JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 107.189.2.140

107.189.2.140 was found in our database!

This IP was reported 279 times. Confidence of Abuse is 100%: ?

100%

ISP	BuyVM
Usage Type	Data Center/Web Hosting/Transit
ASN	AS53667
Hostname(s)	namespace.aldeasdelsur.com
Domain Name	frantech.ca
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 107.189.2.140

Whois 107.189.2.140

IP Abuse Reports for 107.189.2.140:

This IP address has been reported a total of 279 times from 102 distinct sources. 107.189.2.140 was first reported on February 12th 2023, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tecnicorioja	2026-05-07 22:00:46 (3 weeks ago)	wp-login attack [07/May/2026:22:56:33	Brute-Force Web App Attack
🇺🇸 mind5t0rm	2026-05-07 20:18:22 (3 weeks ago)	(WPLOGIN) WP Login Attack 107.189.2.140 (LU/Luxembourg/namespace.aldeasdelsur.com): 3 in the last 36 ... show more (WPLOGIN) WP Login Attack 107.189.2.140 (LU/Luxembourg/namespace.aldeasdelsur.com): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 107.189.2.140 - - [08/May/2026:03:10:33 +0700] "GET /wp-login.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0)" 107.189.2.140 - - [08/May/2026:03:10:45 +0700] "GET /wp-login.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; ARM64; rv:115.0) Gecko/20100101 Firefox/115.0" 107.189.2.140 - - [08/May/2026:03:18:19 +0700] "GET /wp-login.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_4 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36" show less	Port Scan
🇺🇸 factor1	2026-05-07 20:00:16 (3 weeks ago)	Fail2ban at churndash Reports Abuse.	Brute-Force Web App Attack
🇺🇸 nationaleventpros.com	2026-05-07 17:26:54 (3 weeks ago)	WordPress login attempt	Brute-Force
🇨🇦 KIsmay	2026-05-07 13:50:58 (3 weeks ago)	May 7 02:52:49 www4 WPAudit[688605]: 107.189.2.140 trilloperelloyates.com "Mozilla/5.0 (Macintosh; ... show more May 7 02:52:49 www4 WPAudit[688605]: 107.189.2.140 trilloperelloyates.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:30.0) Gecko/20100101 Firefox/30.0" sbd-admin:admin FAIL May 7 06:16:11 www4 WPAudit[688062]: 107.189.2.140 servicesfyi.ca "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.153 Safari/537.36" servicesfyi:Servicesfyi123! FAIL May 7 07:47:45 www4 WPAudit[710421]: 107.189.2.140 imaginesalmon.com "Mozilla/5.0 (X11; Linux x86_64; rv:30.0) Gecko/20100101 Firefox/30.0" sbd-admin:Admin FAIL May 7 09:41:42 www4 WPAudit[718040]: 107.189.2.140 vhsport.ca "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" vhsport:pass FAIL May 7 09:50:57 www4 WPAudit[719086]: 107.189.2.140 cottonwoodc.ca "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.153 Safari/537.36" elyena:cottonwoodc2025 FAIL ... show less	Brute-Force Web App Attack
🇺🇸 mind5t0rm	2026-05-07 13:13:33 (3 weeks ago)	(WPLOGIN) WP Login Attack 107.189.2.140 (LU/Luxembourg/namespace.aldeasdelsur.com): 3 in the last 36 ... show more (WPLOGIN) WP Login Attack 107.189.2.140 (LU/Luxembourg/namespace.aldeasdelsur.com): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 107.189.2.140 - - [07/May/2026:19:57:42 +0700] "GET /wp-login.php HTTP/2.0" 200 2260 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.74.9 (KHTML, like Gecko) Version/7.0.2 Safari/537.74.9" 107.189.2.140 - - [07/May/2026:19:58:01 +0700] "POST /wp-login.php HTTP/2.0" 200 3306 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_2) AppleWebKit/537.74.9 (KHTML, like Gecko) Version/7.0.2 Safari/537.74.9" 107.189.2.140 - - [07/May/2026:20:13:31 +0700] "GET /wp-login.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)" show less	Port Scan
🇩🇪 LRob.fr	2026-05-07 12:45:09 (3 weeks ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 factor1	2026-05-07 11:43:49 (3 weeks ago)	Fail2ban at apollo Reports Abuse.	Brute-Force Web App Attack
🇪🇸 masterguru	2026-05-07 11:36:33 (3 weeks ago)	wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (5001900-122)	Web App Attack
