JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 129.227.55.168

129.227.55.168 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 47%: ?

47%

ISP	Zenlayer Japan
Usage Type	Data Center/Web Hosting/Transit
ASN	AS21859
Domain Name	zenlayer.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 129.227.55.168

Whois 129.227.55.168

IP Abuse Reports for 129.227.55.168:

This IP address has been reported a total of 13 times from 12 distinct sources. 129.227.55.168 was first reported on March 6th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇷 setupgr	2026-06-21 04:28:52 (5 days ago)	(mod_security) mod_security (id:900001) triggered by 129.227.55.168 (JP/Japan/Tokyo/Shibuya City/-/[ ... show more (mod_security) mod_security (id:900001) triggered by 129.227.55.168 (JP/Japan/Tokyo/Shibuya City/-/[AS21859 ZEN-ECN]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 21 07:28:50.121869 2026] [security2:error] [pid 579778:tid 579828] [client 129.227.55.168:57462] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "75"] [id "900001"] [msg "Blocked WP Login attempt on domain: gyrosplace.gr"] [severity "CRITICAL"] [tag "security"] [hostname "gyrosplace.gr"] [uri "/wp-login.php"] [unique_id "ajdognz2f_B-MiyFXhs9ZAAAAJc"] show less	Port Scan
🇩🇪 EGP Abuse Dept	2026-06-21 03:50:05 (5 days ago)	Scanning for web/db/file exploits on www.derwort.nu	SQL Injection Bad Web Bot Web App Attack
🇷🇴 INTEQ	2026-06-21 03:13:21 (5 days ago)	Web attack from 129.227.55.168	Web App Attack
🇵🇱 lns.bz	2026-06-21 03:04:58 (5 days ago)	Web app attack [PL.Lu]	Exploited Host Web App Attack
Anonymous	2026-06-21 02:26:53 (5 days ago)	129.227.55.168 - - [21/Jun/2026:04:26:52 +0200] "GET /wp-login.php HTTP/1.1" 404 3086 "-" "Mozilla/5 ... show more 129.227.55.168 - - [21/Jun/2026:04:26:52 +0200] "GET /wp-login.php HTTP/1.1" 404 3086 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Web App Attack
🇬🇷 setupgr	2026-06-21 01:02:36 (5 days ago)	(mod_security) mod_security (id:900001) triggered by 129.227.55.168 (JP/Japan/Tokyo/Shibuya City/-/[ ... show more (mod_security) mod_security (id:900001) triggered by 129.227.55.168 (JP/Japan/Tokyo/Shibuya City/-/[AS21859 ZEN-ECN]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 21 04:02:34.143289 2026] [security2:error] [pid 2276:tid 2362] [client 129.227.55.168:51617] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "75"] [id "900001"] [msg "Blocked WP Login attempt on domain: doityourself.gr"] [severity "CRITICAL"] [tag "security"] [hostname "doityourself.gr"] [uri "/wp-login.php"] [unique_id "ajc4KvFOzdhEIc8u07dGjgAAAAk"] show less	Port Scan
🇫🇷 bazter.pro	2026-06-20 21:04:37 (5 days ago)	Auto-Ban [2026-06-21 00:04:37]: CRITICAL: Exploit trap paths (1); DC: Zenlayer Japan [Paths: 8] \| De ... show more Auto-Ban [2026-06-21 00:04:37]: CRITICAL: Exploit trap paths (1); DC: Zenlayer Japan [Paths: 8] \| Details: Exploit trap paths: /wp-login.php \| 404 errors (1): /feed \| Other paths: /?author=1, /?author=3, /?author=2, /wp-login.php, /?rest_route=/wp/v2/users, /?author=4, /?author=5 show less	Web App Attack Hacking
🇫🇮 inlink.ltd	2026-06-20 20:43:17 (5 days ago)	Known malicious PHP file or CMS probe	Web App Attack
🇲🇽 octageeks.com	2026-05-16 04:09:03 (1 month ago)	Wordpress malicious attack:[octawp]	Web App Attack
Anonymous	2026-05-13 22:50:01 (1 month ago)	129.227.55.168 - - [14/May/2026:00:42:04 +0200] "POST /wp-login.php HTTP/1.0" 200 7215 "-" "Mozilla/ ... show more 129.227.55.168 - - [14/May/2026:00:42:04 +0200] "POST /wp-login.php HTTP/1.0" 200 7215 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13.5; rv:124.0) Gecko/20100101 Firefox/124.0" 129.227.55.168 - - [14/May/2026:00:42:05 +0200] "POST /wp-login.php HTTP/1.1" 200 6701 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13.5; rv:124.0) Gecko/20100101 Firefox/124.0" 129.227.55.168 - - [14/May/2026:00:45:41 +0200] "POST /wp-login.php HTTP/1.0" 200 7215 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13.5; rv:124.0) Gecko/20100101 Firefox/124.0" 129.227.55.168 - - [14/May/2026:00:45:42 +0200] "POST /wp-login.php HTTP/1.1" 200 6701 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13.5; rv:124.0) Gecko/20100101 Firefox/124.0" 129.227.55.168 - - [14/May/2026:00:50:01 +0200] "POST /wp-login.php HTTP/1.1" 200 6701 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-05-10 19:55:56 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇬🇧 consul.to	2026-03-31 16:23:45 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 homeshowdomain.nl	2026-03-06 22:59:15 (3 months ago)	Auto-ban: >3000 req/min op 2026-03-06	Web App Attack SSH Hacking

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a940:300:5b6:0:26::

🇺🇸 147.185.132.187

🇺🇸 64.62.197.81

🇺🇸 216.25.89.128

🇧🇷 205.210.31.209

🇳🇱 185.242.226.97

🇨🇳 180.184.84.77

🇧🇷 177.10.203.106

🇳🇱 176.65.148.197

🇵🇰 160.187.180.175

🇹🇼 106.1.10.110

🇮🇳 27.123.113.30

🇺🇸 2604:a940:301:225:0:1d::

🇺🇿 213.230.127.104

🇱🇻 196.196.53.93

🇩🇪 194.187.176.247

🇧🇷 186.215.245.175

🇺🇸 147.182.239.104

🇳🇱 146.190.24.31

🇺🇸 107.173.144.114