JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 129.222.147.135

129.222.147.135 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 15%: ?

15%

ISP	SpaceX Services, Inc.
Usage Type	Fixed Line ISP
ASN	AS14593
Hostname(s)	customer.nrbiken1.isp.starlink.com
Domain Name	spacex.com
Country	🇰🇪 Kenya
City	Nairobi, Nairobi County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 129.222.147.135

Whois 129.222.147.135

IP Abuse Reports for 129.222.147.135:

This IP address has been reported a total of 17 times from 12 distinct sources. 129.222.147.135 was first reported on December 12th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-18 21:34:41 (1 day ago)	(wordpress) Failed wordpress login from 129.222.147.135 (KE/Kenya/customer.nrbiken1.isp.starlink.com ... show more (wordpress) Failed wordpress login from 129.222.147.135 (KE/Kenya/customer.nrbiken1.isp.starlink.com) show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-13 20:00:14 (6 days ago)	(mod_security) mod_security (id:240335) triggered by 129.222.147.135 (customer.nrbiken1.isp.starlink ... show more (mod_security) mod_security (id:240335) triggered by 129.222.147.135 (customer.nrbiken1.isp.starlink.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 16:00:08.698936 2026] [security2:error] [pid 15253:tid 15253] [client 129.222.147.135:62338] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 129.222.147.135 (+1 hits since last alert)\|livingminimal.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "livingminimal.com"] [uri "/xmlrpc.php"] [unique_id "ai22yFRbyrbqzYJ-aB5a3gAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2025-10-17 15:22:04 (8 months ago)	Blocked by UFW (TCP on 9101) Source port: 26484 TTL: 106 Packet length: 52 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9101) Source port: 26484 TTL: 106 Packet length: 52 TOS: 0x08 This report (for 129.222.147.135) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 pressler.pro	2025-09-23 10:18:01 (8 months ago)	Fail2ban - DDoS attack on woocommerce shop ...	DDoS Attack
🇺🇸 nowyouknow	2025-09-16 14:22:36 (9 months ago)	(From [email protected]) Hello, I tried emailing you, but it bounced for some reason... so I’ ... show more (From [email protected]) Hello, I tried emailing you, but it bounced for some reason... so I’m reaching out here instead. I'm Angelica with VAs 4 Hire. We provide top-notch virtual assistance to keep you organized and boost productivity. Our services include: Admin Support Scheduling & Calendar Management Research & Data Analysis Cold Calling & Prospecting Social Media & Content Creation Bookkeeping & More! Are you looking for any assistance? show less	Phishing Web Spam
Anonymous	2025-06-26 15:10:11 (11 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2025-06-23 15:05:12 (11 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2025-06-20 15:00:18 (11 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2025-05-27 06:12:31 (1 year ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇺🇸 MPL	2025-05-27 05:09:10 (1 year ago)	tcp/23 (2 or more attempts)	Port Scan
🇧🇷 diego	2025-01-17 19:03:32 (1 year ago)	Events: TCP SYN Discovery or Flooding, Seen 3 times in the last 10800 seconds	DDoS Attack
Anonymous	2024-12-15 23:31:14 (1 year ago)	Unauthorized connection to Telnet port 23	Port Scan
🇺🇦 URAN Publishing Service	2024-12-15 05:50:24 (1 year ago)	129.222.147.135 - - [15/Dec/2024:07:50:20 +0200] "GET /wp-login.php HTTP/1.1" 404 2607 "-" "Mozilla/ ... show more 129.222.147.135 - - [15/Dec/2024:07:50:20 +0200] "GET /wp-login.php HTTP/1.1" 404 2607 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" 129.222.147.135 - - [15/Dec/2024:07:50:21 +0200] "GET /xmlrpc.php HTTP/1.1" 404 366 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" ... show less	Web App Attack
🇺🇸 MPL	2024-12-14 23:12:42 (1 year ago)	tcp/23 (2 or more attempts)	Port Scan
Anonymous	2024-12-13 12:10:22 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.30

🇮🇳 157.20.228.141

🇻🇳 103.218.122.50

🇳🇱 91.92.40.50

🇳🇱 89.21.67.182

🇺🇸 66.132.172.240

🇱🇹 45.227.254.170

🇬🇧 35.203.211.134

🇨🇳 220.177.133.191

🇺🇸 216.25.89.143

🇺🇸 192.241.141.178

🇲🇽 187.155.174.238

🇳🇱 185.246.188.73

🇺🇸 172.236.111.197

🇩🇪 141.11.243.121

🇺🇸 134.122.21.135

🇺🇸 52.242.128.238

🇨🇳 49.86.115.203

🇺🇸 45.79.181.179

🇺🇸 45.79.128.205