JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.234.157

102.129.234.157 was found in our database!

This IP was reported 70 times. Confidence of Abuse is 10%: ?

10%

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.234.157

Whois 102.129.234.157

IP Abuse Reports for 102.129.234.157:

This IP address has been reported a total of 70 times from 51 distinct sources. 102.129.234.157 was first reported on August 10th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-18 06:35:37 (1 week ago)	(mod_security) mod_security (id:210580) triggered by 102.129.234.157 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210580) triggered by 102.129.234.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 02:35:30.799405 2026] [security2:error] [pid 1850:tid 1850] [client 102.129.234.157:25383] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "etc/passwd" at ARGS:log_filename. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "57"] [id "210580"] [rev "2"] [msg "COMODO WAF: OS File Access Attempt\|\|tataylor.net\|F\|2"] [data "Matched Data: etc/passwd found within ARGS:log_filename: ../../../../../../../../../../../../../etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "tataylor.net"] [uri "/wp-admin/admin-ajax.php"] [unique_id "ajORsphXduhnoLlBHBeLOwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇳 evicky2002	2026-05-01 06:17:05 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=94, sources=1)	Hacking Brute-Force SSH
🇳🇱 jjnxpct	2026-04-01 03:51:28 (2 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env] show less	Web App Attack Hacking
Anonymous	2026-03-31 16:32:15 (2 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇬🇧 Aetherweb Ark	2026-03-31 13:25:40 (2 months ago)	(mod_security) mod_security (id:949110) triggered by 102.129.234.157 (US/United States/-): N in the ... show more (mod_security) mod_security (id:949110) triggered by 102.129.234.157 (US/United States/-): N in the last X secs show less	Web App Attack
🇧🇷 Halux	2026-03-31 13:24:28 (2 months ago)	102.129.234.157 Probing protected path or service	Web App Attack
🇺🇸 mnsf	2026-03-31 11:06:39 (2 months ago)	Scanning/Probing (93)	Brute-Force Web App Attack
Anonymous	2026-03-31 10:25:46 (2 months ago)	102.129.234.157 - - [30/Mar/2026:23:20:48 -0500] "GET /.env HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Maci ... show more 102.129.234.157 - - [30/Mar/2026:23:20:48 -0500] "GET /.env HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 172.71.167.56 102.129.234.157 - - [31/Mar/2026:01:46:17 -0500] "GET /.env HTTP/1.1" 301 242 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 162.159.104.9 102.129.234.157 - - [31/Mar/2026:01:46:18 -0500] "GET /.env HTTP/1.1" 301 258 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 162.159.104.8 102.129.234.157 - - [31/Mar/2026:04:30:01 -0500] "GET /.env HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 172.69.65.197 102.129.234.157 - - [31/Mar/2026:05:08:21 -0500] "GET /.env HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 102.129.234.157 102.129.234.157 - - [31/Mar/2026:05:11:32 -0500] "GET /.env HTTP/1.1" 403 199 "-" "Mozilla/5. ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 rdpguard.com	2026-03-31 10:21:31 (2 months ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇺🇸 kosada.com	2026-03-31 10:09:45 (2 months ago)	Web vulnerability probing: /.env	Web App Attack
🇺🇸 TPI-Abuse	2026-03-31 09:01:44 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.157 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 05:01:38.664117 2026] [security2:error] [pid 29984:tid 29984] [client 102.129.234.157:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.barryherbach.com"] [uri "/.env"] [unique_id "acuNcm8JY-yU5px-LmSUBwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-03-31 08:36:40 (2 months ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-197)	Hacking Web App Attack
🇩🇪 Petros Stefanakis	2026-03-31 08:14:35 (2 months ago)	(mod_security) mod_security triggered on hostname [redacted] 102.129.234.157 (US/United States/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-03-31 08:13:22 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.157 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 04:13:18.114624 2026] [security2:error] [pid 30667:tid 30667] [client 102.129.234.157:32113] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "weismanovens.com"] [uri "/.env"] [unique_id "acuCHhHFlH6cDroV44T4MQAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-03-31 08:05:45 (2 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking

Showing 1 to 15 of 70 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 167.172.152.94

🇨🇳 223.88.145.224

🇪🇸 212.30.33.223

🇬🇧 194.50.235.141

🇺🇸 185.226.196.14

🇸🇬 178.128.95.176

🇻🇳 171.244.141.86

🇺🇸 149.19.236.55

🇺🇸 52.161.50.37

🇳🇱 45.148.10.157

🇯🇵 20.78.0.33

🇳🇱 176.65.139.238

🇵🇱 172.253.206.53

🇧🇷 170.247.208.182

🇩🇪 134.19.55.211

🇺🇸 64.23.194.25

🇸🇬 47.84.202.133

🇷🇴 193.32.162.84

🇳🇱 185.242.226.81

🇳🇱 176.65.131.215