JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 119.92.139.24

119.92.139.24 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 10%: ?

10%

ISP	IPG
Usage Type	Fixed Line ISP
ASN	AS9299
Hostname(s)	119.92.139.24.static.pldt.net
Domain Name	pldthome.com
Country	🇵🇭 Philippines
City	Dumaguete, Central Visayas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 119.92.139.24

Whois 119.92.139.24

IP Abuse Reports for 119.92.139.24:

This IP address has been reported a total of 4 times from 2 distinct sources. 119.92.139.24 was first reported on March 20th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 screwlooseit.com.au	2026-06-05 07:32:32 (1 week ago)	Blocked by CSF 13 firewall - Rule: XMLRPC PH/Philippines/119.92.139.24.static.pldt.net	Web App Attack
🇦🇺 screwlooseit.com.au	2026-05-05 12:18:55 (1 month ago)	Blocked by CSF 13 firewall - Rule: XMLRPC PH/Philippines/119.92.139.24.static.pldt.net	Web App Attack
🇺🇸 TPI-Abuse	2026-05-05 10:18:13 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 119.92.139.24 (119.92.139.24.static.pldt.net): ... show more (mod_security) mod_security (id:240335) triggered by 119.92.139.24 (119.92.139.24.static.pldt.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 06:18:05.516855 2026] [security2:error] [pid 20312:tid 20312] [client 119.92.139.24:12116] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 119.92.139.24 (+1 hits since last alert)\|lgbtqhistoryinaustin.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "lgbtqhistoryinaustin.org"] [uri "/xmlrpc.php"] [unique_id "afnD3ZBC3ki5HudnbzikPQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-20 09:01:57 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 119.92.139.24 (119.92.139.24.static.pldt.net): ... show more (mod_security) mod_security (id:225170) triggered by 119.92.139.24 (119.92.139.24.static.pldt.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 20 05:01:52.291429 2026] [security2:error] [pid 3409:tid 3409] [client 119.92.139.24:50902] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|avalderlaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "avalderlaw.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ab0NAGj6ZOYduej3LNrQpQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.136.15.13

🇺🇸 47.253.146.228

🇧🇪 34.77.217.12

🇺🇸 15.204.226.168

🇰🇷 221.165.184.5

🇺🇸 204.48.16.145

🇦🇺 194.195.126.164

🇸🇪 176.10.203.54

🇻🇳 163.61.182.82

🇩🇪 69.5.169.231

🇳🇱 45.142.193.125

🇺🇸 34.71.30.159

🇶🇦 34.18.62.244

🇰🇷 210.206.24.238

🇮🇹 209.227.244.120

🇬🇧 194.207.216.80

🇺🇸 184.105.139.125

🇹🇭 124.122.129.177

🇹🇭 119.42.86.214

🇰🇷 112.217.188.122