← Back to Dashboard

5.129.234.139 Threat Intelligence Report

Risk Level: CRITICAL — 225 abuse reports from 16 sources

Threat Intelligence Summary

IP address 5.129.234.139 has been flagged in 225 abuse reports across 16 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is aggregated threat, along with attacks, brute force, email abuse, high threat, malware c2, moderate threat, severe abuse, spam, ssh brute force, ssh bruteforce, suspicious activity, unknown, web attack, web brute force.

This IP is geolocated in The Netherlands (Amsterdam) and belongs to the network Timeweb, LLP (AS210976). Reports span from 2025-11-06 to 2026-03-05.

Assessment: With 225 abuse reports, 5.129.234.139 shows persistent malicious activity that has been flagged by multiple threat intelligence feeds. The IP has been observed conducting automated SSH login attempts against internet-facing servers, a technique commonly used to gain unauthorized access to systems.

Data aggregated from 16 independent threat intelligence sources.

Geolocation

Country The Netherlands
City Amsterdam
Region North Holland
ISP/ASN Timeweb, LLP
Timezone Europe/Amsterdam

Threat Status

Overall Status Critical
Threat Score 100.0%
Report Count 225
Sources 16
First Seen 2025-11-06
Last Seen 2026-03-05

Check IPs automatically with the WAYSCloud API

Free tier: 1,000 lookups/day. Get threat scores, geolocation, and abuse reports via REST API.

Explore the API →

See how we classify and verify threats →

Related Intelligence

The Netherlands Threat Intelligence → AS210976 Network Intelligence → See all top malicious IPs → View latest attacks →
Learn about these threats: