JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.234.165

102.129.234.165 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 0%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.234.165

Whois 102.129.234.165

IP Abuse Reports for 102.129.234.165:

This IP address has been reported a total of 36 times from 30 distinct sources. 102.129.234.165 was first reported on October 19th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 FREAKISH	2026-05-08 05:33:56 (1 month ago)	2026-05-08 07:33:56: Minecraft server scan detected from 102.129.234.165 on port 25565 of 127.0.0.1	Port Scan
🇩🇪 stinpriza	2026-04-21 05:58:09 (2 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-03-24 23:53:38 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.165 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 24 19:53:34.153589 2026] [security2:error] [pid 21908:tid 22010] [client 102.129.234.165:1349] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "la.productions"] [uri "/.env"] [unique_id "acMj_qKETigNjbizogt8-gAAAgk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 interbiznw.com	2026-03-24 23:35:08 (2 months ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇬🇧 Swiptly	2026-03-24 23:31:48 (2 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇫🇷 Baking333	2026-03-24 23:28:38 (2 months ago)	[redacted] 102.129.234.165 - - [25/Mar/2026:00:03:56 +0100] "GET /.env HTTP/1.1" 302 5292 0/44784 "- ... show more [redacted] 102.129.234.165 - - [25/Mar/2026:00:03:56 +0100] "GET /.env HTTP/1.1" 302 5292 0/44784 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" [redacted] 102.129.234.165 - - [25/Mar/2026:00:28:37 +0100] "GET /.env HTTP/1.1" 302 5287 0/39339 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Bad Web Bot Web App Attack
🇷🇺 DZBOT	2026-03-24 23:05:11 (2 months ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-03-24 22:57:14 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.165 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 24 18:57:11.091535 2026] [security2:error] [pid 15388:tid 15388] [client 102.129.234.165:38846] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "advancedmotorsports.com"] [uri "/.env"] [unique_id "acMWx1IsznZ5FFzjRSKdnwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-03-24 22:53:20 (2 months ago)	Try to access /.env	Web App Attack
Anonymous	2026-03-24 22:40:02 (2 months ago)	suspicious request in access.log	Web App Attack
🇺🇸 nyt	2026-03-24 22:35:16 (2 months ago)	Sensitive File Probe	Web App Attack
🇺🇸 TPI-Abuse	2026-03-24 22:15:46 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.165 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 24 18:15:40.939153 2026] [security2:error] [pid 9421:tid 9421] [client 102.129.234.165:54654] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "floridausa.com"] [uri "/8news/.env"] [unique_id "acMNDOHxWVpaKP3y8uMLDgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-03-24 22:12:49 (2 months ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-03-24 22:05:02 (2 months ago)	Blocked: Reason='Suspicious traffic score=60 (review-based detection)'; Requests=15	Hacking
🇺🇸 Starburst SysOp Team	2026-03-24 21:51:08 (2 months ago)	(mod_security-custom) mod_security (id:210492) triggered by 102.129.234.165 (US/United States/Texas/ ... show more (mod_security-custom) mod_security (id:210492) triggered by 102.129.234.165 (US/United States/Texas/Dallas/-/[AS174 COGENT-174]): 1 in the last 3600 secs (0-srv1) show less	Hacking

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.147

🇺🇸 100.49.117.77

🇳🇱 91.92.40.13

🇺🇸 44.255.240.160

🇺🇸 23.95.62.90

🇧🇪 198.235.24.254

🇳🇱 193.39.208.26

🇨🇴 181.130.147.249

🇭🇰 154.83.13.181

🇮🇳 116.73.240.74

🇺🇸 104.234.53.111

🇨🇦 85.217.149.14

🇺🇸 65.60.157.6

🇺🇸 44.200.177.217

🇺🇸 44.92.245.90

🇺🇸 2604:a880:400:d1:0:4:9e95:f001

🇧🇷 205.210.31.240

🇸🇬 172.217.97.22

🇺🇾 152.156.185.37

🇨🇳 123.158.253.240