JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.213.103.68

102.213.103.68 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 48%: ?

48%

ISP	ZAP-Angola
Usage Type	Fixed Line ISP
ASN	AS37645
Hostname(s)	cust-102-213-103-68.zapfibra.co.ao
Domain Name	zap.co.ao
Country	🇦🇴 Angola
City	Luanda, Luanda

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.213.103.68

Whois 102.213.103.68

IP Abuse Reports for 102.213.103.68:

This IP address has been reported a total of 33 times from 16 distinct sources. 102.213.103.68 was first reported on April 18th 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-06-20 12:49:11 (7 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 12:26:42 (8 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co ... show more (mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 08:26:37.077189 2026] [security2:error] [pid 23943:tid 23943] [client 102.213.103.68:42748] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.103.68 (+1 hits since last alert)\|hookedupfishing.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hookedupfishing.net"] [uri "/xmlrpc.php"] [unique_id "ajaG_RSqBsbVJoOfSJNTLAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-19 08:46:45 (1 day ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (88010-201)	Hacking
🇺🇸 TPI-Abuse	2026-06-06 21:05:17 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co ... show more (mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 17:05:12.373627 2026] [security2:error] [pid 20745:tid 20745] [client 102.213.103.68:61016] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.103.68 (+1 hits since last alert)\|intothebigempty.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "intothebigempty.com"] [uri "/xmlrpc.php"] [unique_id "aiSLiBkG6MSZ-Z5AeyOxhAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 20:16:24 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co ... show more (mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 16:16:17.295215 2026] [security2:error] [pid 4497:tid 4497] [client 102.213.103.68:58547] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.103.68 (+1 hits since last alert)\|targetbinario.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "targetbinario.com"] [uri "/xmlrpc.php"] [unique_id "aiSAEQ-tPFVEsXCejpBsmQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-06 20:01:04 (2 weeks ago)	(wordpress) Failed wordpress login from 102.213.103.68 (AO/Angola/cust-102-213-103-68.zapfibra.co.ao ... show more (wordpress) Failed wordpress login from 102.213.103.68 (AO/Angola/cust-102-213-103-68.zapfibra.co.ao) show less	Brute-Force
🇺🇸 TPI-Abuse	2026-06-06 17:31:58 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co ... show more (mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 13:31:53.138819 2026] [security2:error] [pid 7256:tid 7309] [client 102.213.103.68:57461] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.103.68 (+1 hits since last alert)\|whatismetamodern.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "whatismetamodern.com"] [uri "/xmlrpc.php"] [unique_id "aiRZiZH7LUojXq-dzJngKwAAAZc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 abdubhai	2026-06-06 16:55:14 (2 weeks ago)	102.213.103.68 - - [06/Jun/2026: ...	Brute-Force
🇺🇸 TPI-Abuse	2026-06-06 16:32:21 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co ... show more (mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 12:32:15.318023 2026] [security2:error] [pid 23490:tid 23490] [client 102.213.103.68:56905] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.103.68 (+1 hits since last alert)\|saynotoofland.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "saynotoofland.org"] [uri "/xmlrpc.php"] [unique_id "aiRLjwKdEvOIJKZR7Xe6XwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 14:56:58 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co ... show more (mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 10:56:54.736241 2026] [security2:error] [pid 730:tid 730] [client 102.213.103.68:54439] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.103.68 (+1 hits since last alert)\|shelbysmoak.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "shelbysmoak.com"] [uri "/xmlrpc.php"] [unique_id "aiQ1NuSLrkh3L7ON_UkrcgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-06 10:15:36 (2 weeks ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇬🇧 Apache	2026-06-06 07:46:16 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 102.213.103.68 (AO/Angola/cust-102-213-103-68.z ... show more (mod_security) mod_security (id:240335) triggered by 102.213.103.68 (AO/Angola/cust-102-213-103-68.zapfibra.co.ao): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇺🇸 integrantservices.com	2026-06-05 20:09:41 (2 weeks ago)	(wordpress) Failed wordpress login from 102.213.103.68 (AO/Angola/cust-102-213-103-68.zapfibra.co.ao ... show more (wordpress) Failed wordpress login from 102.213.103.68 (AO/Angola/cust-102-213-103-68.zapfibra.co.ao) show less	Brute-Force
Anonymous	2026-06-05 18:07:13 (2 weeks ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-04 19:47:43 (2 weeks ago)	(mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co ... show more (mod_security) mod_security (id:240335) triggered by 102.213.103.68 (cust-102-213-103-68.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 15:47:36.129600 2026] [security2:error] [pid 24879:tid 24879] [client 102.213.103.68:58494] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.213.103.68 (+1 hits since last alert)\|medusakenya.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "medusakenya.com"] [uri "/xmlrpc.php"] [unique_id "aiHWWM3QW603irEWZXhF4QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.181

🇧🇪 198.235.24.237

🇸🇬 152.32.218.149

🇮🇳 136.232.11.10

🇩🇪 88.198.110.181

🇺🇸 45.156.129.107

🇺🇸 216.73.161.239

🇺🇸 159.203.83.195

🇺🇸 151.240.53.27

🇨🇳 125.124.183.254

🇲🇾 121.122.119.170

🇸🇬 47.237.172.55

🇳🇱 45.148.10.240

🇫🇷 37.60.233.162

🇺🇸 23.234.105.192

🇺🇸 23.234.105.118

🇭🇰 144.48.8.10

🇫🇷 92.222.229.126

🇫🇷 81.64.228.62

🇳🇱 45.148.10.152