JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.105.102.143

124.105.102.143 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 9%: ?

ISP	IPG
Usage Type	Fixed Line ISP
ASN	AS9299
Domain Name	pldthome.com
Country	🇵🇭 Philippines
City	Iguig, Cagayan Valley

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.105.102.143

Whois 124.105.102.143

IP Abuse Reports for 124.105.102.143:

This IP address has been reported a total of 15 times from 12 distinct sources. 124.105.102.143 was first reported on June 15th 2021, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 pltcldvlpr	2026-06-10 10:40:53 (2 weeks ago)	Bogus Useragent: 124.105.102.143 - - [10/Jun/2026:12:40:52 +0200] "GET /protocol?id=be_14_20&offset= ... show more Bogus Useragent: 124.105.102.143 - - [10/Jun/2026:12:40:52 +0200] "GET /protocol?id=be_14_20&offset=1800&seq=1767 HTTP/1.1" 444 0 "-" "Mozilla/5.0 (compatible; MSIE 5.0; Windows NT 10.0; Trident/3.1)" asn=9299 org="Philippine Long Distance Telephone Co." country=PH ... show less	Bad Web Bot
🇩🇪 SMARTNET	2026-05-27 06:03:53 (1 month ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
🇺🇸 TPI-Abuse	2026-04-13 01:01:25 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 124.105.102.143 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 124.105.102.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 12 21:01:20.437519 2026] [security2:error] [pid 1525866:tid 1525866] [client 124.105.102.143:52871] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|christaylorjazzpianist.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "christaylorjazzpianist.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adxAYEobbLKalXRIiwHxPgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 wlt-blocker	2026-04-12 17:18:28 (2 months ago)	Unauthorized access to webpage admin	Web App Attack
🇩🇪 big-cloud.nl	2026-04-12 07:56:24 (2 months ago)	Try to access /xmlrpc.php	Web App Attack
🇺🇸 lnklnx	2026-04-10 10:17:38 (2 months ago)	www.lnklnx.com:443 124.105.102.143 - - [10/Apr/2026:05:17:35 -0500] "POST /xmlrpc.php HTTP/1.1" 403 ... show more www.lnklnx.com:443 124.105.102.143 - - [10/Apr/2026:05:17:35 -0500] "POST /xmlrpc.php HTTP/1.1" 403 3863 "-" "Mozilla/5.0 (Windows NT 10.0; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/62.0.0.0 Safari/537.36" ... show less	Web App Attack
🇨🇳 ThreatBook.io	2026-01-07 22:46:21 (5 months ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/124.105.102.143	SSH
🇳🇱 maxxsense	2025-11-20 10:01:40 (7 months ago)	(wordpress) Failed wordpress login from 124.105.102.143 (PH/Philippines/-)	Brute-Force
🇺🇸 TPI-Abuse	2025-11-18 03:16:57 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 124.105.102.143 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 124.105.102.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 17 22:16:50.629263 2025] [security2:error] [pid 14085:tid 14085] [client 124.105.102.143:60881] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|littlecreekrvranch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "littlecreekrvranch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aRvlIpK74Zi9QoQjCW-TJgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇾 lns.bz	2025-11-17 21:04:36 (7 months ago)	Banned for trying to access xmlrpc [BY]	Web App Attack
🇧🇷 diego	2024-06-18 22:26:54 (2 years ago)	[rede-arem1] 06/18/2024-19:26:54.055279, 124.105.102.143, Protocol: 17, SURICATA FRAG IPv4 Fragmenta ... show more [rede-arem1] 06/18/2024-19:26:54.055279, 124.105.102.143, Protocol: 17, SURICATA FRAG IPv4 Fragmentation overlap show less	Hacking
🇧🇷 diego	2024-06-18 21:09:16 (2 years ago)	[rede-arem1] 06/18/2024-18:09:15.754399, 124.105.102.143, Protocol: 17, SURICATA FRAG IPv4 Fragmenta ... show more [rede-arem1] 06/18/2024-18:09:15.754399, 124.105.102.143, Protocol: 17, SURICATA FRAG IPv4 Fragmentation overlap show less	Hacking
🇧🇷 diego	2024-06-18 19:56:21 (2 years ago)	[rede-arem1] 06/18/2024-16:56:19.506939, 124.105.102.143, Protocol: 17, SURICATA FRAG IPv4 Fragmenta ... show more [rede-arem1] 06/18/2024-16:56:19.506939, 124.105.102.143, Protocol: 17, SURICATA FRAG IPv4 Fragmentation overlap show less	Hacking
🇩🇪 lukgth	2021-11-22 03:27:32 (4 years ago)	124.105.102.143 triggered Icarus honeypot. Check us out on github.	Port Scan Hacking
🇵🇱 ChillScanner	2021-06-15 11:39:21 (5 years ago)	1 probe(s) @ UDP(59459)	Port Scan

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 203.121.40.210

🇧🇷 186.249.199.93

🇷🇺 176.32.35.48

🇮🇪 146.112.130.74

🇮🇪 146.112.130.71

🇮🇳 135.13.12.164

🇭🇰 118.26.39.178

🇨🇳 113.215.214.166

🇬🇧 86.173.179.216

🇷🇴 80.94.92.55

🇺🇸 73.142.143.145

🇨🇳 43.138.215.245

🇷🇺 37.230.118.213

🇺🇸 195.184.76.233

🇪🇸 185.204.247.162

🇺🇸 173.255.223.32

🇵🇰 162.4.16.130

🇮🇪 146.112.130.70

🇨🇿 146.112.129.73

🇨🇿 146.112.129.72