🇩🇪 neverdown.eu	2026-05-07 06:25:42 (4 weeks ago)	(WPLOGIN) WordPress wp-login flood 107.189.2.140 (LU/Luxembourg/namespace.aldeasdelsur.com): 3 in th ... show more (WPLOGIN) WordPress wp-login flood 107.189.2.140 (LU/Luxembourg/namespace.aldeasdelsur.com): 3 in the last 60 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 107.189.2.140 - - [07/May/2026:09:09:41 +0300] "POST /wp-login.php HTTP/1.1" 200 6260 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36" 107.189.2.140 - - [07/May/2026:09:11:34 +0300] "POST /wp-login.php HTTP/1.1" 200 6260 "-" "Mozilla/5.0 (Android 14; Mobile; rv:122.0) Gecko/122.0 Firefox/122.0" 107.189.2.140 - - [07/May/2026:09:18:16 +0300] "POST /wp-login.php HTTP/1.1" 200 6264 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Port Scan
🇩🇪 london2038.com	2026-05-07 04:24:46 (4 weeks ago)	Attacking WordPress 107.189.2.140 - - [07/May/2026:06:24:43 +0200] "POST /wp-login.php HTTP/1.1" 503 ... show more Attacking WordPress 107.189.2.140 - - [07/May/2026:06:24:43 +0200] "POST /wp-login.php HTTP/1.1" 503 19307 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/115.0" show less	Brute-Force Web App Attack
🇺🇸 mind5t0rm	2026-05-07 04:14:04 (4 weeks ago)	(WPLOGIN) WP Login Attack 107.189.2.140 (LU/Luxembourg/namespace.aldeasdelsur.com): 3 in the last 36 ... show more (WPLOGIN) WP Login Attack 107.189.2.140 (LU/Luxembourg/namespace.aldeasdelsur.com): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 107.189.2.140 - - [07/May/2026:10:36:31 +0700] "GET /wp-login.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64)" 107.189.2.140 - - [07/May/2026:11:12:50 +0700] "GET /wp-login.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64)" 107.189.2.140 - - [07/May/2026:11:14:00 +0700] "GET /wp-login.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 16_0 like Mac OS X)" show less	Port Scan
🇺🇸 octageeks.com	2026-05-07 04:06:25 (4 weeks ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇺🇸 mind5t0rm	2026-05-07 00:31:36 (4 weeks ago)	(WPLOGIN) WP Login Attack 107.189.2.140 (LU/Luxembourg/namespace.aldeasdelsur.com): 3 in the last 36 ... show more (WPLOGIN) WP Login Attack 107.189.2.140 (LU/Luxembourg/namespace.aldeasdelsur.com): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 107.189.2.140 - - [07/May/2026:07:10:22 +0700] "GET /wp-login.php HTTP/2.0" 200 2260 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.153 Safari/537.36" 107.189.2.140 - - [07/May/2026:07:10:37 +0700] "POST /wp-login.php HTTP/2.0" 200 3306 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.1916.153 Safari/537.36" 107.189.2.140 - - [07/May/2026:07:31:32 +0700] "GET /wp-login.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (X11; Linux x86_64)" show less	Port Scan
🇨🇦 KIsmay	2026-05-06 23:12:42 (4 weeks ago)	May 6 18:00:00 www4 WPAudit[648921]: 107.189.2.140 goldislandforestproducts.ca "Mozilla/5.0 (Macint ... show more May 6 18:00:00 www4 WPAudit[648921]: 107.189.2.140 goldislandforestproducts.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36" gifp:gifp@123! FAIL May 6 18:46:51 www4 WPAudit[652721]: 107.189.2.140 imaginesalmon.com "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)" sbd-admin:sbd-admin@123! FAIL May 6 18:57:09 www4 WPAudit[653488]: 107.189.2.140 katharinedickerson.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" sbd-admin:sbd-admin@123! FAIL May 6 19:11:53 www4 WPAudit[654766]: 107.189.2.140 katharinedickerson.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36" sbd-admin:katharinedickerson123! FAIL May 6 19:12:41 www4 WPAudit[654794]: 107.189.2.140 cottonwoodc.ca "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:31.0) Gecko/20100101 Firefox/31.0" cot ... show less	Brute-Force Web App Attack

Showing 76 to 90 of 279 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.124

🇹🇷 212.252.71.7

🇨🇴 190.71.254.195

🇫🇷 185.177.72.38

🇳🇴 185.14.97.99

🇸🇬 148.66.142.37

🇮🇶 37.77.53.127

🇨🇳 14.103.159.154

🇬🇧 2a06:4880:c000::e4

🇬🇧 2a00:1450:4009:c02::12b

🇭🇰 220.246.42.217

🇳🇱 195.178.110.30

🇫🇷 194.163.139.224

🇬🇧 193.176.29.14

🇸🇾 188.132.150.153

🇹🇼 182.155.189.80

🇮🇹 151.47.14.196

🇦🇺 123.209.97.173

🇧🇩 103.136.200.241

🇽🇰 87.238.213.162