JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 146.19.140.128

146.19.140.128 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 12%: ?

12%

ISP	Quality Network US LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	traffictransitsolution.us
Country	🇫🇮 Finland
City	Vantaa, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 146.19.140.128

Whois 146.19.140.128

IP Abuse Reports for 146.19.140.128:

This IP address has been reported a total of 12 times from 9 distinct sources. 146.19.140.128 was first reported on November 23rd 2023, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-20 11:45:40 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 146.19.140.128 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 146.19.140.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 07:45:32.131798 2026] [security2:error] [pid 13831:tid 13831] [client 146.19.140.128:12895] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|theledman.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "theledman.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajZ9XBl466zXVtZCfcUynAAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 tilellit.pro	2026-05-21 15:45:56 (1 month ago)	Fail2Ban banned 146.19.140.128 for security violations in jail wp-armour. Log: 2026/05/21 15:45:56 [ ... show more Fail2Ban banned 146.19.140.128 for security violations in jail wp-armour. Log: 2026/05/21 15:45:56 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 146.19.140.128 \| Target: wplogin" , client: 146.19.140.128, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇺🇸 TPI-Abuse	2026-05-06 14:15:07 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 146.19.140.128 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 146.19.140.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 06 10:15:00.411414 2026] [security2:error] [pid 13293:tid 13293] [client 146.19.140.128:32007] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|primacomm.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "primacomm.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aftM5KGr9ZDD1O1s-PZBQQAAAAo"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 tilellit.pro	2026-05-06 12:03:32 (1 month ago)	Fail2Ban banned 146.19.140.128 for security violations in jail wp-armour. Log: 2026/05/06 12:03:31 [ ... show more Fail2Ban banned 146.19.140.128 for security violations in jail wp-armour. Log: 2026/05/06 12:03:31 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 146.19.140.128 \| Target: wplogin" , client: 146.19.140.128, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇦🇺 MAGIC	2026-04-13 01:03:18 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-09 01:02:15 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 146.19.140.128 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 146.19.140.128 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 21:02:07.974122 2026] [security2:error] [pid 1822098:tid 1822127] [client 146.19.140.128:45139] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fostexlaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fostexlaw.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adb6j5lT4UcoZAR_2By9CwAAAFc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-02-26 00:35:04 (3 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇨🇿 lp	2025-05-10 04:50:27 (1 year ago)	Unauthorized VPN login attempts: 2 attempts were recorded from 146.19.140.128 2025-05-10T05:20:26+02 ... show more Unauthorized VPN login attempts: 2 attempts were recorded from 146.19.140.128 2025-05-10T05:20:26+02:00 vpn Access-Reject 'culpabilis' station: 146.19.140.128 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-05-10T05:27:01+02:00 vpn Access-Reject 'jcreaven' station: 146.19.140.128 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
Anonymous	2025-04-20 06:36:56 (1 year ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇺🇸 anon333	2025-03-07 08:34:09 (1 year ago)	Hacker syslog review 1741336449	Hacking
🇺🇸 TheMadBeaker	2025-01-25 23:12:21 (1 year ago)	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	Hacking SQL Injection
Anonymous	2023-11-23 11:02:36 (2 years ago)	opencart admin attack from fail2ban ...	DDoS Attack Brute-Force SSH

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.86

🇵🇰 202.63.202.211

🇺🇸 185.139.214.166

🇩🇪 172.253.1.210

🇺🇸 107.150.98.168

🇵🇰 37.111.163.132

🇸🇬 192.161.164.176

🇨🇱 190.114.39.112

🇺🇸 172.234.192.12

🇺🇸 148.105.11.115

🇨🇮 102.67.201.15

🇳🇱 80.82.77.202

🇸🇬 45.43.63.68

🇧🇷 45.38.89.123

🇷🇴 2.57.121.25

🇺🇸 207.90.244.22

🇳🇱 204.76.203.206

🇬🇧 195.206.182.217

🇲🇽 187.192.86.153

🇩🇪 185.242.3.226