JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 114.129.129.139

114.129.129.139 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 99%: ?

99%

ISP	A2 Hosting, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS55293
Hostname(s)	server.orlandohypnosisclinic.com
Domain Name	hosting.com
Country	🇺🇸 United States of America
City	Detroit, Michigan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 114.129.129.139

Whois 114.129.129.139

IP Abuse Reports for 114.129.129.139:

This IP address has been reported a total of 33 times from 23 distinct sources. 114.129.129.139 was first reported on May 23rd 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇹 Malta	2026-06-24 07:11:59 (6 hours ago)	114.129.129.139 - - [24/Jun/2026:09:11:59 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 114.129.129.139 - - [24/Jun/2026:09:11:59 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇷🇴 SpamStopper	2026-06-24 07:08:50 (6 hours ago)	Fail2Ban - WP Spoofing	Port Scan Brute-Force Web App Attack
🇫🇷 tecnicorioja	2026-06-16 22:00:22 (1 week ago)	wp-login attack [16/Jun/2026:04:03:11	Brute-Force Web App Attack
🇩🇪 Hazzard	2026-06-16 01:58:53 (1 week ago)	(wordpress) Failed wordpress login from 114.129.129.139 (US/United States/Arizona/Phoenix/server.orl ... show more (wordpress) Failed wordpress login from 114.129.129.139 (US/United States/Arizona/Phoenix/server.orlandohypnosisclinic.com/[redacted]): (CF_ENABLE) show less	Brute-Force
🇫🇷 tecnicorioja	2026-06-15 22:00:35 (1 week ago)	wp-login attack [15/Jun/2026:11:23:55	Brute-Force Web App Attack
🇧🇪 cmbplf	2026-06-15 00:43:11 (1 week ago)	1.741 POST requests with url.path */wp-login.php	Brute-Force Bad Web Bot
🇳🇱 tmiland	2026-06-15 00:23:46 (1 week ago)	(wordpress_login) WordPress Login Attack 114.129.129.139 (US/United States/server.orlandohypnosiscli ... show more (wordpress_login) WordPress Login Attack 114.129.129.139 (US/United States/server.orlandohypnosisclinic.com): 3 in the last 3600 secs; IP: 114.129.129.139; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 114.129.129.139 - - [15/Jun/2026:02:23:43 +0200] "GET /wp-login.php HTTP/1.1" 200 1935 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 114.129.129.139 - - [15/Jun/2026:02:23:43 +0200] "GET /wp-login.php HTTP/1.1" 200 1935 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 114.129.129.139 - - [15/Jun/2026:02:23:44 +0200] "POST /wp-login.php HTTP/1.1" 200 2069 "https://.*/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Brute-Force
🇬🇧 poundawebsiteltd	2026-06-15 00:17:12 (1 week ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 114.129.129.139 - - [15/Jun/2026:01:17:02 +0100] ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 114.129.129.139 - - [15/Jun/2026:01:17:02 +0100] POST /xmlrpc.php HTTP/2.0 503 0 - Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Web App Attack
Anonymous	2026-06-14 23:24:04 (1 week ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/2.0, [1/1] done	Hacking Web App Attack
Anonymous	2026-06-14 22:35:07 (1 week ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Web App Attack Brute-Force Bad Web Bot
🇩🇪 LRob.fr	2026-06-14 22:00:12 (1 week ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-06-14 20:10:18 (1 week ago)	114.129.129.139 - - [14/Jun/2026:14:10:17 -0600] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5. ... show more 114.129.129.139 - - [14/Jun/2026:14:10:17 -0600] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 17:33:13 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 114.129.129.139 (server.orlandohypnosisclinic.c ... show more (mod_security) mod_security (id:225170) triggered by 114.129.129.139 (server.orlandohypnosisclinic.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 13:33:05.845777 2026] [security2:error] [pid 19305:tid 19305] [client 114.129.129.139:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mail.southernbroadcast.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mail.southernbroadcast.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "ai7l0Q1oTvfoVUsmVZHMegAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 tecnicorioja	2026-06-13 22:00:43 (1 week ago)	wp-login attack [13/Jun/2026:18:18:36	Brute-Force Web App Attack
🇲🇹 Malta	2026-06-13 21:08:44 (1 week ago)	114.129.129.139 - - [13/Jun/2026:23:08:44 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Windows N ... show more 114.129.129.139 - - [13/Jun/2026:23:08:44 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 47.77.229.107

🇺🇿 45.92.173.72

🇺🇸 34.58.124.191

🇺🇸 152.32.151.128

🇨🇳 115.191.9.205

🇺🇸 91.230.168.21

🇯🇵 203.25.124.193

🇨🇳 183.61.109.221

🇺🇸 172.104.30.66

🇯🇵 160.251.101.169

🇸🇪 158.174.211.17

🇭🇰 154.221.25.72

🇨🇳 110.249.202.155

🇫🇷 109.199.126.3

🇰🇷 52.141.58.234

🇳🇱 45.148.10.151

🇳🇱 45.148.10.31

🇺🇸 34.231.181.240

🇳🇱 204.76.203.206

🇧🇪 198.235.24.227