JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.165.1.34

102.165.1.34 was found in our database!

This IP was reported 55 times. Confidence of Abuse is 24%: ?

24%

ISP	Internet Utilities Africa (PTY) LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS61317
Domain Name	hivelocity.net
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.165.1.34

Whois 102.165.1.34

IP Abuse Reports for 102.165.1.34:

This IP address has been reported a total of 55 times from 15 distinct sources. 102.165.1.34 was first reported on September 17th 2021, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-25 16:12:57 (13 hours ago)	(mod_security) mod_security (id:210350) triggered by 102.165.1.34 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 102.165.1.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 12:12:51.681714 2026] [security2:error] [pid 8322:tid 8322] [client 102.165.1.34:41987] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|389thbg.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "389thbg.com"] [uri "/index.html"] [unique_id "aj1Tg1baKPyTSAedGV2OSAAAAA4"], referer: https://389thbg.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 10:48:49 (19 hours ago)	(mod_security) mod_security (id:210350) triggered by 102.165.1.34 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 102.165.1.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 06:48:43.693287 2026] [security2:error] [pid 2341:tid 2341] [client 102.165.1.34:29143] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|jeffjastro.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "jeffjastro.com"] [uri "/equip/"] [unique_id "aj0Hi3dUWnTZ7nyvENIOCQAAABQ"], referer: http://jeffjastro.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-17 20:17:02 (1 week ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 23-17.102.165.1.34.web-spammer ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 23-17.102.165.1.34.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 ipblock.com	2026-05-30 22:30:00 (3 weeks ago)	IPBlock protected site ID [4055-d][s=06]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-05-29 13:34:00 (3 weeks ago)	IPBlock protected site ID [4055-d][s=06]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-05-28 04:56:00 (4 weeks ago)	IPBlock protected site ID [4055-d][s=06]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-05-25 16:59:00 (1 month ago)	IPBlock protected site ID [4055-d][s=06]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-05-24 15:57:00 (1 month ago)	IPBlock protected site ID [4055-d][s=06]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-05-23 13:34:00 (1 month ago)	IPBlock protected site ID [4055-d][s=06]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-05-22 07:05:00 (1 month ago)	IPBlock protected site ID [4055-d][s=06]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 09:52:06 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 102.165.1.34 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 102.165.1.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 05:52:01.383272 2026] [security2:error] [pid 18612:tid 18612] [client 102.165.1.34:50061] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.techlinks.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.techlinks.com"] [uri "/"] [unique_id "ag2EQXQRzimB0o1DqBTxdgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-05-17 19:44:00 (1 month ago)	IPBlock protected site ID [4055-d][s=06]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-13 23:50:54 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 102.165.1.34 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 102.165.1.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 19:50:50.825729 2026] [security2:error] [pid 27953:tid 27972] [client 102.165.1.34:54969] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.northtexaslive.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.northtexaslive.com"] [uri "/"] [unique_id "agUOWuhlGh8rjZlWuLPN3AAAAU0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-13 21:00:52 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 102.165.1.34 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 102.165.1.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 17:00:45.496657 2026] [security2:error] [pid 5941:tid 5990] [client 102.165.1.34:64031] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.wakhan-adventure.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.wakhan-adventure.com"] [uri "/"] [unique_id "agTmfQCl_ZYTTV4yUOuk8wAAARQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-05-10 06:14:00 (1 month ago)	IPBlock protected site ID [4055-d][s=07]. Persistent 404, vulnerability scanner	Hacking Bad Web Bot Web App Attack

Showing 1 to 15 of 55 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.25

🇨🇦 85.217.149.50

🇪🇸 46.6.123.111

🇬🇧 35.203.211.251

🇧🇪 34.22.219.215

🇺🇸 20.169.105.164

🇮🇳 13.205.53.126

🇧🇬 5.188.206.30

🇱🇹 194.165.16.11

🇬🇧 185.247.137.41

🇨🇳 180.116.251.174

🇩🇪 167.94.146.50

🇻🇳 163.223.12.43

🇺🇸 162.216.150.135

🇰🇷 112.216.129.27

🇨🇦 99.250.120.112

🇺🇸 93.152.208.42

🇫🇷 91.231.89.254

🇩🇪 91.194.237.179

🇳🇱 91.92.40.10