-06-08 18:04:53 (2 weeks ago)	Multiple WAF Violations	Web App Attack
🇩🇪 MusicLibrary	2026-06-08 15:19:04 (2 weeks ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇫🇷 Octopuce	2026-06-08 13:19:44 (2 weeks ago)	Aggressive web search of vulnerable pages: /wp-admin/includes/class_api.php /plugins/content/apismtp ... show more Aggressive web search of vulnerable pages: /wp-admin/includes/class_api.php /plugins/content/apismtp/apismtp.php /wp-admin/includes/class-core- ... show less	Web App Attack
🇱🇻 garmtech.com	2026-05-11 00:37:34 (1 month ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection
🇫🇷 Octopuce	2026-05-07 01:52:33 (1 month ago)	Aggressive web search of vulnerable pages: /wp-includes/images/wlw/ /wp-content/plugins/js-support-t ... show more Aggressive web search of vulnerable pages: /wp-includes/images/wlw/ /wp-content/plugins/js-support-ticket/ /wp-content/plugins/easy-themes-mana ... show less	Web App Attack
Anonymous	2026-05-05 21:15:57 (1 month ago)	(wp-php-upload-includes) Block attempt to access .php in uploads wordpress uploads or well-known 188 ... show more (wp-php-upload-includes) Block attempt to access .php in uploads wordpress uploads or well-known 188.212.135.138 (PL/Poland/-) show less	Brute-Force
🇳🇿 Antinson	2026-04-30 12:33:26 (1 month ago)	Scraping with a high error ratio and request rate	Bad Web Bot
🇬🇧 consul.to	2026-04-30 01:38:16 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-04-24 07:56:55 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-03-22 17:30:15 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 188.212.135.138 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 188.212.135.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 22 13:30:10.930416 2026] [security2:error] [pid 30172:tid 30172] [client 188.212.135.138:20611] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|asiabeef.network\|F\|2"] [data ".dat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "asiabeef.network"] [uri "/bak/wallet.dat"] [unique_id "acAnIojAjJdQeIOWppaQQAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 222 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.120.176.6

🇺🇸 216.25.89.155

🇺🇸 186.179.39.233

🇳🇱 185.226.197.32

🇺🇸 104.168.4.239

🇺🇸 96.78.175.36

🇫🇷 91.196.152.177

🇮🇳 45.126.168.146

🇷🇺 188.242.90.83

🇺🇸 186.179.39.177

🇺🇸 186.179.39.145

🇺🇸 186.179.39.131

🇧🇷 177.222.169.207

🇺🇸 162.216.150.103

🇸🇬 128.242.234.118

🇵🇰 124.29.226.82

🇸🇾 91.144.21.210

🇩🇪 8.209.107.224

🇫🇷 2001:41d0:33d:9200::407

🇷🇴 193.32.162.71