This IP address has been reported a total of
204
times from
80 distinct
sources.
138.199.29.133 was first reported on
, and the most recent report was
.
Old Reports:
The most recent abuse report for this IP address is from
. It is possible that this IP is no longer involved in abusive activities.
Malformed or malicious web request
138.199.29.133 - - [14/May/2026:07:44:28 +0200] "POST /wp-login.p ...
show moreMalformed or malicious web request
138.199.29.133 - - [14/May/2026:07:44:28 +0200] "POST /wp-login.php HTTP/1.1" 404 4187 "https://account.<REDACTED>/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15"
show less
Hacking
Web App Attack
Anonymous
(wordpress) Failed wordpress login from 138.199.29.133 (GB/United Kingdom/unn-138-199-29-133.datapac ...
show more(wordpress) Failed wordpress login from 138.199.29.133 (GB/United Kingdom/unn-138-199-29-133.datapacket.com)
show less
2026-05-09T00:50:51.710155+02:00 web wordpress(gpfans.cz)[1723434]: Authentication attempt for unkno ...
show more2026-05-09T00:50:51.710155+02:00 web wordpress(gpfans.cz)[1723434]: Authentication attempt for unknown user [email protected] from 138.199.29.133
2026-05-09T00:50:52.545284+02:00 web wordpress(gpfans.cz)[1723424]: Authentication attempt for unknown user [email protected] from 138.199.29.133
2026-05-09T00:50:53.373322+02:00 web wordpress(gpfans.cz)[1723434]: Authentication attempt for unknown user [email protected] from 138.199.29.133
...
show less
Brute-Force
Anonymous
2026-05-08T06:21:52.451304+02:00 zanati wp(sahpa.co.za)[952262]: Blocked authentication attempt for ...
show more2026-05-08T06:21:52.451304+02:00 zanati wp(sahpa.co.za)[952262]: Blocked authentication attempt for admin from 138.199.29.133
...
show less
(wordpress) Failed wordpress login from 138.199.29.133 (GB/United Kingdom/unn-138-199-29-133.datapac ...
show more(wordpress) Failed wordpress login from 138.199.29.133 (GB/United Kingdom/unn-138-199-29-133.datapacket.com)
show less
(mod_security) mod_security (id:240000) triggered by 138.199.29.133 (unn-138-199-29-133.datapacket.c ...
show more(mod_security) mod_security (id:240000) triggered by 138.199.29.133 (unn-138-199-29-133.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 12 16:02:21.600811 2026] [security2:error] [pid 2220881:tid 2220881] [client 138.199.29.133:51560] ModSecurity: Access denied with code 403 (phase 2). String match ".php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/24_Apps_Joomla.conf"] [line "74"] [id "240000"] [rev "1"] [msg "COMODO WAF: Protecting Joomla folder||seniorinternationalservice.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Joomla"] [hostname "seniorinternationalservice.com"] [uri "/images/stories/themes.php"] [unique_id "adv6TWR638T0K9yumPhwSwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
(wp-php-upload-includes) Block attempt to access .php in uploads wordpress uploads or well-known 138 ...
show more(wp-php-upload-includes) Block attempt to access .php in uploads wordpress uploads or well-known 138.199.29.133 (GB/United Kingdom/unn-138-199-29-133.datapacket.com)
show less
(apache-scanners) Failed apache-scanners trigger with match [redacted] from 138.199.29.133 (GB/Unite ...
show more(apache-scanners) Failed apache-scanners trigger with match [redacted] from 138.199.29.133 (GB/United Kingdom/unn-138-199-29-133.datapacket.com)
show less