JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.165.48.80

102.165.48.80 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 30%: ?

30%

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Washington, District of Columbia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.165.48.80

Whois 102.165.48.80

IP Abuse Reports for 102.165.48.80:

This IP address has been reported a total of 34 times from 27 distinct sources. 102.165.48.80 was first reported on April 30th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-01 06:17:05 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=96, sources=1)	Hacking Brute-Force SSH
Anonymous	2026-04-24 13:20:03 (1 month ago)	(wordpress) Failed wordpress login from 102.165.48.80 (US/United States/-)	Brute-Force
Anonymous	2026-04-22 23:40:49 (1 month ago)	(wordpress) Failed wordpress login from 102.165.48.80 (US/United States/-)	Brute-Force
🇺🇸 ipblock.com	2026-04-22 22:05:00 (1 month ago)	IPBlock protected site ID [644-wsw]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇳🇱 Savvii	2026-04-22 19:26:54 (1 month ago)	10 attempts against mh-misc-ban on bean	Web App Attack
🇺🇸 TPI-Abuse	2026-04-22 14:06:49 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 102.165.48.80 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 102.165.48.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 22 10:06:43.857939 2026] [security2:error] [pid 32322:tid 32322] [client 102.165.48.80:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|yggdrasil.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "yggdrasil.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "aejV81TIjM97Y-YvLsaOKwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Click-Networks	2026-04-22 12:08:14 (1 month ago)		Web Spam Brute-Force Exploited Host
🇩🇪 Ba-Yu	2026-04-22 09:58:13 (1 month ago)	WP-xmlrpc exploit	Web Spam Blog Spam Hacking Exploited Host Web App Attack
🇳🇱 Savvii	2026-04-22 09:30:42 (1 month ago)	10 attempts against mh-misc-ban on ozone	Web App Attack
🇳🇱 mieg	2026-04-22 06:54:09 (1 month ago)	102.165.48.80 - - [22/Apr/2026:08:54:06 +0200] "GET //wp-includes/ID3/license.txt HTTP/1.1" 301 178 ... show more 102.165.48.80 - - [22/Apr/2026:08:54:06 +0200] "GET //wp-includes/ID3/license.txt HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" Host="transartists.org" Country="US" 102.165.48.80 - - [22/Apr/2026:08:54:07 +0200] "GET //wp-includes/id3/license.txt/feed/ HTTP/1.1" 302 490 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36" Host="www.transartists.org" Country="US" ... show less	Brute-Force Web App Attack
🇸🇪 nekopavel	2026-04-22 06:10:22 (1 month ago)	102.165.48.80 - - [22/Apr/2026:08:10:20 +0200]"GET //wp-includes/ID3/license.txt HTTP/1.1" 404 12391 ... show more 102.165.48.80 - - [22/Apr/2026:08:10:20 +0200]"GET //wp-includes/ID3/license.txt HTTP/1.1" 404 123918"-" mishashto.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36""0.278" "0.000""Washington" "US" 102.165.48.80 - - [22/Apr/2026:08:10:20 +0200]"GET //xmlrpc.php?rsd HTTP/1.1" 404 123879"-" mishashto.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36""0.145" "0.000""Washington" "US" 102.165.48.80 - - [22/Apr/2026:08:10:20 +0200]"GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 123933"-" mishashto.com "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36""0.145" "0.001""Washington" "US" ... show less	Hacking Bad Web Bot Web App Attack
🇩🇪 ramazan	2026-04-22 05:40:10 (1 month ago)	Fail2Ban: nginx-4xx \| Failures: 10 \| Log: /2019/wp-includes/wlwmanifest.xml /2020/wp-includes/wlwman ... show more Fail2Ban: nginx-4xx \| Failures: 10 \| Log: /2019/wp-includes/wlwmanifest.xml /2020/wp-includes/wlwmanifest.xml /2021/wp-includes/wlwmanifest.xml /blog/wp-includes/wlwmanifest.xml /feed/ show less	Web App Attack Hacking
Anonymous	2026-04-22 03:24:59 (1 month ago)	XSS Attempt	Hacking
🇺🇸 apislytics	2026-04-22 00:16:48 (1 month ago)	Automatic hard ban after repeated rate-limit abuse	Brute-Force
🇺🇸 chronos	2026-04-21 20:47:35 (1 month ago)	[AUTORAVALT][[21/04/2026 - 17:47:35 -03:00 UTC] Attack from [Internet Utilities] [102.165.48.80]-[RA ... show more [AUTORAVALT][[21/04/2026 - 17:47:35 -03:00 UTC] Attack from [Internet Utilities] [102.165.48.80]-[RANGE:102.165.48.0 - 102.165.48.255] Action: BLocKed DDoS Attack -> Participating in distributed denial-of-service. Phishing -> Phishing websites and/or email. Web Spam -> Comment/forum spam, HTTP referer spam, or other CMS spam. Blog Spam -> CMS blog comment spa] ... show less	DDoS Attack Phishing Web Spam Blog Spam Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇳 201.159.114.186

🇺🇸 172.208.48.177

🇮🇩 36.74.236.62

🇨🇳 221.207.55.165

🇬🇧 188.240.59.37

🇨🇳 118.178.235.228

🇨🇳 117.162.213.189

🇺🇸 85.208.96.207

🇺🇸 67.147.176.80

🇺🇸 66.132.186.138

🇱🇹 45.227.254.170

🇵🇸 37.8.70.183

🇦🇺 34.40.145.110

🇺🇸 23.95.62.90

🇳🇱 195.178.110.159

🇦🇷 181.116.200.68

🇦🇲 178.160.228.254

🇮🇳 103.110.236.46

🇷🇺 92.55.47.45

🇳🇱 89.248.163.43