JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 14.139.229.25

14.139.229.25 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 66%: ?

66%

ISP	BABA Farid University of Health & Science, Faridkot
Usage Type	Government
ASN	AS55824
Domain Name	nkn.in
Country	🇮🇳 India
City	Patiala, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 14.139.229.25

Whois 14.139.229.25

IP Abuse Reports for 14.139.229.25:

This IP address has been reported a total of 20 times from 12 distinct sources. 14.139.229.25 was first reported on May 5th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-24 07:01:07 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 03:01:00.318047 2026] [security2:error] [pid 364:tid 364] [client 14.139.229.25:56601] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 14.139.229.25 (+1 hits since last alert)\|varnadorefamily.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "varnadorefamily.com"] [uri "/xmlrpc.php"] [unique_id "ajuArGVR8DiSqjac6aenswAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-24 06:53:55 (1 day ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
Anonymous	2026-06-24 06:28:29 (1 day ago)	[server.tmg.gr] httpd-xmlrpc-post: sites=amli2024.com; logs=/var/log/httpd/domains/amli2024.com.log; ... show more [server.tmg.gr] httpd-xmlrpc-post: sites=amli2024.com; logs=/var/log/httpd/domains/amli2024.com.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 04:16:06 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 00:15:59.605249 2026] [security2:error] [pid 13193:tid 13193] [client 14.139.229.25:55165] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 14.139.229.25 (+1 hits since last alert)\|helloauto.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "helloauto.net"] [uri "/xmlrpc.php"] [unique_id "ajtZ_zydBW8OGur4qjvOlwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 03:46:09 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 23:46:03.175438 2026] [security2:error] [pid 1756:tid 1756] [client 14.139.229.25:55461] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 14.139.229.25 (+1 hits since last alert)\|telecompros.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "telecompros.net"] [uri "/xmlrpc.php"] [unique_id "ajtS-7ay-x4-8vNo4naZbgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 alferez	2026-06-24 03:01:11 (1 day ago)	xmlrpc.php attack DOS	Hacking Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 02:43:45 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:43:38.483981 2026] [security2:error] [pid 24908:tid 24908] [client 14.139.229.25:52304] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 14.139.229.25 (+1 hits since last alert)\|genevaatlantic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "genevaatlantic.com"] [uri "/xmlrpc.php"] [unique_id "ajtEWmNS4LJo8uTKdGoixwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-23 03:23:32 (2 days ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
Anonymous	2026-06-22 02:46:47 (3 days ago)	(wordpress) Failed wordpress login from 14.139.229.25 (IN/India/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-19 06:29:33 (6 days ago)	(mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 02:29:26.326742 2026] [security2:error] [pid 14575:tid 14575] [client 14.139.229.25:57432] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 14.139.229.25 (+1 hits since last alert)\|kaylamaclaincounseling.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kaylamaclaincounseling.com"] [uri "/xmlrpc.php"] [unique_id "ajThxmEb1u3PfwBoxAREZAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-19 05:56:59 (6 days ago)		Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 06:22:18 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 14.139.229.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 02:22:06.106272 2026] [security2:error] [pid 31379:tid 31379] [client 14.139.229.25:63033] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 14.139.229.25 (+1 hits since last alert)\|talentstar.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "talentstar.com"] [uri "/xmlrpc.php"] [unique_id "ajI9Dnaw3pNRPpwdTCQtvQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 rh24	2026-06-17 04:47:07 (1 week ago)	(wordpress) Failed wordpress login from 14.139.229.25 (IN/India/-): (CF_ENABLE)	Brute-Force
Anonymous	2026-06-17 04:47:04 (1 week ago)	[server.tmg.gr] httpd-xmlrpc-post: sites=aidshep2019.gr; logs=/var/log/httpd/domains/aidshep2019.gr. ... show more [server.tmg.gr] httpd-xmlrpc-post: sites=aidshep2019.gr; logs=/var/log/httpd/domains/aidshep2019.gr.log; samples=/xmlrpc.php show less	Brute-Force Web App Attack
Anonymous	2026-06-17 02:43:05 (1 week ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 216.26.243.254

🇹🇼 198.235.24.11

🇯🇵 172.253.6.216

🇫🇷 159.26.105.144

🇲🇴 125.31.4.70

🇨🇳 117.50.47.127

🇨🇳 101.42.1.32

🇳🇱 85.9.217.92

🇺🇸 66.132.195.63

🇨🇳 39.104.63.170

🇹🇼 35.194.214.164

🇨🇦 34.19.254.142

🇩🇪 31.76.44.51

🇻🇳 103.183.119.48

🇹🇳 102.159.30.79

🇺🇸 74.82.47.5

🇺🇸 66.132.172.156

🇩🇪 65.111.22.225

🇩🇪 45.135.141.13

🇩🇪 45.129.242.47