JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.234.168

102.129.234.168 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 87%: ?

87%

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.234.168

Whois 102.129.234.168

IP Abuse Reports for 102.129.234.168:

This IP address has been reported a total of 28 times from 21 distinct sources. 102.129.234.168 was first reported on February 2nd 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 pipeline.es	2026-06-17 13:52:37 (3 days ago)	Web scanning / probing for vulnerable paths	Port Scan Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-17 05:08:02 (3 days ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice02]	Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-17 04:07:02 (3 days ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [mx01,mx02,mx03,wa01,wa0 ... show more Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [mx01,mx02,mx03,wa01,wa02] show less	Bad Web Bot Web App Attack
Anonymous	2026-06-17 03:14:14 (3 days ago)	Configuration snooping (/.env): 102.129.234.168 - - [17/Jun/2026:04:14:14 +0100] "GET /.env HTTP/1. ... show more Configuration snooping (/.env): 102.129.234.168 - - [17/Jun/2026:04:14:14 +0100] "GET /.env HTTP/1.1" 200 234 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Hacking Web App Attack
🇮🇹 Inartis	2026-06-17 03:13:08 (3 days ago)	102.129.234.168 - - [17/Jun/2026:03:13:08 +0000] "GET /.env HTTP/1.1" 302 449 "-" "Mozilla/5.0 (Maci ... show more 102.129.234.168 - - [17/Jun/2026:03:13:08 +0000] "GET /.env HTTP/1.1" 302 449 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 maxxsense	2026-06-17 02:41:45 (3 days ago)	(mod_security) mod_security triggered on hostname [redacted] 102.129.234.168 (US/United States/-)	SQL Injection
🇩🇪 FeG Deutschland	2026-06-17 02:17:02 (3 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇧🇾 lns.bz	2026-06-17 02:10:33 (3 days ago)	.env scanning [BY]	Web App Attack
🇩🇪 joharikop	2026-06-17 01:35:47 (3 days ago)	Nginx: credential/secret file probe (/.env, /.git, /.aws etc). Automated ban via fail2ban nginx-cred ... show more Nginx: credential/secret file probe (/.env, /.git, /.aws etc). Automated ban via fail2ban nginx-credential-probes jail. show less	Web App Attack
🇮🇹 VHosting	2026-06-17 01:35:03 (3 days ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇨🇭 4server	2026-06-17 00:57:09 (3 days ago)	[WedJun1702:57:06.6131272026][security2:error][pid2575104:tid2575349][client102.129.234.168:0]ModSec ... show more [WedJun1702:57:06.6131272026][security2:error][pid2575104:tid2575349][client102.129.234.168:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"4-server.com\"][uri\"/.env\"][unique_id\"ajHw4ifFYgn2m8UZpMADeQAAAQ0\"] show less	Hacking Web App Attack
🇫🇷 masterguru	2026-06-17 00:24:38 (3 days ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-201)	Hacking Web App Attack
🇩🇪 akasolutions.de	2026-06-17 00:24:21 (3 days ago)	(mod_security) mod_security triggered on hostname [redacted] 102.129.234.168 (US/United States/-)	SQL Injection
🇺🇸 rdpguard.com	2026-06-16 23:52:54 (4 days ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇪🇸 pipeline.es	2026-06-16 23:27:21 (4 days ago)	Web scanning / probing for vulnerable paths \| URL: /.env \| Evidence: hotrawo.com 102.129.234.168 - - ... show more Web scanning / probing for vulnerable paths \| URL: /.env \| Evidence: hotrawo.com 102.129.234.168 - - [17/Jun/2026:01:27:05 +0200] \"GET /.env HTTP/1.1\" 404 18796 \"-\" \"Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0\" GEOIP_COUNTRY_CODE=US \| ASN: COGENT-174 \| Country: US show less	Port Scan Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 139.135.43.166

🇰🇷 118.130.168.66

🇺🇸 71.6.242.38

🇺🇸 192.3.180.222

🇩🇪 185.254.97.154

🇺🇾 179.26.156.108

🇫🇮 147.185.133.153

🇻🇳 123.24.206.213

🇮🇳 103.54.101.248

🇫🇷 91.231.89.95

🇺🇸 91.230.168.102

🇫🇷 85.217.140.4

🇰🇷 14.55.31.113

🇬🇧 2a06:4883:d000::fb

🇳🇱 91.92.40.176

🇧🇷 190.115.84.25

🇵🇾 181.123.62.210

🇰🇷 14.63.217.28

🇺🇸 147.185.132.174

🇧🇷 143.0.189.165