JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 115.147.8.120

115.147.8.120 was found in our database!

This IP was reported 67 times. Confidence of Abuse is 10%: ?

10%

ISP	Philippine Long Distance Telephone Co.
Usage Type	Fixed Line ISP
ASN	AS9299
Domain Name	pldthome.com
Country	🇵🇭 Philippines
City	Quezon City, National Capital Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 115.147.8.120

Whois 115.147.8.120

IP Abuse Reports for 115.147.8.120:

This IP address has been reported a total of 67 times from 27 distinct sources. 115.147.8.120 was first reported on May 7th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇭 MWA SOC	2026-06-04 04:28:23 (4 days ago)		Hacking
🇸🇬 mypatricks	2026-05-07 05:13:28 (1 month ago)	115.147.8.120 \| Port: 10565 \| DNS: 115.147.8.120 2026-05-07T13:13:27+08:00 Asia/Manila \| FETCH Sproo ... show more 115.147.8.120 \| Port: 10565 \| DNS: 115.147.8.120 2026-05-07T13:13:27+08:00 Asia/Manila \| FETCH Sproofing Activity Detetced. \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 HTTP/1.1 443 GET \| URL: /contents/jquery-code?ecfdabdee=feebabeceaabfbb \| Ref: - \| Country: PH/Philippines/+08:00 IP City: Caloocan 9f7dbc48bf3e98ed-SIN/Singapore, Singapore 1 hits/0 secs Robots 1 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇺🇸 COMPLEX	2026-01-26 01:07:22 (4 months ago)	Triggered Cloudflare WAF (l7ddos) from PH. Action taken: BLOCK ASN: undefined (undefined) Protocol: ... show more Triggered Cloudflare WAF (l7ddos) from PH. Action taken: BLOCK ASN: undefined (undefined) Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:146.0) Gecko/20100101 Firefox/146.0 show less	DDoS Attack Bad Web Bot
🇨🇭 backslash	2026-01-03 20:45:07 (5 months ago)	block ruleset 1E8A9918B1655D0828F2EEF05553DD2681055C9A	Web Spam
🇨🇦 1gz	2025-12-29 11:41:18 (5 months ago)	Triggered Cloudflare WAF (l7ddos) from PH. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoin ... show more Triggered Cloudflare WAF (l7ddos) from PH. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: / UA: DTxcDQf3Gy32azY This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot
🇬🇧 Silly Development	2025-12-25 21:03:45 (5 months ago)	Malicious activity detected from 9299 IPG-AS-AP Philippine Long Distance Telephone Company towards h ... show more Malicious activity detected from 9299 IPG-AS-AP Philippine Long Distance Telephone Company towards host sillydev.co.uk (GET HTTP/2) @ 2025-12-25T21:03:45Z (1 occurrences) show less	DDoS Attack Exploited Host
🇸🇬 Fn4ticHz	2025-12-15 19:54:51 (5 months ago)	repeated ddos targeted zeroguard.space -- ZeroGuard	DDoS Attack
🇸🇬 Fn4ticHz	2025-12-15 18:07:39 (5 months ago)	repeated ddos targeted load.rapidreset.net -- ZeroGuard	DDoS Attack
🇨🇭 Modules	2025-12-14 04:04:38 (5 months ago)	Open proxy http://115.147.8.120:8082 (RT:8721ms,Loc:Philippines,ASN:AS9299)	Open Proxy
🇺🇸 SuperEvilLuke	2025-12-13 12:16:08 (5 months ago)	Malicious activity detected from 9299 IPG-AS-AP Philippine Long Distance Telephone Company towards h ... show more Malicious activity detected from 9299 IPG-AS-AP Philippine Long Distance Telephone Company towards host panel.embotic.xyz (GET HTTP/2) @ 2025-12-13T12:16:08Z (5 occurrences) show less	DDoS Attack Exploited Host
🇺🇸 TPI-Abuse	2025-12-07 06:09:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 115.147.8.120 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 115.147.8.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 01:09:03.407216 2025] [security2:error] [pid 15060:tid 15060] [client 115.147.8.120:33154] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "strawusa.com"] [uri "/.env"] [unique_id "aTUZ__LxjAlOeY0fcs23UgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 01:31:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 115.147.8.120 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 115.147.8.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 20:30:54.344643 2025] [security2:error] [pid 6874:tid 6874] [client 115.147.8.120:51182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fatlandtheplay.com"] [uri "/.env"] [unique_id "aTTYzo-sC6OAU_-BNhTsIgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 01:05:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 115.147.8.120 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 115.147.8.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 20:05:17.481679 2025] [security2:error] [pid 2656:tid 2656] [client 115.147.8.120:39008] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fixitsmart.com"] [uri "/.env"] [unique_id "aTTSzeB22mp2FXBzD_dRswAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 19:47:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 115.147.8.120 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 115.147.8.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 14:46:33.173155 2025] [security2:error] [pid 368:tid 385] [client 115.147.8.120:40062] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dinius.org"] [uri "/.env.production"] [unique_id "aTSIGU2FWiWyR8jJpx_6ZgAAAM4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 18:14:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 115.147.8.120 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 115.147.8.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 13:14:27.185740 2025] [security2:error] [pid 6773:tid 6773] [client 115.147.8.120:51050] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "humandesignanalysis.org"] [uri "/.env"] [unique_id "aTRyg56GWiCv9dHpryhTywAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 67 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 2400:8901::2000:18ff:fe69:6502

🇪🇹 196.189.155.89

🇺🇸 151.240.92.209

127.0.0.1

🇸🇬 47.79.192.150

🇺🇸 45.33.40.18

🇩🇪 43.165.3.187

🇬🇧 2a06:4884:1000::a

🇳🇱 193.176.31.216

🇺🇸 172.253.194.150

🇮🇳 36.255.66.70

🇳🇱 34.147.71.207

🇺🇸 20.14.83.88

🇬🇧 2a06:4884:1000::24

🇪🇪 196.196.253.20

🇺🇸 195.184.76.168

🇮🇷 188.0.240.22

🇷🇺 185.179.144.123

🇩🇪 185.176.94.38

🇹🇼 175.182.37.66