JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.234.204

102.129.234.204 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 90%: ?

90%

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.234.204

Whois 102.129.234.204

IP Abuse Reports for 102.129.234.204:

This IP address has been reported a total of 48 times from 29 distinct sources. 102.129.234.204 was first reported on November 8th 2023, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 lns.bz	2026-06-20 00:00:16 (3 days ago)	.env scanning [DOOZ]	Web App Attack
🇲🇽 octageeks.com	2026-06-19 04:13:46 (4 days ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇩🇪 BlueWire Hosting	2026-06-19 02:40:21 (4 days ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
🇺🇸 TPI-Abuse	2026-06-19 02:27:39 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 22:27:31.160352 2026] [security2:error] [pid 17479:tid 17479] [client 102.129.234.204:7243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.brentsagnotti.com"] [uri "/.env"] [unique_id "ajSpE_eTGoxuzpedLBebagAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Aetherweb Ark	2026-06-19 01:37:55 (4 days ago)	(mod_security) mod_security (id:949110) triggered by 102.129.234.204 (US/United States/-): N in the ... show more (mod_security) mod_security (id:949110) triggered by 102.129.234.204 (US/United States/-): N in the last X secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 00:24:25 (4 days ago)	(mod_security) mod_security (id:949110) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:949110) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 20:24:21.536133 2026] [security2:error] [pid 17639:tid 17639] [client 102.129.234.204:26270] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.experimentalscene.com"] [uri "/.env"] [unique_id "ajSMNUwaUcwNZV20HVz8DgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Dechavanne	2026-06-19 00:00:12 (4 days ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 23:34:40 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 19:34:31.911486 2026] [security2:error] [pid 21003:tid 21003] [client 102.129.234.204:59618] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "veracurnow.com"] [uri "/.env"] [unique_id "ajSAh8ff5PDl0zAaJo8cwAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 nzhost.co.nz	2026-06-18 23:21:28 (4 days ago)	$f2bV_matches	Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-06-18 23:15:38 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 19:15:33.514233 2026] [security2:error] [pid 17201:tid 17201] [client 102.129.234.204:25999] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rockhillcounselors.com"] [uri "/.env"] [unique_id "ajR8FT1qR_q8qe1vkrQiNAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-18 23:04:23 (4 days ago)	102.129.234.204 - - [18/Jun/2026:20:04:21 -0300] "GET /.env HTTP/1.1" 403 1179 "-" "Mozilla/5.0 (Mac ... show more 102.129.234.204 - - [18/Jun/2026:20:04:21 -0300] "GET /.env HTTP/1.1" 403 1179 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 102.129.234.204 - - [18/Jun/2026:20:04:21 -0300] "GET /.env HTTP/1.1" 403 153 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	Port Scan
🇺🇸 nyt	2026-06-18 23:00:02 (4 days ago)	Sensitive File Probe	Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 22:43:15 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 18:43:07.580396 2026] [security2:error] [pid 9879:tid 9879] [client 102.129.234.204:11024] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "herstonfarm.com"] [uri "/.env"] [unique_id "ajR0e6g23u7-FAhHkO28CgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 22:23:42 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 18:23:39.235931 2026] [security2:error] [pid 17411:tid 17411] [client 102.129.234.204:44331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dualspiralsystems.com"] [uri "/.env"] [unique_id "ajRv60LHCQefqobHfhAHRAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-18 22:15:18 (4 days ago)	Try to access /.env	Web App Attack

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 190.14.32.167

🇸🇬 185.200.116.80

🇮🇩 182.253.126.22

🇧🇷 177.12.92.128

🇫🇮 147.185.133.88

🇨🇳 117.69.255.239

🇩🇪 85.214.113.216

🇧🇪 34.38.222.164

🇺🇸 2620:171:f1:f0::230

🇺🇸 205.210.31.78

🇺🇸 193.151.188.66

🇷🇺 188.191.165.234

🇺🇸 172.110.223.147

🇺🇸 172.59.35.16

🇧🇬 79.124.62.134

🇧🇬 79.124.56.210

🇸🇬 47.84.100.125

🇮🇪 34.244.235.223

🇬🇧 193.163.125.163

🇵🇾 186.17.234.252