JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.252.11

102.129.252.11 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 0%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.252.11

Whois 102.129.252.11

IP Abuse Reports for 102.129.252.11:

This IP address has been reported a total of 21 times from 9 distinct sources. 102.129.252.11 was first reported on October 27th 2023, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-31 16:30:59 (2 months ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇺🇸 TPI-Abuse	2025-11-07 08:27:10 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 07 03:27:03.798756 2025] [security2:error] [pid 23452:tid 23452] [client 102.129.252.11:42594] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|azbrooks.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "azbrooks.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQ2tV64mX1WaRaUlfldHSQAAABU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-07 06:28:52 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 07 01:28:48.087030 2025] [security2:error] [pid 14902:tid 14902] [client 102.129.252.11:55432] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|blueworkdesign.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "blueworkdesign.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQ2RoI4kif8oiTPPLp6gPAAAAAU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-07 02:11:38 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 06 21:11:30.568089 2025] [security2:error] [pid 17667:tid 17667] [client 102.129.252.11:49098] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|paladinmicro.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "paladinmicro.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQ1VUr0ywplN-moo-X0m2wAAABw"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-06 23:48:09 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 06 18:48:05.425213 2025] [security2:error] [pid 27841:tid 27841] [client 102.129.252.11:49924] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|sieder.com.ar\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sieder.com.ar"] [uri "/wp-json/wp/v2/users"] [unique_id "aQ0ztRJmjqJp0VmikaZIMAAAABo"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-06 22:04:53 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 06 17:04:45.333911 2025] [security2:error] [pid 18096:tid 18096] [client 102.129.252.11:44420] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jacinc.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jacinc.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aQ0bfXIk3JPNA3MwI_M5eQAAABI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-06 06:48:35 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 102.129.252.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 06 01:48:27.346419 2025] [security2:error] [pid 13313:tid 13313] [client 102.129.252.11:54038] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|monopolimusic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "monopolimusic.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQxEu4wWo700UE9VYoht9AAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-08-17 14:00:06 (9 months ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 WeekendWeb	2025-08-16 21:07:08 (9 months ago)	repeated failed login attempts	FTP Brute-Force Brute-Force
🇦🇺 oncord	2025-06-21 20:25:44 (11 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-05-29 18:10:35 (1 year ago)	Form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-05-25 12:35:18 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 ChamberofCommerce.com	2024-09-21 17:46:45 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2024-07-18 23:00:58 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇫🇷 Kenshin869	2024-05-27 16:02:39 (2 years ago)	Wordpress unauthorized access attempt	Brute-Force

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.178.247.182

🇪🇹 196.188.93.169

🇹🇭 184.82.184.6

🇫🇷 146.70.194.244

🇺🇸 107.173.70.115

🇨🇳 183.4.9.205

🇮🇳 182.95.234.6

🇲🇴 182.93.7.194

🇺🇸 150.107.38.252

🇺🇸 130.131.201.26

🇦🇺 51.161.198.228

🇧🇷 45.234.40.2

🇺🇸 2604:a880:400:d1:0:4:9639:f001

🇭🇰 223.197.178.95

🇹🇼 211.22.166.107

🇧🇪 198.235.24.212

🇩🇪 151.243.150.40

🇨🇳 113.201.90.227

🇰🇬 46.251.192.53

🇹🇼 35.234.63.224