JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 146.19.140.25

146.19.140.25 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 21%: ?

21%

ISP	Quality Network US LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	traffictransitsolution.us
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 146.19.140.25

Whois 146.19.140.25

IP Abuse Reports for 146.19.140.25:

This IP address has been reported a total of 21 times from 11 distinct sources. 146.19.140.25 was first reported on March 23rd 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nationaleventpros.com	2026-06-14 17:28:13 (2 days ago)	WordPress login attempt	Brute-Force
🇺🇸 TPI-Abuse	2026-06-12 01:22:07 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 146.19.140.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 146.19.140.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 21:22:02.818169 2026] [security2:error] [pid 12539:tid 12539] [client 146.19.140.25:25487] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|insidepublications.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "insidepublications.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aitfOjOmJ_RKf-LXgJ-d-QAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-05-30 13:45:19 (2 weeks ago)	Blocked by CSF 13 firewall - Rule: XMLRPC FR/France/-	Web App Attack
🇺🇸 TPI-Abuse	2026-05-09 13:40:29 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 146.19.140.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 146.19.140.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 09:40:21.954127 2026] [security2:error] [pid 1760:tid 1777] [client 146.19.140.25:32573] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|colinarchibald.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "colinarchibald.com"] [uri "/wp-json/wp/v2/users"] [unique_id "af85RTHQaG69BugtqLhrzgAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-04-10 18:57:00 (2 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-09 12:32:40 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 146.19.140.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 146.19.140.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 08:32:35.863003 2026] [security2:error] [pid 560368:tid 560368] [client 146.19.140.25:54625] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|step1nutrition.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "step1nutrition.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adecY5Miariqc30-ZpH_AwAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-02 20:04:17 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 146.19.140.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 146.19.140.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 16:04:11.776867 2026] [security2:error] [pid 1489:tid 1489] [client 146.19.140.25:30515] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|heinsohn.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "heinsohn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ac7Lu1oIPSD6SN-pitixEAAAAA0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-03-26 23:00:42 (2 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇨🇭 backslash	2026-01-26 14:25:05 (4 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇧🇪 voormedia	2025-07-20 03:49:55 (10 months ago)	Accessed trap at '/wp-login.php'	Web App Attack
Anonymous	2025-07-12 07:02:50 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-07-11 02:34:32 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-07-09 01:34:56 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-07-06 00:43:48 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-07-04 23:29:16 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.105

🇮🇩 202.93.133.49

🇺🇸 198.62.1.175

🇮🇳 182.95.115.194

🇦🇷 181.0.214.136

🇩🇪 178.27.90.142

🇧🇷 177.200.39.156

🇫🇮 147.185.133.210

🇧🇪 104.155.48.114

🇮🇳 103.102.73.5

🇷🇺 78.81.151.129

🇫🇷 62.210.189.225

🇲🇾 47.250.93.212

🇳🇱 45.148.10.157

🇳🇱 45.148.10.141

🇺🇸 38.70.226.113

🇺🇸 2607:f8b0:4001:c13::12d

🇲🇲 202.165.88.146

🇬🇧 167.71.134.21

🇮🇩 147.139.144.20