JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 146.158.98.178

146.158.98.178 was found in our database!

This IP was reported 57 times. Confidence of Abuse is 4%: ?

ISP	SM Ltd.
Usage Type	Fixed Line ISP
ASN	AS210616
Domain Name	sm117.ru
Country	🇷🇺 Russian Federation
City	Novosibirsk, Novosibirsk Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 146.158.98.178

Whois 146.158.98.178

IP Abuse Reports for 146.158.98.178:

This IP address has been reported a total of 57 times from 33 distinct sources. 146.158.98.178 was first reported on May 17th 2024, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 Agrohim	2026-06-29 01:54:13 (13 hours ago)	Gate Inet blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force
🇫🇷 Duggy_Tuxy🧱	2026-04-09 11:27:22 (2 months ago)	[HP01-SRV01-FR] Blocked by SysWarden Firewall (Port Scan / Probing Port 553)	Port Scan
Anonymous	2025-12-12 10:12:09 (6 months ago)	scanning http requests from known botnet	Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
Anonymous	2025-11-01 10:51:44 (7 months ago)	wordpress-trap	Web App Attack
🇺🇸 ambor	2025-11-01 08:14:16 (7 months ago)	Honeypot access: PHP file scan attempt: /mah.php. Path: /mah.php	Web App Attack
🇺🇸 octageeks.com	2025-10-30 04:08:00 (7 months ago)	Wordpress malicious attack:[octascan]	Web App Attack
🇦🇹 René Hickersberger	2025-10-30 02:32:16 (7 months ago)	[2025-10-27T03:46:25Z] Malicious request to /i.php	Hacking Bad Web Bot Web App Attack
🇺🇸 Gabriel Camargo	2025-10-29 18:32:12 (7 months ago)	146.158.98.178 - - [29/Oct/2025:13:32:10 -0500] "GET /info.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 (X ... show more 146.158.98.178 - - [29/Oct/2025:13:32:10 -0500] "GET /info.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) obsidian/1.5.8 Chrome/120.0.6099.283 Electron/28.2.3 Safari/537.36" 146.158.98.178 - - [29/Oct/2025:13:32:10 -0500] "GET /p.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) obsidian/1.5.8 Chrome/120.0.6099.283 Electron/28.2.3 Safari/537.36" 146.158.98.178 - - [29/Oct/2025:13:32:12 -0500] "GET /phpinfo.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) obsidian/1.5.8 Chrome/120.0.6099.283 Electron/28.2.3 Safari/537.36" ... show less	Brute-Force SSH
🇦🇺 afleventoffice.com.au	2025-10-29 09:51:37 (8 months ago)	GET / HTTP/1.1	Web App Attack
🇩🇪 barbarella	2025-10-26 16:35:35 (8 months ago)	search JavaScript Security Vulnerabilities (GET /wp-content/plugins/drag-and-drop-multiple-file-uplo ... show more search JavaScript Security Vulnerabilities (GET /wp-content/plugins/drag-and-drop-multiple-file-upload-contact-form-7/assets/js/codedropz-uploader-min.js) show less	Hacking Web App Attack
🇺🇸 RCS	2025-10-26 04:28:03 (8 months ago)	fail2ban apache-noscript ...	Bad Web Bot Web App Attack
Anonymous	2025-10-25 22:30:19 (8 months ago)	XSS Attempt	Hacking
🇺🇸 TPI-Abuse	2025-10-25 21:57:05 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 146.158.98.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 146.158.98.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 25 17:56:58.727350 2025] [security2:error] [pid 1230995:tid 1230995] [client 146.158.98.178:53084] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|sharawi-gum.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sharawi-gum.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aP1HqiAT5_rC4XRF4af2NQAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-25 13:19:46 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 146.158.98.178 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 146.158.98.178 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 25 09:19:40.395287 2025] [security2:error] [pid 7801:tid 7801] [client 146.158.98.178:49200] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fattoria-rendena.it\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fattoria-rendena.it"] [uri "/wp-json/wp/v2/users"] [unique_id "aPzObDRTucGBvrVohAvYWQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 57 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 182.40.146.106

🇧🇩 103.179.198.19

🇺🇸 103.168.67.253

🇹🇭 223.204.221.58

🇺🇸 198.11.180.76

🇸🇬 114.119.146.158

🇺🇸 107.175.69.109

🇧🇪 104.155.115.90

🇫🇮 89.167.99.216

🇸🇬 47.236.26.203

🇦🇺 45.132.225.253

🇨🇳 14.103.114.89

🇳🇿 210.54.120.219

🇮🇳 203.194.110.43

🇳🇱 176.65.149.30

🇨🇭 162.158.217.81

🇨🇭 162.158.217.5

🇳🇱 134.209.202.49

🇺🇸 91.242.95.160

🇧🇷 43.164.196.114