JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.22.18.29

157.22.18.29 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 20%: ?

20%

ISP	Global Transit Systems LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213954
Domain Name	globaltransitsystems.online
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.22.18.29

Whois 157.22.18.29

IP Abuse Reports for 157.22.18.29:

This IP address has been reported a total of 11 times from 6 distinct sources. 157.22.18.29 was first reported on December 23rd 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 big-cloud.nl	2026-06-23 05:12:16 (5 hours ago)	Try to access /xmlrpc.php	Web App Attack
🇺🇸 nationaleventpros.com	2026-06-14 18:51:04 (1 week ago)	WordPress login attempt	Brute-Force
🇺🇸 TPI-Abuse	2026-05-24 19:30:07 (4 weeks ago)	(mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 15:29:55.536932 2026] [security2:error] [pid 14280:tid 14280] [client 157.22.18.29:45741] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|matteozacchino.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "matteozacchino.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahNRs4k41XJ3qkP9D8zmkAAAAB0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-11 22:25:06 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 18:25:01.089874 2026] [security2:error] [pid 9617:tid 9617] [client 157.22.18.29:15587] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|asduk.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "asduk.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agJXPQ2uXVe-4CgecqniFQAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 08:57:18 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 04:57:10.208618 2026] [security2:error] [pid 32597:tid 32597] [client 157.22.18.29:39115] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gonzalez.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gonzalez.com"] [uri "/wp-json/wp/v2/users"] [unique_id "af725uJ_x-vdcnvDoTbmlwAAAAE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-13 11:51:35 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 07:51:31.199651 2026] [security2:error] [pid 3462771:tid 3462771] [client 157.22.18.29:11423] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|corstratinc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "corstratinc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adzYw_lEg9-5zRC-r-501wAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-11 07:49:34 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 11 03:49:26.930100 2026] [security2:error] [pid 2519001:tid 2519001] [client 157.22.18.29:28871] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|advancedmotorsports.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "advancedmotorsports.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adn9Bssr7APoYu-JrtBPYAAAABA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 conrad10781	2026-04-08 11:46:40 (2 months ago)	nginx-wordpress	Web App Attack
🇩🇪 paissangroup	2026-01-01 01:09:46 (5 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 03:23:28 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 157.22.18.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 22:23:22.950452 2025] [security2:error] [pid 771:tid 771] [client 157.22.18.29:32163] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|batesstrategygroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "batesstrategygroup.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aVNFqjsUUNe8gtkpgsLIOgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-23 05:20:24 (6 months ago)	IM360 WAF: Infectors: Suspicious access attempt (webshell)	FTP Brute-Force Open Proxy Brute-Force

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.37.174.73

🇩🇪 207.154.250.9

🇵🇾 181.232.156.10

🇸🇬 152.42.182.160

🇻🇳 113.177.27.200

🇳🇱 45.148.10.141

🇬🇧 35.203.211.112

🇺🇸 20.172.70.211

🇨🇴 186.148.180.209

🇩🇪 178.105.91.57

🇳🇱 172.94.9.120

🇺🇸 147.185.132.173

🇧🇬 78.128.113.46

🇳🇱 45.148.10.157

🇰🇷 211.206.124.47

🇻🇳 171.225.193.117

🇨🇳 171.213.196.238

🇩🇪 167.94.145.27

🇰🇭 150.107.5.176

🇪🇸 141.109.168.26