JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.22.102.78

157.22.102.78 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 19%: ?

19%

ISP	Atlas Network Holdings LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213954
Domain Name	atlasnetworkholdings.online
Country	🇷🇺 Russian Federation
City	Kaliningrad, Kaliningrad Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.22.102.78

Whois 157.22.102.78

IP Abuse Reports for 157.22.102.78:

This IP address has been reported a total of 8 times from 4 distinct sources. 157.22.102.78 was first reported on February 1st 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-06-28 06:53:51 (1 day ago)	Fail2Ban banned 157.22.102.78 for security violations in jail wp-armour. Log: 2026/06/28 06:53:50 [e ... show more Fail2Ban banned 157.22.102.78 for security violations in jail wp-armour. Log: 2026/06/28 06:53:50 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 157.22.102.78 \| Target: wplogin" , client: 157.22.102.78, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-06-25 17:32:20 (3 days ago)	Fail2Ban banned 157.22.102.78 for security violations in jail wp-armour. Log: 2026/06/25 17:32:20 [e ... show more Fail2Ban banned 157.22.102.78 for security violations in jail wp-armour. Log: 2026/06/25 17:32:20 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 157.22.102.78 \| Target: wplogin" , client: 157.22.102.78, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇺🇸 TPI-Abuse	2026-06-24 02:02:57 (5 days ago)	(mod_security) mod_security (id:225170) triggered by 157.22.102.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 157.22.102.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:02:51.690833 2026] [security2:error] [pid 18428:tid 18428] [client 157.22.102.78:47969] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ieas.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ieas.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajs6yz39ioya5XzdA7PqjgAAABc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 00:02:27 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 157.22.102.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 157.22.102.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 20:02:21.994740 2026] [security2:error] [pid 9769:tid 9769] [client 157.22.102.78:38151] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fluffmoo.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fluffmoo.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajh7jaLFbqgGjdKpWHw_7AAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 05:36:21 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 157.22.102.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 157.22.102.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 01:36:17.479679 2026] [security2:error] [pid 5237:tid 5237] [client 157.22.102.78:17225] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|corchard.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "corchard.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ajYm0RiJXFuP3Tgiemn3LAAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-05-11 15:20:59 (1 month ago)	[MonMay1117:20:52.1320612026][security2:error][pid1332102:tid1332106][client157.22.102.78:0]ModSecur ... show more [MonMay1117:20:52.1320612026][security2:error][pid1332102:tid1332106][client157.22.102.78:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"4-server.com\"][uri\"/\"][unique_id\"agHz1BOQvnkBFFm-hcdjwQAAAMI\"] show less	Hacking Web App Attack
🇨🇭 Origon	2026-04-24 09:21:28 (2 months ago)	http-bad-user-agent - IP: 157.22.102.78 - time="2026-04-24T11:21:28+02:00" level=info msg="(555f66b ... show more http-bad-user-agent - IP: 157.22.102.78 - time="2026-04-24T11:21:28+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-bad-user-agent by ip 157.22.102.78 (RU/213954) : 4h ban on Ip 157.22.102.78" module=db show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-01 10:06:12 (4 months ago)	(mod_security) mod_security (id:240335) triggered by 157.22.102.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 157.22.102.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 05:06:05.804344 2026] [security2:error] [pid 3430894:tid 3430918] [client 157.22.102.78:9499] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 157.22.102.78 (+1 hits since last alert)\|jd-web-designs.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "jd-web-designs.com"] [uri "/xmlrpc.php"] [unique_id "aX8ljV15t7JXz0jb2rJpVQAAAJU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2001:19f0:c000:d254:5400:4ff:fea5:cd47

🇨🇦 99.229.130.165

🇷🇴 92.118.39.71

🇳🇱 91.92.243.235

🇳🇱 91.92.40.6

🇺🇸 2001:468:500:104:9999::229

🇨🇳 222.176.200.245

🇪🇨 177.234.240.105

🇩🇪 167.94.145.22

🇨🇳 112.20.151.73

🇹🇷 94.154.43.158

🇫🇷 84.247.184.109

🇫🇷 62.210.101.184

🇨🇦 52.138.10.154

🇩🇪 45.145.56.122

🇧🇪 34.78.17.230

🇨🇳 14.216.234.119

🇺🇸 4.150.191.6

🇨🇳 218.66.22.248

🇩🇪 185.220.101.59