JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.235.138

102.129.235.138 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 8%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Washington, District of Columbia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.235.138

Whois 102.129.235.138

IP Abuse Reports for 102.129.235.138:

This IP address has been reported a total of 23 times from 15 distinct sources. 102.129.235.138 was first reported on October 27th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 basing	2026-05-17 04:47:20 (1 month ago)	2026-05-17 05:47:20 idz SASL PLAIN auth failed: rhost=102.129.235.138...	Brute-Force
🇺🇸 TPI-Abuse	2026-05-08 23:59:19 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 102.129.235.138 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 102.129.235.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 19:59:14.076736 2026] [security2:error] [pid 25811:tid 25811] [client 102.129.235.138:14314] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.129.235.138 (+1 hits since last alert)\|stat-alliance.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "stat-alliance.com"] [uri "/xmlrpc.php"] [unique_id "af540q7PEnrfQMUpe14sPgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 23:28:35 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 102.129.235.138 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 102.129.235.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 19:28:30.374611 2026] [security2:error] [pid 27126:tid 27126] [client 102.129.235.138:42057] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.129.235.138 (+1 hits since last alert)\|vzan.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "vzan.org"] [uri "/xmlrpc.php"] [unique_id "af5xnsq9gqm-jshiOq6I3QAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-08 21:56:53 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 102.129.235.138 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:240335) triggered by 102.129.235.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 17:56:45.245716 2026] [security2:error] [pid 22292:tid 22292] [client 102.129.235.138:15083] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.129.235.138 (+1 hits since last alert)\|madisonmedia.ai\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "madisonmedia.ai"] [uri "/xmlrpc.php"] [unique_id "af5cHRUHgVvqxGhjb9uIPwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-02-02 23:22:03 (4 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
Anonymous	2026-01-15 07:48:03 (5 months ago)	wordpress-trap	Web App Attack
🇱🇻 garmtech.com	2025-09-29 18:16:35 (8 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 21-16.102.129.235.138.web-spam ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 21-16.102.129.235.138.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇩🇪 marzzzello	2025-04-26 03:17:40 (1 year ago)	Ports: 5x 62167	Port Scan
🇨🇭 trading1617.internet-box.ch	2025-04-21 12:38:26 (1 year ago)		Brute-Force
🇦🇹 CTK	2025-04-21 12:36:51 (1 year ago)	RDP Brute-Force (Grieskirchen RZ2)	Brute-Force
🇧🇷 SvrAdmin	2025-03-24 13:03:49 (1 year ago)	[101] (smtpauth) Failed SMTP AUTH login from 102.129.235.138 (US/United States/-): 5 in the last 360 ... show more [101] (smtpauth) Failed SMTP AUTH login from 102.129.235.138 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2025-03-24 10:00:52 dovecot_login authenticator failed for (ADMIN) [102.129.235.138]:40878: 535 Incorrect authentication data ([email protected]) 2025-03-24 10:00:57 dovecot_login authenticator failed for (ADMIN) [102.129.235.138]:40894: 535 Incorrect authentication data ([email protected]) 2025-03-24 10:01:17 dovecot_login authenticator failed for (ADMIN) [102.129.235.138]:43558: 535 Incorrect authentication data ([email protected]) 2025-03-24 10:02:58 dovecot_login authenticator failed for (ADMIN) [102.129.235.138]:51082: 535 Incorrect authentication data ([email protected]) 2025-03-24 10:03:46 dovecot_login authenticator failed for (ADMIN) [102.129.235.138]:33236: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
🇭🇺 Lacika555	2025-03-08 22:27:32 (1 year ago)	RdpGuard detected brute-force attempt on SMTP	Brute-Force
🇺🇸 mnsf	2024-12-15 20:01:06 (1 year ago)	Login Too Frequent (8)	Brute-Force Web App Attack
🇺🇸 hostseries	2024-09-29 00:13:50 (1 year ago)	Trigger: LF_CPANEL	Brute-Force
🇺🇸 ChamberofCommerce.com	2024-09-24 04:02:24 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 223.233.67.158

🇹🇷 212.64.216.142

🇷🇺 178.178.194.192

🇺🇸 172.239.62.109

🇺🇸 147.185.132.90

🇰🇷 125.138.175.113

🇮🇩 117.102.86.226

🇨🇳 106.54.62.156

🇧🇪 104.155.97.126

🇮🇳 103.39.247.151

🇧🇼 41.216.215.145

🇺🇸 23.254.195.247

🇺🇸 216.73.161.78

🇧🇪 198.235.24.186

🇲🇦 196.92.7.247

🇮🇳 182.95.103.74

🇩🇪 167.94.146.39

🇭🇰 156.225.29.180

🇸🇬 152.42.225.238

🇺🇸 129.146.243.24