JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.145.37

102.129.145.37 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 0%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.145.37

Whois 102.129.145.37

IP Abuse Reports for 102.129.145.37:

This IP address has been reported a total of 18 times from 16 distinct sources. 102.129.145.37 was first reported on July 6th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-04-19 00:33:55 (2 months ago)	ThreatBook Intelligence: Zombie,Mobile more details on https://threatbook.io/ip/102.129.145.37 2026- ... show more ThreatBook Intelligence: Zombie,Mobile more details on https://threatbook.io/ip/102.129.145.37 2026-04-18 17:25:54 / 2026-04-18 17:20:20 / show less	Web App Attack
🇹🇷 Doruk	2026-01-25 09:00:01 (4 months ago)	Unauthorized connection attempt	Brute-Force
Anonymous	2025-11-08 11:38:19 (7 months ago)		Bad Web Bot Web App Attack
🇩🇪 Holger	2025-11-08 11:17:55 (7 months ago)	URL probing: GET //xmlrpc.php?rsd	Web App Attack
🇬🇧 Globe2	2025-11-08 07:18:53 (7 months ago)	ModSec - Multiple 403s within a short period of time [server: H3]	Web App Attack
🇺🇸 TPI-Abuse	2025-11-08 06:50:54 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.145.37 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 102.129.145.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 08 01:49:55.822622 2025] [security2:error] [pid 21678:tid 21678] [client 102.129.145.37:23852] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kylight.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kylight.net"] [uri "/wordpress/wp-json/wp/v2/users/"] [unique_id "aQ7oExILRHLn6x9bvmDlXAAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-08 04:52:47 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.145.37 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 102.129.145.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 07 23:52:41.562525 2025] [security2:error] [pid 490:tid 512] [client 102.129.145.37:57731] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|luxury.management\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "luxury.management"] [uri "/wp-json/wp/v2/users/"] [unique_id "aQ7MmcEiu7TksiOHxua2_gAAAI8"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 rakkor	2025-11-08 04:49:02 (7 months ago)	2025-11-08T04:48:59+00:00 NAS [Sat Nov 08 04:48:59.747528 2025] [proxy_fcgi:error] [pid 15752:tid 15 ... show more 2025-11-08T04:48:59+00:00 NAS [Sat Nov 08 04:48:59.747528 2025] [proxy_fcgi:error] [pid 15752:tid 15803] [client 102.129.145.37:56198] AH01071: Got error 'Primary script unknown' ... show less	Hacking Brute-Force
🇩🇪 LRob.fr	2025-11-08 04:33:40 (7 months ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇳🇱 lns.bz	2025-11-08 04:10:13 (7 months ago)	Too many 404 requests [DOOZ]	Web App Attack
🇺🇸 kosada.com	2025-11-08 03:28:27 (7 months ago)	Web vulnerability probing: //2020/wp-includes/wlwmanifest.xml	Web App Attack
🇺🇸 Jason Howell	2025-11-08 00:33:13 (7 months ago)	102.129.145.37 - - [07/Nov/2025:17:33:10 -0600] "POST //xmlrpc.php HTTP/1.1" 200 3009 "-" "Mozilla/5 ... show more 102.129.145.37 - - [07/Nov/2025:17:33:10 -0600] "POST //xmlrpc.php HTTP/1.1" 200 3009 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:18:33:12 -0600] "POST //wp-login.php HTTP/1.1" 200 7253 "https://qcsafetytraining.com//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:18:33:12 -0600] "POST //wp-login.php HTTP/1.1" 200 4861 "https://qcsafetytraining.com//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:18:33:12 -0600] "POST //wp-login.php HTTP/1.1" 200 4861 "https://qcsafetytraining.com//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:18:33:12 -0 ... show less	Web App Attack
🇺🇸 Jason Howell	2025-11-07 23:33:10 (7 months ago)	102.129.145.37 - - [07/Nov/2025:17:33:08 -0600] "GET //xmlrpc.php?rsd HTTP/1.1" 200 1139 "-" "Mozill ... show more 102.129.145.37 - - [07/Nov/2025:17:33:08 -0600] "GET //xmlrpc.php?rsd HTTP/1.1" 200 1139 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:17:33:08 -0600] "GET //wp-login.php HTTP/1.1" 200 4008 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:17:33:09 -0600] "POST //xmlrpc.php HTTP/1.1" 200 620 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:17:33:09 -0600] "POST //xmlrpc.php HTTP/1.1" 200 3010 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:17:33:10 -0600] "POST //xmlrpc.php HTTP/1.1" 200 3010 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Geck ... show less	Web App Attack
🇧🇪 cmbplf	2025-11-07 17:27:45 (7 months ago)	2.173 POST requests with url.path /wp-login.php 1.075 requests with url.path /wp-includes/wlwmani ... show more 2.173 POST requests with url.path /wp-login.php 1.075 requests with url.path /wp-includes/wlwmanifest.xml show less	Brute-Force Bad Web Bot
🇺🇸 lavnet.net	2025-11-07 17:25:36 (7 months ago)	102.129.145.37 - - [07/Nov/2025:17:25:35 +0000] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 2083 ... show more 102.129.145.37 - - [07/Nov/2025:17:25:35 +0000] "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 2083 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:17:25:35 +0000] "GET /feed/ HTTP/1.1" 404 2083 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:17:25:36 +0000] "GET /xmlrpc.php?rsd HTTP/1.1" 404 2083 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:17:25:36 +0000] "GET //wp-includes/ID3/license.txt HTTP/1.1" 404 4544 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.145.37 - - [07/Nov/2025:17:25:36 +0000] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 2083 "-" "Mozilla/5.0 (Windows NT 10.0; Win64 ... show less	Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.38.131.131

🇳🇱 192.42.116.21

🇳🇱 192.42.116.19

🇨🇭 176.65.144.128

🇮🇳 172.83.83.194

🇩🇪 141.98.136.76

🇩🇪 141.98.136.71

🇱🇹 141.98.11.41

🇧🇬 79.124.56.246

🇱🇹 77.90.185.16

🇺🇸 64.62.197.42

🇩🇪 8.211.8.171

🇺🇸 205.210.31.65

🇨🇱 201.222.189.77

🇺🇸 170.246.55.231

🇧🇬 151.237.60.199

🇺🇸 147.185.132.106

🇨🇳 116.181.17.222

🇹🇼 101.13.6.91

🇪🇸 90.162.13.50