JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 146.19.78.214

146.19.78.214 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 23%: ?

23%

ISP	Quality Network US LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	traffictransitsolution.us
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 146.19.78.214

Whois 146.19.78.214

IP Abuse Reports for 146.19.78.214:

This IP address has been reported a total of 15 times from 12 distinct sources. 146.19.78.214 was first reported on October 28th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-05-31 15:00:13 (1 week ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2026-05-20 17:40:38 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: / \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36/Nutch-1.21-SNAPSHOT • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇭 Origon	2026-05-07 17:14:09 (1 month ago)	http-bad-user-agent - IP: 146.19.78.214 - time="2026-05-07T19:14:09+02:00" level=info msg="(555f66b ... show more http-bad-user-agent - IP: 146.19.78.214 - time="2026-05-07T19:14:09+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-bad-user-agent by ip 146.19.78.214 (RU/26548) : 4h ban on Ip 146.19.78.214" module=db show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-05 19:37:08 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 146.19.78.214 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 146.19.78.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 15:37:01.875152 2026] [security2:error] [pid 12255:tid 12255] [client 146.19.78.214:59563] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|secuencia.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "secuencia.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afpG3SBgIlQ7oP3WqeixdwAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 NicoID	2026-05-02 00:13:36 (1 month ago)	146.19.78.214 - - [01/May/2026:12:08:46 -0600] "GET /wp-login.php HTTP/1.1" 200 4883 "https://www.go ... show more 146.19.78.214 - - [01/May/2026:12:08:46 -0600] "GET /wp-login.php HTTP/1.1" 200 4883 "https://www.google.com" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" ... show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-23 12:40:53 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 146.19.78.214 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 146.19.78.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 23 08:40:47.632470 2026] [security2:error] [pid 3575811:tid 3575811] [client 146.19.78.214:10647] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fritsknuf.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fritsknuf.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aeoTT96FRzek-Dqrd_i1IAAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2025-10-26 04:07:57 (7 months ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇺🇸 TPI-Abuse	2025-10-26 01:56:31 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 146.19.78.214 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 146.19.78.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 25 21:56:25.896602 2025] [security2:error] [pid 17682:tid 17682] [client 146.19.78.214:28697] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|modalsoftware.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "modalsoftware.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aP1_yZePdykHIFhbxEB8UgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-21 11:54:10 (7 months ago)	Failed Wordpress login	Hacking Brute-Force Web App Attack
🇺🇸 xmission.com	2025-10-18 23:56:40 (7 months ago)	146.19.78.214 - - [18/Oct/2025:17:56:40 -0600] "POST /wp-login.php HTTP/1.1" 200 2337 "https://dooce ... show more 146.19.78.214 - - [18/Oct/2025:17:56:40 -0600] "POST /wp-login.php HTTP/1.1" 200 2337 "https://dooce.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 Edg/115.0.1901.203" ... show less	Brute-Force
🇩🇪 ManagedStack	2025-10-18 21:43:57 (7 months ago)	Wordpress Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-10-18 13:33:37 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 146.19.78.214 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 146.19.78.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 18 09:33:30.050577 2025] [security2:error] [pid 1245:tid 1245] [client 146.19.78.214:15229] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|igolfallday.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "igolfallday.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aPOXKgA_MaSCS4d5qZ8I1QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2025-05-04 01:22:53 (1 year ago)	2025-05-03 04:23:04 /+CSCOE+/logon.html	Web App Attack
🇺🇸 VSM Networks	2024-02-29 03:56:23 (2 years ago)	Credential Stuffing	Brute-Force
🇵🇱 rafix	2023-10-28 10:02:36 (2 years ago)	Scrapping website, using diffrent useragents, not wait for response, #botnet20231026	DDoS Attack Bad Web Bot

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 180.182.228.199

🇺🇸 162.243.228.110

🇨🇳 157.156.50.244

🇩🇪 155.117.127.214

🇳🇱 85.115.209.36

🇰🇷 222.121.250.203

🇹🇼 202.39.153.245

🇹🇳 193.95.82.154

🇲🇽 186.96.145.241

🇮🇱 185.28.155.55

🇺🇸 172.93.106.153

🇩🇪 159.65.120.213

🇬🇧 157.245.38.26

🇫🇷 145.239.10.137

🇨🇳 101.96.200.56

🇺🇸 91.230.168.26

🇵🇹 81.193.216.17

🇺🇸 47.251.127.25

🇳🇱 45.148.10.141

🇮🇩 43.165.194.10