JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.234.228

102.129.234.228 was found in our database!

This IP was reported 59 times. Confidence of Abuse is 2%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.234.228

Whois 102.129.234.228

IP Abuse Reports for 102.129.234.228:

This IP address has been reported a total of 59 times from 46 distinct sources. 102.129.234.228 was first reported on May 24th 2023, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-15 13:44:37 (2 weeks ago)	Aggressive web scan	Web App Attack
🇸🇬 mypatricks	2026-04-24 05:32:07 (2 months ago)	102.129.234.228 \| Port: 11424 \| DNS: 102.129.234.228 2026-04-24T13:32:06+08:00 America/Chicago \| Cre ... show more 102.129.234.228 \| Port: 11424 \| DNS: 102.129.234.228 2026-04-24T13:32:06+08:00 America/Chicago \| Credential Forgery \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 HTTP/1.1 443 GET \| URL: /stacked-tiered-themed-cake/?0d26ed5024a8193b92e9ebfafdcb7fe3=a0f746839f&budget=&limit=10&order=DESC&page=4&sort=pd.name \| Ref: - \| Country: US/United States/-08:00 IP City: Dallas 9f12b9b34a53f0a0-DFW/Dallas, TX, United States 1 hits/0 secs Robots 7 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇫🇷 loveprod	2026-04-12 06:26:50 (2 months ago)	102.129.234.228 - - [12/Apr/2026:09:26:49 +0300] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 3 ... show more 102.129.234.228 - - [12/Apr/2026:09:26:49 +0300] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 301 737 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" 102.129.234.228 - - [12/Apr/2026:09:26:50 +0300] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.1" 301 736 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" ... show less	Bad Web Bot
🇧🇪 sid3windr	2026-03-31 16:17:39 (2 months ago)	GET /.env (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
Anonymous	2026-03-31 02:06:11 (2 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Clou ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Cloud secrets probing show less	Bad Web Bot Web App Attack
🇷🇺 DZBOT	2026-03-30 09:16:29 (2 months ago)	DZBOT: Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 04:43:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.228 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 00:43:31.708536 2026] [security2:error] [pid 31034:tid 31034] [client 102.129.234.228:8738] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "batonrougecustomcabinets.com"] [uri "/.env"] [unique_id "acn_c-DmJL4cOaeWRRo4gQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 04:21:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.228 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 00:21:35.544363 2026] [security2:error] [pid 7454:tid 7454] [client 102.129.234.228:1433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kirklandplumbing.ca"] [uri "/.env"] [unique_id "acn6T9GvKiAm_9rT87OY6gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-03-30 03:59:38 (3 months ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 Epimetheus	2026-03-30 03:54:20 (3 months ago)	Unauthorized access attempts: [GET] /.env UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77. ... show more Unauthorized access attempts: [GET] /.env UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 show less	Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 03:47:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.228 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 23:47:19.201420 2026] [security2:error] [pid 501:tid 501] [client 102.129.234.228:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rodrigoaldecoa.com"] [uri "/.env"] [unique_id "acnyRxrk5DL93sVNLsg12QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 03:25:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.234.228 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.234.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 23:24:57.404446 2026] [security2:error] [pid 10625:tid 10625] [client 102.129.234.228:24487] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.labcomputers.com"] [uri "/.env"] [unique_id "acntCbMuG3g7mfChKJ5w6wAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-03-30 03:14:35 (3 months ago)	Web vulnerability probing: /.env	Web App Attack
🇺🇸 Mundo Bueno	2026-03-30 03:11:53 (3 months ago)	[ISILIA Protection v2.1] Tentative d'accès: /.env \| Pays: US \| UA: Mozilla/5.0 (Macintosh; Intel Mac ... show more [ISILIA Protection v2.1] Tentative d'accès: /.env \| Pays: US \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 show less	Hacking Web App Attack
Anonymous	2026-03-30 03:10:01 (3 months ago)	suspicious request in access.log	Web App Attack

Showing 1 to 15 of 59 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:2:d1:0:1:51ea:1

🇷🇺 213.33.182.183

🇺🇸 206.189.75.4

🇩🇪 167.94.145.26

🇩🇪 159.69.176.32

🇮🇳 159.65.144.72

🇮🇳 117.206.86.68

🇨🇳 110.249.202.184

🇨🇳 110.249.202.160

🇲🇾 49.124.152.244

🇺🇸 44.128.41.248

🇧🇷 187.9.247.58

🇻🇳 116.110.146.113

🇸🇬 82.38.180.49

🇵🇱 57.128.214.238

🇺🇸 44.20.29.60

🇰🇷 222.121.250.203

🇰🇷 211.199.145.131

🇰🇷 211.51.132.104

🇺🇸 159.203.83.195