JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.152.130

102.129.152.130 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 0%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Miami, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.152.130

Whois 102.129.152.130

IP Abuse Reports for 102.129.152.130:

This IP address has been reported a total of 47 times from 25 distinct sources. 102.129.152.130 was first reported on November 22nd 2021, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 octageeks.com	2026-03-12 04:06:44 (3 months ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇩🇪 int8	2026-03-09 20:45:38 (3 months ago)	2026-03-09T20:45:38.494752658Z Minecraft server scanner: status request	Port Scan
🇺🇸 LockBlock	2026-03-09 20:44:23 (3 months ago)	2026-03-09 20:44:23: Minecraft server scan detected from 102.129.152.130 on port 25565 of racknerd-e ... show more 2026-03-09 20:44:23: Minecraft server scan detected from 102.129.152.130 on port 25565 of racknerd-e7e1a9 show less	Port Scan
🇺🇸 cpxducky	2026-03-09 20:44:17 (3 months ago)	2026-03-09 20:44:17: Minecraft server scan detected from 102.129.152.130 on port 25565 of mail.cpxdu ... show more 2026-03-09 20:44:17: Minecraft server scan detected from 102.129.152.130 on port 25565 of mail.cpxducky.com show less	Port Scan
🇺🇸 octageeks.com	2026-03-09 04:11:20 (3 months ago)	Wordpress malicious attack:[octawp]	Web App Attack
Anonymous	2026-03-08 21:03:03 (3 months ago)	Bot / scanning and/or hacking attempts: POST /xmlrpc.php HTTP/1.1	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-03-08 21:02:42 (3 months ago)	(mod_security) mod_security (id:240335) triggered by 102.129.152.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 102.129.152.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 08 17:02:38.803004 2026] [security2:error] [pid 27562:tid 27589] [client 102.129.152.130:4298] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.129.152.130 (+1 hits since last alert)\|kemalinal.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "kemalinal.com"] [uri "/xmlrpc.php"] [unique_id "aa3j7g6i0syaGW9eNTeW1QAAARA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-03-08 20:58:48 (3 months ago)	[redacted] 102.129.152.130 - - [08/Mar/2026:21:58:40 +0100] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" ... show more [redacted] 102.129.152.130 - - [08/Mar/2026:21:58:40 +0100] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36" [redacted] 102.129.152.130 - - [08/Mar/2026:21:58:40 +0100] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36" [redacted] 102.129.152.130 - - [08/Mar/2026:21:58:40 +0100] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36" [redacted] 102.129.152.130 - - [08/Mar/2026:21:58:40 +0100] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36" [redacted] 102.129.152.130 - - [08/Mar/2026:21:58:40 +0100] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win6 ... show less	Hacking Web App Attack
🇫🇷 bazter.pro	2026-03-08 20:58:13 (3 months ago)	Fail2Ban: plesk-bot-aggressive - 15 failures	Port Scan Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-03-08 20:56:04 (3 months ago)	Blocking for trying to access an exploit file: /xmlrpc.php	Hacking
🇮🇹 VHosting	2026-03-08 20:40:04 (3 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇫🇷 ingroscart.it	2026-03-08 20:39:31 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 102.129.152.130 (US/United States/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-03-08 20:35:13 (3 months ago)	(mod_security) mod_security (id:240335) triggered by 102.129.152.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 102.129.152.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 08 16:35:06.577047 2026] [security2:error] [pid 31233:tid 31233] [client 102.129.152.130:11547] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.129.152.130 (+1 hits since last alert)\|fitnessgearmagazine.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "fitnessgearmagazine.com"] [uri "/xmlrpc.php"] [unique_id "aa3deuBww01tNjUUnwwSbQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-01-06 13:10:19 (5 months ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
Anonymous	2025-10-16 05:00:25 (8 months ago)	BruteForce IMAP/POP3/SMTP	Brute-Force

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 150.5.169.138

🇺🇸 91.230.168.136

🇯🇵 74.176.205.111

🇫🇮 185.148.1.18

🇩🇪 107.150.117.121

🇻🇳 103.82.20.108

🇧🇿 45.227.254.152

🇩🇪 2.27.20.149

🇨🇳 219.152.232.212

🇳🇱 176.65.139.56

🇭🇰 154.221.28.214

🇨🇳 123.163.52.74

🇪🇸 90.162.13.50

🇬🇧 80.229.29.80

🇨🇳 117.187.38.158

🇸🇬 103.13.206.152

🇷🇴 92.118.39.62

🇰🇷 222.110.147.58

🇳🇱 91.92.40.50

🇫🇷 51.75.142.157