JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.54.126.41

122.54.126.41 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 69%: ?

69%

ISP	IPG
Usage Type	Fixed Line ISP
ASN	AS9299
Hostname(s)	122.54.126.41.pldt.net
Domain Name	pldthome.com
Country	🇵🇭 Philippines
City	Quezon City, National Capital Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.54.126.41

Whois 122.54.126.41

IP Abuse Reports for 122.54.126.41:

This IP address has been reported a total of 28 times from 15 distinct sources. 122.54.126.41 was first reported on June 7th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-06-12 10:57:24 (1 week ago)	4.346 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-12 07:41:29 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 122.54.126.41 (122.54.126.41.pldt.net): 1 in th ... show more (mod_security) mod_security (id:240335) triggered by 122.54.126.41 (122.54.126.41.pldt.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 03:41:20.793605 2026] [security2:error] [pid 17888:tid 17888] [client 122.54.126.41:57068] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.54.126.41 (+1 hits since last alert)\|sizefinder.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "sizefinder.com"] [uri "/xmlrpc.php"] [unique_id "aiu4IJI0vUZD_wV7bMmH0gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-12 07:38:38 (1 week ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-12 06:13:15 (1 week ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
Anonymous	2026-06-12 05:02:56 (1 week ago)	[redacted] 122.54.126.41 - - [12/Jun/2026:07:02:10 +0200] "POST /xmlrpc.php HTTP/1.1" 403 831 "-" "J ... show more [redacted] 122.54.126.41 - - [12/Jun/2026:07:02:10 +0200] "POST /xmlrpc.php HTTP/1.1" 403 831 "-" "Jetpack/12.1; WordPress/6.3; http://site95515853.com" [redacted] 122.54.126.41 - - [12/Jun/2026:07:02:21 +0200] "POST /xmlrpc.php HTTP/1.1" 403 832 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" [redacted] 122.54.126.41 - - [12/Jun/2026:07:02:32 +0200] "POST /xmlrpc.php HTTP/1.1" 403 832 "-" "Jetpack by WordPress.com" [redacted] 122.54.126.41 - - [12/Jun/2026:07:02:44 +0200] "POST /xmlrpc.php HTTP/1.1" 403 831 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)" [redacted] 122.54.126.41 - - [12/Jun/2026:07:02:55 +0200] "POST /xmlrpc.php HTTP/1.1" 403 831 "-" "WordPress.com; https://wordpress.com" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 20:09:09 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 122.54.126.41 (122.54.126.41.pldt.net): 1 in th ... show more (mod_security) mod_security (id:240335) triggered by 122.54.126.41 (122.54.126.41.pldt.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 16:09:03.827531 2026] [security2:error] [pid 19616:tid 19616] [client 122.54.126.41:54393] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.54.126.41 (+1 hits since last alert)\|my-spec.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "my-spec.com"] [uri "/xmlrpc.php"] [unique_id "aisV3yC_iX2zr89aLd5wbQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 20:08:59 (1 week ago)	[redacted] 122.54.126.41 - - [11/Jun/2026:22:08:15 +0200] "POST /xmlrpc.php HTTP/1.1" 403 831 "-" "J ... show more [redacted] 122.54.126.41 - - [11/Jun/2026:22:08:15 +0200] "POST /xmlrpc.php HTTP/1.1" 403 831 "-" "Jetpack by WordPress.com" [redacted] 122.54.126.41 - - [11/Jun/2026:22:08:26 +0200] "POST /xmlrpc.php HTTP/1.1" 403 832 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.2)" [redacted] 122.54.126.41 - - [11/Jun/2026:22:08:36 +0200] "POST /xmlrpc.php HTTP/1.1" 403 832 "-" "Jetpack/13.0; WordPress/6.1; http://site94003947.com" [redacted] 122.54.126.41 - - [11/Jun/2026:22:08:47 +0200] "POST /xmlrpc.php HTTP/1.1" 403 831 "-" "Jetpack by WordPress.com" [redacted] 122.54.126.41 - - [11/Jun/2026:22:08:58 +0200] "POST /xmlrpc.php HTTP/1.1" 403 832 "-" "Jetpack/12.5; WordPress/6.1; http://site13426482.com" ... show less	Hacking Web App Attack
🇩🇪 konseptit	2026-06-11 06:06:56 (1 week ago)	(wordpress) Failed wordpress login from 122.54.126.41 (PH/Philippines/122.54.126.41.pldt.net)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-10 22:39:53 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 122.54.126.41 (122.54.126.41.pldt.net): 1 in th ... show more (mod_security) mod_security (id:240335) triggered by 122.54.126.41 (122.54.126.41.pldt.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 18:39:47.413688 2026] [security2:error] [pid 19057:tid 19057] [client 122.54.126.41:64457] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 122.54.126.41 (+1 hits since last alert)\|certifiedfarmersmarkets.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "certifiedfarmersmarkets.org"] [uri "/xmlrpc.php"] [unique_id "ainnsxPeuAipMK2EF50LZAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-10 00:12:28 (1 week ago)	[redacted] 122.54.126.41 - - [10/Jun/2026:02:11:44 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "W ... show more [redacted] 122.54.126.41 - - [10/Jun/2026:02:11:44 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 122.54.126.41 - - [10/Jun/2026:02:11:54 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.1; http://site54333995.com" [redacted] 122.54.126.41 - - [10/Jun/2026:02:12:05 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 122.54.126.41 - - [10/Jun/2026:02:12:16 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/13.0; WordPress/6.2; http://site76421208.com" [redacted] 122.54.126.41 - - [10/Jun/2026:02:12:27 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" ... show less	Hacking Web App Attack
Anonymous	2026-06-09 21:49:13 (1 week ago)	Attac	Brute-Force
🇳🇱 Site.eu	2026-06-09 18:48:03 (1 week ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇦🇺 screwlooseit.com.au	2026-06-09 18:15:03 (1 week ago)	Blocked by CSF 13 firewall - Rule: XMLRPC PH/Philippines/122.54.126.41.pldt.net	Web App Attack
🇺🇸 lostswordfish.com	2026-06-09 17:36:08 (1 week ago)	Wordfence waf block on pameganslaw	Web App Attack
🇩🇪 ger-stg-sifi1	2026-06-09 14:59:05 (1 week ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 91.196.152.27

🇬🇧 35.203.210.184

🇩🇪 213.209.159.66

🇳🇱 204.76.203.219

🇬🇧 193.163.125.247

🇺🇸 147.185.132.33

🇧🇷 143.202.104.13

🇺🇸 142.147.240.233

🇭🇰 119.28.49.103

🇲🇾 103.253.105.16

🇺🇸 66.132.186.168

🇺🇸 65.49.1.205

🇨🇳 42.51.41.137

🇮🇳 175.101.131.169

🇨🇳 101.33.212.52

🇨🇳 49.7.214.219

🇺🇸 45.131.195.81

🇯🇵 8.216.4.72

🇩🇪 5.253.247.27

🇺🇸 3.213.213.161