JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.232.230

102.129.232.230 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 0%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.232.230

Whois 102.129.232.230

IP Abuse Reports for 102.129.232.230:

This IP address has been reported a total of 40 times from 24 distinct sources. 102.129.232.230 was first reported on August 3rd 2023, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-04-11 10:00:53 (2 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇬🇧 consul.to	2026-03-12 16:18:24 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇮🇹 Progetto1	2026-03-04 15:00:02 (3 months ago)	Mail - Multiple failed login attempts	Brute-Force Exploited Host
🇮🇹 VHosting	2026-02-18 22:37:33 (4 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇵🇱 sefinek.net	2026-01-30 09:03:22 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇦🇺 MAGIC	2026-01-07 04:11:19 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 marzzzello	2025-12-20 03:59:04 (6 months ago)	Ports: 25x 5142	Port Scan
🇮🇹 VHosting	2025-12-19 17:39:27 (6 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇺🇸 TPI-Abuse	2025-11-06 01:20:46 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.232.230 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.129.232.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 05 20:20:41.988514 2025] [security2:error] [pid 19099:tid 19103] [client 102.129.232.230:50978] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kettlehill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kettlehill.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQv36YuNfK-B1Jw_27zepwAAAII"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Starburst SysOp Team	2025-11-05 22:33:16 (7 months ago)	Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 230.232.129.102.rbl.mal ... show more Malware host (X-Forwarded-For) detected by rbl.malware.expert. RBL lookup of 230.232.129.102.rbl.malware.expert succeeded at REQUEST_HEADERS:x-forwarded-for. (1001000-mnz6-1) show less	Hacking
🇷🇴 INTEQ	2025-11-05 22:28:11 (7 months ago)	Web attack from 102.129.232.230	Web App Attack
🇺🇸 TPI-Abuse	2025-11-05 20:45:10 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.232.230 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.129.232.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 05 15:45:03.875072 2025] [security2:error] [pid 26567:tid 26567] [client 102.129.232.230:52222] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|sieder.com.ar\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sieder.com.ar"] [uri "/wp-json/wp/v2/users"] [unique_id "aQu3T0lxkrnEtPGDEAMfiQAAAA8"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-11-05 20:00:14 (7 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-05 17:48:11 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.232.230 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 102.129.232.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 05 12:48:05.087799 2025] [security2:error] [pid 19685:tid 19685] [client 102.129.232.230:37846] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bohk.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bohk.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQuN1XNDF47Y4qMPWLl2GQAAACI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 lp	2025-11-01 13:21:20 (7 months ago)	Email account brute force: 2 attempts were recorded from 102.129.232.230 2025-11-01T13:14:39+01:00 w ... show more Email account brute force: 2 attempts were recorded from 102.129.232.230 2025-11-01T13:14:39+01:00 warning: unknown[102.129.232.230]: SASL LOGIN authentication failed: authentication failure, [email protected] 2025-11-01T13:27:16+01:00 warning: unknown[102.129.232.230]: SASL LOGIN authentication failed: authentication failure, [email protected] show less	Brute-Force

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 181.129.31.42

🇺🇸 170.130.204.82

🇮🇩 103.148.100.146

🇷🇴 2.57.122.177

🇺🇸 147.185.132.100

🇮🇩 110.44.175.101

🇺🇿 188.113.252.44

🇺🇸 172.216.31.19

🇰🇿 95.57.227.195

🇺🇿 198.163.193.85

🇬🇧 185.216.145.174

🇩🇪 128.1.120.222

🇺🇸 104.206.128.54

🇧🇬 93.94.141.115

🇺🇸 69.164.217.74

🇳🇱 5.61.209.224

🇺🇸 2604:a880:400:d1:0:4:9e74:1001

🇰🇷 221.158.140.244

🇿🇦 197.185.147.92

🇧🇷 187.94.32.248