JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.232.137

102.129.232.137 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 0%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.232.137

Whois 102.129.232.137

IP Abuse Reports for 102.129.232.137:

This IP address has been reported a total of 21 times from 12 distinct sources. 102.129.232.137 was first reported on April 25th 2023, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 hostseries	2025-12-29 23:50:10 (5 months ago)	Trigger: LF_SMTPAUTH	Brute-Force
🇮🇹 VHosting	2025-12-24 00:25:35 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇯🇵 mkaraki	2025-12-18 07:24:40 (6 months ago)	1766042668 # Service_probe # SIGNATURE_SEND # source_ip:102.129.232.137 # dst_port:5101 ...	Port Scan
🇺🇸 TPI-Abuse	2025-11-10 20:31:19 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.232.137 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.129.232.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 10 15:31:14.643878 2025] [security2:error] [pid 4625:tid 4625] [client 102.129.232.137:50706] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|insua.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "insua.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aRJLkn7JOEkaDJfWsx1yMgAAABI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-10 19:15:23 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.232.137 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.129.232.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 10 14:15:16.736219 2025] [security2:error] [pid 1873:tid 1873] [client 102.129.232.137:36784] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|christianebooks.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "christianebooks.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aRI5xMyaZb42o1ahaMTETAAAABo"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-10 07:45:07 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.232.137 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.129.232.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 10 02:45:02.902246 2025] [security2:error] [pid 21510:tid 21510] [client 102.129.232.137:44288] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|daos.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "daos.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aRGX_pjohSyWQKq65N7lagAAABc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 kjaerulff	2025-11-10 03:02:50 (7 months ago)	Failed Wordpress login using xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2025-11-10 01:23:44 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.232.137 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.129.232.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 09 20:23:38.847961 2025] [security2:error] [pid 14043:tid 14103] [client 102.129.232.137:41178] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|raytbrown.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "raytbrown.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aRE-mmDqMdhV49P-A2GdEQAAAEE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-07 23:39:47 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.232.137 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.129.232.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 07 18:39:43.115554 2025] [security2:error] [pid 25703:tid 25764] [client 102.129.232.137:39642] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pershia.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pershia.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aQ6DPySCJJJULMbKfi0khAAAAMI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-05-19 12:00:26 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edg/114.0.1264.71 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Port Scan
🇦🇺 oncord	2025-05-17 17:34:02 (1 year ago)	Form spam	Web Spam
🇧🇷 LM Security	2025-03-28 23:30:02 (1 year ago)	2025-03-28 20:26:47 dovecot_login authenticator failed for (ADMIN) [102.129.232.137]:34274: 535 Inco ... show more 2025-03-28 20:26:47 dovecot_login authenticator failed for (ADMIN) [102.129.232.137]:34274: 535 Incorrect authentication data (set_id=[redacted]@[redacted].com.br) 2025-03-28 20:26:09 dovecot_login authenticator failed for (ADMIN) [102.129.232.137]:59332: 535 Incorrect authentication data (set_id=lojas@[redacted].com.br) show less	Brute-Force
🇧🇷 SvrAdmin	2025-03-28 23:29:25 (1 year ago)	[101] (smtpauth) Failed SMTP AUTH login from 102.129.232.137 (US/United States/-): 5 in the last 360 ... show more [101] (smtpauth) Failed SMTP AUTH login from 102.129.232.137 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2025-03-28 20:25:52 dovecot_login authenticator failed for (ADMIN) [102.129.232.137]:41748: 535 Incorrect authentication data ([email protected]) 2025-03-28 20:26:38 dovecot_login authenticator failed for (ADMIN) [102.129.232.137]:34394: 535 Incorrect authentication data ([email protected]) 2025-03-28 20:28:07 dovecot_login authenticator failed for (ADMIN) [102.129.232.137]:52014: 535 Incorrect authentication data ([email protected]) 2025-03-28 20:29:12 dovecot_login authenticator failed for (ADMIN) [102.129.232.137]:44662: 535 Incorrect authentication data ([email protected]) 2025-03-28 20:29:21 dovecot_login authenticator failed for (ADMIN) [102.129.232.137]:34560: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
🇺🇸 ChamberofCommerce.com	2024-09-25 15:35:18 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:227 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2024-09-21 01:29:25 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.91

🇭🇰 199.45.154.144

🇬🇧 194.50.235.139

🇳🇱 85.11.167.11

🇺🇸 44.15.14.25

🇩🇪 213.209.159.225

🇳🇱 195.178.110.26

🇬🇧 193.163.125.90

🇬🇧 188.29.127.8

🇩🇪 167.94.146.51

🇺🇸 130.131.161.17

🇮🇹 91.80.128.127

🇹🇷 46.20.0.70

🇺🇸 44.250.54.107

🇺🇸 44.175.153.51

🇲🇽 38.22.170.10

🇳🇱 209.38.44.55

🇺🇦 185.68.18.52

🇧🇷 177.3.173.126

🇩🇪 166.0.52.114