JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.213.229.240

102.213.229.240 was found in our database!

This IP was reported 123 times. Confidence of Abuse is 100%: ?

100%

ISP	Giga for Telecommunication and Technology Limited
Usage Type	Fixed Line ISP
ASN	AS328539
Domain Name	giga.ly
Country	🇱🇾 Libya
City	Misratah, Misratah

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.213.229.240

Whois 102.213.229.240

IP Abuse Reports for 102.213.229.240:

This IP address has been reported a total of 123 times from 78 distinct sources. 102.213.229.240 was first reported on June 12th 2026, and the most recent report was 36 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 excill	2026-06-14 03:05:40 (36 minutes ago)	Honeypot mesh observed 1840 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
🇫🇷 tecnicorioja	2026-06-13 22:01:40 (5 hours ago)	wp-login attack [13/Jun/2026:15:49:44	Brute-Force Web App Attack
🇩🇪 nyt	2026-06-13 21:34:54 (6 hours ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
🇺🇸 dtorrer	2026-06-13 21:14:10 (6 hours ago)	Brute-force general attack.	Brute-Force
🇩🇪 Hazzard	2026-06-13 20:36:09 (7 hours ago)	(wordpress) Failed wordpress login from 102.213.229.240 (LY/Libya/Tripoli/Tripoli/-/[redacted]): (C ... show more (wordpress) Failed wordpress login from 102.213.229.240 (LY/Libya/Tripoli/Tripoli/-/[redacted]): (CF_ENABLE) show less	Brute-Force
🇫🇷 Yepngo	2026-06-13 20:32:57 (7 hours ago)	102.213.229.240 - - [13/Jun/2026:22:32:56 +0200] "POST /xmlrpc.php HTTP/2.0" 200 408 "-" "Mozilla/5. ... show more 102.213.229.240 - - [13/Jun/2026:22:32:56 +0200] "POST /xmlrpc.php HTTP/2.0" 200 408 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" ... show less	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-13 19:15:08 (8 hours ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇩🇪 Ba-Yu	2026-06-13 18:26:27 (9 hours ago)	WordPress bruteforce	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇫🇷 Yepngo	2026-06-13 18:23:48 (9 hours ago)	102.213.229.240 - - [13/Jun/2026:20:23:48 +0200] "POST /xmlrpc.php HTTP/2.0" 200 408 "-" "Mozilla/5. ... show more 102.213.229.240 - - [13/Jun/2026:20:23:48 +0200] "POST /xmlrpc.php HTTP/2.0" 200 408 "-" "Mozilla/5.0 (X11; CrOS x86_64 14541.0.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇺🇸 TAY	2026-06-13 18:20:21 (9 hours ago)	102.213.229.240 - - [14/Jun/2026:02:18:39 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4833 "-" "Mozilla/5 ... show more 102.213.229.240 - - [14/Jun/2026:02:18:39 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4833 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 102.213.229.240 - - [14/Jun/2026:02:20:10 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4833 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 102.213.229.240 - - [14/Jun/2026:02:20:21 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4833 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" ... show less	Brute-Force
🇩🇪 FeG Deutschland	2026-06-13 18:10:33 (9 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27	Exploited Host Web App Attack
🇩🇪 AlexEventfahrtenIPDB	2026-06-13 18:00:52 (9 hours ago)	[Sat Jun 13 20:00:50.202304 2026] [authz_core:error] [pid 4038510:tid 4038510] [client 102.213.229.2 ... show more [Sat Jun 13 20:00:50.202304 2026] [authz_core:error] [pid 4038510:tid 4038510] [client 102.213.229.240:37290] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php [Sat Jun 13 20:00:51.366864 2026] [authz_core:error] [pid 4058700:tid 4058700] [client 102.213.229.240:37294] AH01630: client denied by server configuration: /var/www/std-sites/cadillac/wp-login.php, referer: https://alex-eventfahrten.spdns.de/wp-login.php ... show less	Brute-Force Web App Attack
🇩🇪 london2038.com	2026-06-13 17:50:29 (9 hours ago)	Probing for exploits 102.213.229.240 - - [13/Jun/2026:19:50:12 +0200] "GET /wp-login.php HTTP/2.0" 3 ... show more Probing for exploits 102.213.229.240 - - [13/Jun/2026:19:50:12 +0200] "GET /wp-login.php HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" 102.213.229.240 - korosukuma [13/Jun/2026:19:50:25 +0200] "GET /wp-json/wp/v2/users/me HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0" show less	Hacking Web App Attack
🇩🇪 LRob.fr	2026-06-13 17:15:03 (10 hours ago)	Repeated 503 errors, blocked by Fail2Ban in custom-503 jail	Bad Web Bot Web App Attack
🇺🇸 TAY	2026-06-13 16:50:59 (10 hours ago)	102.213.229.240 - - [14/Jun/2026:00:43:24 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4833 "-" "Mozilla/5 ... show more 102.213.229.240 - - [14/Jun/2026:00:43:24 +0800] "POST /xmlrpc.php HTTP/1.1" 200 4833 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 102.213.229.240 - - [14/Jun/2026:00:50:58 +0800] "POST /wp-login.php HTTP/1.1" 200 2977 "https://www.autism-cvc.org/wp-login.php" "Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 102.213.229.240 - - [14/Jun/2026:00:50:59 +0800] "POST /wp-login.php HTTP/1.1" 200 2678 "https://littleprairie.com.my/wp-login.php" "Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" ... show less	Brute-Force

Showing 1 to 15 of 123 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.91

🇮🇳 172.232.108.36

🇺🇸 65.183.250.127

🇲🇾 47.250.122.117

🇺🇸 198.46.168.51

🇨🇳 182.244.5.153

🇺🇸 172.110.223.179

🇺🇸 64.62.156.115

🇧🇷 45.194.67.2

🇫🇮 35.228.53.143

🇺🇸 20.169.105.57

🇨🇴 179.33.186.150

🇳🇱 178.16.53.108

🇨🇳 171.221.207.57

🇺🇸 159.89.139.75

🇮🇳 152.57.114.212

🇭🇰 139.198.113.29

🇰🇷 110.14.190.221

🇺🇸 107.173.1.237

🇭🇰 103.230.240.59