JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.22.125.214

157.22.125.214 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 16%: ?

16%

ISP	Atlas Network Holdings LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213954
Domain Name	atlasnetworkholdings.online
Country	🇵🇱 Poland
City	Gdansk, Pomerania

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.22.125.214

Whois 157.22.125.214

IP Abuse Reports for 157.22.125.214:

This IP address has been reported a total of 23 times from 10 distinct sources. 157.22.125.214 was first reported on February 19th 2026, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-06-24 20:28:01 (11 hours ago)	Web password guessing	Brute-Force
🇺🇸 TPI-Abuse	2026-06-21 22:07:21 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 157.22.125.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 157.22.125.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 18:07:17.857979 2026] [security2:error] [pid 25952:tid 25952] [client 157.22.125.214:30187] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|centreguephel.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "centreguephel.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ajhglZs0R_MeYE1QeX7HLAAAAEg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 16:15:08 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 157.22.125.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 157.22.125.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 12:15:02.427012 2026] [security2:error] [pid 7111:tid 7111] [client 157.22.125.214:59271] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|lbee.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lbee.com"] [uri "/wp-json/wp/v2/users"] [unique_id "airfBghviZ9TqEvkAjMCEwAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 11:38:25 (3 weeks ago)	(mod_security) mod_security (id:225170) triggered by 157.22.125.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 157.22.125.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 07:38:20.752217 2026] [security2:error] [pid 5330:tid 5330] [client 157.22.125.214:27275] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|williambarfoot.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "williambarfoot.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiASLH5SkESlyFSqpIpN-wAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-31 20:53:25 (3 weeks ago)	(mod_security) mod_security (id:225170) triggered by 157.22.125.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 157.22.125.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 16:53:20.921523 2026] [security2:error] [pid 14168:tid 14168] [client 157.22.125.214:48659] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|grupoimaginarte.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "grupoimaginarte.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahyfwDAxuNUEh9TuvUIAgwAAADU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 11:59:37 (3 weeks ago)	(mod_security) mod_security (id:225170) triggered by 157.22.125.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 157.22.125.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 07:59:33.711401 2026] [security2:error] [pid 30056:tid 30056] [client 157.22.125.214:16899] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fabandco.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fabandco.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahl_pcSpL4dcQ4JjzYGobgAAABQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-06 15:58:55 (2 months ago)	2026-04-06T17:58:54.861733+02:00 zanati wp(www.sahpa.co.za)[4086234]: Blocked authentication attempt ... show more 2026-04-06T17:58:54.861733+02:00 zanati wp(www.sahpa.co.za)[4086234]: Blocked authentication attempt for [email protected] from 157.22.125.214 ... show less	Web App Attack
🇩🇪 stinpriza	2026-03-31 11:45:44 (2 months ago)	Web App Attack	Web App Attack
🇩🇪 stinpriza	2026-03-30 10:48:46 (2 months ago)	Web App Attack	Web App Attack
🇩🇪 stinpriza	2026-03-29 06:05:00 (2 months ago)	Web App Attack	Web App Attack
🇩🇪 stinpriza	2026-03-27 21:31:20 (2 months ago)	Web App Attack	Web App Attack
🇩🇪 stinpriza	2026-03-23 07:05:29 (3 months ago)	Web App Attack	Web App Attack
🇩🇪 stinpriza	2026-03-18 13:00:03 (3 months ago)	Web App Attack	Web App Attack
🇩🇪 stinpriza	2026-03-17 12:38:07 (3 months ago)	Web App Attack	Web App Attack
🇩🇪 stinpriza	2026-03-15 10:40:14 (3 months ago)	Web App Attack	Web App Attack

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 207.248.19.231

🇭🇰 193.176.211.39

🇺🇸 172.81.131.156

🇩🇪 161.35.207.22

🇺🇸 147.185.132.60

🇰🇷 112.161.42.97

🇧🇩 103.26.136.173

🇬🇧 79.127.237.104

🇺🇸 47.251.14.122

🇧🇷 45.175.123.254

🇨🇳 36.143.30.230

🇧🇪 34.38.241.154

🇺🇸 216.73.160.155

🇦🇫 180.94.93.13

🇨🇳 123.207.99.229

🇱🇹 62.60.130.219

🇨🇳 36.143.64.240

🇺🇸 192.3.245.167

🇨🇳 180.153.236.144

🇧🇷 177.130.248.254