JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.8.94.46

122.8.94.46 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 14%: ?

14%

ISP	Beijing CNISP Technology Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	cnisp.org.cn
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.8.94.46

Whois 122.8.94.46

IP Abuse Reports for 122.8.94.46:

This IP address has been reported a total of 8 times from 6 distinct sources. 122.8.94.46 was first reported on March 27th 2026, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-06-27 13:54:40 (16 hours ago)	Fail2Ban banned 122.8.94.46 for security violations in jail wp-armour. Log: 2026/06/27 13:54:40 [err ... show more Fail2Ban banned 122.8.94.46 for security violations in jail wp-armour. Log: 2026/06/27 13:54:40 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 122.8.94.46 \| Target: wplogin" , client: 122.8.94.46, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-06-27 05:40:03 (1 day ago)	Fail2Ban banned 122.8.94.46 for security violations in jail wp-armour. Log: 2026/06/27 05:40:02 [err ... show more Fail2Ban banned 122.8.94.46 for security violations in jail wp-armour. Log: 2026/06/27 05:40:02 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 122.8.94.46 \| Target: wplogin" , client: 122.8.94.46, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇨🇭 4server	2026-05-05 10:20:51 (1 month ago)	[TueMay0512:20:43.5488342026][security2:error][pid2040166:tid2040427][client122.8.94.46:0]ModSecurit ... show more [TueMay0512:20:43.5488342026][security2:error][pid2040166:tid2040427][client122.8.94.46:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"xmlrpc\\\\\\\\.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_rules/03_asl_dos.conf\"][line\"65\"][id\"392331\"][rev\"3\"][msg\"Atomicorp.comWAFRules:xmlrpcDOSattack\"][severity\"CRITICAL\"][hostname\"motogiro.com\"][uri\"/xmlrpc.php\"][unique_id\"afnEezl2p0b4fxLvMiOiYQAAAQw\"] show less	Hacking Web App Attack
🇩🇪 LRob.fr	2026-05-04 01:00:08 (1 month ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-04-24 22:19:57 (2 months ago)	Try to access /xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-03-29 18:20:58 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 122.8.94.46 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 122.8.94.46 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 14:20:53.571671 2026] [security2:error] [pid 31764:tid 31764] [client 122.8.94.46:64115] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gonzalez.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gonzalez.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aclthWCCNgzMvZiPppaNQwAAABc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 kjaerulff	2026-03-29 14:46:56 (2 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇺🇸 TPI-Abuse	2026-03-27 15:21:04 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 122.8.94.46 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 122.8.94.46 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 27 11:20:57.461816 2026] [security2:error] [pid 7230:tid 7230] [client 122.8.94.46:27155] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|flamberge.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "flamberge.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acagWWBoyYZZpcovZAgK0QAAABg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a940:301:225:0:1f::

🇵🇭 202.69.169.162

🇭🇰 150.109.46.88

🇫🇮 77.105.130.18

🇺🇸 72.253.251.3

🇺🇸 69.229.227.44

🇨🇦 62.169.135.72

🇬🇧 35.203.211.243

🇨🇳 220.167.232.125

🇦🇷 190.244.39.224

🇺🇸 184.105.139.101

🇹🇭 159.192.142.30

🇰🇷 112.216.108.62

🇰🇿 95.59.142.69

🇦🇹 68.210.120.110

🇺🇸 68.167.181.102

🇨🇦 62.169.135.209

🇨🇦 62.169.135.203

🇺🇸 185.180.141.52

🇬🇧 78.153.140.43