JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.52.213.79

122.52.213.79 was found in our database!

This IP was reported 85 times. Confidence of Abuse is 15%: ?

15%

ISP	IPG
Usage Type	Fixed Line ISP
ASN	AS9299
Hostname(s)	122.52.213.79.pldt.net
Domain Name	pldthome.com
Country	🇵🇭 Philippines
City	Quezon City, National Capital Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.52.213.79

Whois 122.52.213.79

IP Abuse Reports for 122.52.213.79:

This IP address has been reported a total of 85 times from 41 distinct sources. 122.52.213.79 was first reported on January 25th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 ByeByte API	2026-05-16 19:49:51 (1 month ago)	byebyte.space auth: Rate-limit escalation at 2026-05-16T19:49:51Z: 5 rejections in 300s. Firewall au ... show more byebyte.space auth: Rate-limit escalation at 2026-05-16T19:49:51Z: 5 rejections in 300s. Firewall auto-banned IP for 900s. UA: 'Mozilla/5.0 (Linux; Android 14; SM-S918B) AppleWebKit/605.1.33 (KHTML, like Gecko) Chrome/129.0.0.0 Mobile Safari/17.2'. Accept-Language: 'en,es;q=0.9,zh-CN;q=0.8,zh;q=0.7,pt;q=0.6'. Accept-Encoding: 'gzip, br'. Sec-Ch-Ua: '"Google Chrome";v="129", "Chromium";v="129", "Not.A/Brand";v="24"'. Platform: "Android" (mobile=?1). Referer: 'https://google.com/'. Country (CF): PH. TLS info: {"scheme":"https"}. show less	Web App Attack DDoS Attack
🇮🇩 HaDeKa	2026-05-10 18:18:00 (1 month ago)	DDoS Attack to Cloudflare Protected Endpoint [8.43k] \| TOTAL ATTACK REQUESTS = ± 10M \| START 01:18 A ... show more DDoS Attack to Cloudflare Protected Endpoint [8.43k] \| TOTAL ATTACK REQUESTS = ± 10M \| START 01:18 AM END 01:55 AM show less	DDoS Attack
🇷🇴 Fn4ticHz	2026-05-09 14:02:11 (1 month ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇹🇭 anurak.org	2026-04-29 04:50:00 (1 month ago)	HTTP DDOS attack of 2.02k requests	DDoS Attack
🇮🇹 VHosting	2026-03-14 11:14:21 (3 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇮🇳 liveaspankaj	2026-03-01 18:06:47 (3 months ago)	DDoS attack: 57 requests in 5m (GET / or repair.php).	DDoS Attack
🇺🇸 COMPLEX	2026-01-26 01:07:22 (4 months ago)	Triggered Cloudflare WAF (l7ddos) from PH. Action taken: BLOCK ASN: undefined (undefined) Protocol: ... show more Triggered Cloudflare WAF (l7ddos) from PH. Action taken: BLOCK ASN: undefined (undefined) Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Android 12; Mobile; rv:146.0) Gecko/146.0 Firefox/146.0 show less	DDoS Attack Bad Web Bot
🇳🇱 homeshowdomain.nl	2026-01-16 23:00:23 (5 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-01-15. show less	Hacking Web App Attack SSH
🇪🇸 cuscusero (FlexBacks, FlexChar, FlexAve, FlexCDNM, FlexTudy, ColdHosting SL)	2026-01-16 01:06:13 (5 months ago)	[CPD ESP-BCN02-FW11-394] Suspicious connection detected on port 8080. DDoS detected	DDoS Attack Port Scan Brute-Force
🇺🇸 TPI-Abuse	2026-01-15 01:15:54 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 122.52.213.79 (122.52.213.79.pldt.net): 1 in th ... show more (mod_security) mod_security (id:210492) triggered by 122.52.213.79 (122.52.213.79.pldt.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 14 20:15:50.912331 2026] [security2:error] [pid 31097:tid 31097] [client 122.52.213.79:54383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.elefen.org"] [uri "/.git/config"] [unique_id "aWg_xjTxTbXeRsJvLSjP8gAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇳 Bharat Datacenter	2026-01-11 12:10:17 (5 months ago)	1: date=2026-01-11 time=17:38:48 eventtime=1768133328392385789 tz="+0530" logid="0720018432" type="u ... show more 1: date=2026-01-11 time=17:38:48 eventtime=1768133328392385789 tz="+0530" logid="0720018432" type="utm" subtype="anomaly" eventtype="anomaly" level="alert" vd="root" severity="critical" srcip=122.52.213.79 srccountry="Philippines" dstip=157.10.99.34 dstcountry="India" srcintf="x2" srcintfrole="wan" sessionid=0 action="clear_session" proto=6 service="HTTPS" count=195666 attack="tcp_syn_flood" srcport=49412 dstport=443 attackid=100663396 policyid=1 policytype="DoS-policy" ref="http://www.fortinet.com/ids/VID100663396" msg="anomaly: tcp_syn_flood, 9915 > threshold 2000, repeats 195666 times since last log, pps 10014 of prior second" crscore=50 craction=4096 crlevel="critical" show less	Brute-Force
🇨🇦 1gz	2025-12-29 11:52:49 (5 months ago)	Triggered Cloudflare WAF (l7ddos) from PH. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpo ... show more Triggered Cloudflare WAF (l7ddos) from PH. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:51.0) Gecko/20100101 Firefox/51.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot
🇨🇭 Modules	2025-12-23 12:58:43 (5 months ago)	Open proxy socks4://122.52.213.79:64147 (RT:3445ms,Loc:Philippines,ASN:AS9299)	Open Proxy
🇨🇭 Modules	2025-12-17 13:15:08 (6 months ago)	Open proxy http://122.52.213.79:62102 (RT:15827ms,Loc:Philippines,ASN:AS9299)	Open Proxy
🇺🇸 SuperEvilLuke	2025-12-14 14:06:30 (6 months ago)	Malicious activity detected from 9299 IPG-AS-AP Philippine Long Distance Telephone Company towards h ... show more Malicious activity detected from 9299 IPG-AS-AP Philippine Long Distance Telephone Company towards host panel.embotic.xyz (GET HTTP/2) @ 2025-12-14T14:06:30Z (2 occurrences) show less	DDoS Attack Exploited Host

Showing 1 to 15 of 85 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 143.198.185.255

🇮🇷 5.233.111.149

🇮🇩 2406:da19:776:6e02:670b:14a4:31b4:18ad

🇰🇷 218.144.90.41

🇨🇳 180.153.236.230

🇺🇸 162.118.104.95

🇮🇳 159.89.166.28

🇺🇸 141.11.88.13

🇸🇬 47.84.143.211

🇳🇱 45.148.10.240

🇺🇿 213.230.93.110

🇺🇸 205.210.31.52

🇧🇪 198.235.24.209

🇨🇳 180.184.86.82

🇺🇸 162.216.149.228

🇧🇳 119.160.166.237

🇮🇳 106.214.8.94

🇩🇪 69.5.169.254

🇺🇸 64.62.197.47

🇺🇸 44.221.251.75