JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.218.148.132

102.218.148.132 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 64%: ?

64%

ISP	ZAP-Angola
Usage Type	Fixed Line ISP
ASN	AS37645
Hostname(s)	cust-102-218-148-132.zapfibra.co.ao
Domain Name	zap.co.ao
Country	🇦🇴 Angola
City	Vila Flor, Luanda

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.218.148.132

Whois 102.218.148.132

IP Abuse Reports for 102.218.148.132:

This IP address has been reported a total of 36 times from 15 distinct sources. 102.218.148.132 was first reported on July 19th 2025, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-24 17:26:59 (18 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra. ... show more (mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 13:26:54.670706 2026] [security2:error] [pid 2660:tid 2660] [client 102.218.148.132:57364] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.218.148.132 (+1 hits since last alert)\|breezentry.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "breezentry.com"] [uri "/xmlrpc.php"] [unique_id "ajwTXiq6S9xewMHHE2fslAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 16:29:11 (19 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra. ... show more (mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 12:29:05.741991 2026] [security2:error] [pid 25398:tid 25398] [client 102.218.148.132:61919] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.218.148.132 (+1 hits since last alert)\|edmestonfd.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "edmestonfd.com"] [uri "/xmlrpc.php"] [unique_id "ajwF0bImT8Gpiv8CbM0uJQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 13:10:44 (22 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra. ... show more (mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 09:10:36.591458 2026] [security2:error] [pid 29532:tid 29532] [client 102.218.148.132:50943] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.218.148.132 (+1 hits since last alert)\|j3pr.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "j3pr.com"] [uri "/xmlrpc.php"] [unique_id "ajvXTDYsvwvcEeaXSBjNGgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-06-24 13:06:50 (22 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
Anonymous	2026-06-23 16:59:10 (1 day ago)	Attac	Brute-Force
🇺🇸 lostswordfish.com	2026-06-22 15:42:05 (2 days ago)	Wordfence waf block on fairregistry	Web App Attack
🇺🇸 TPI-Abuse	2026-06-22 14:29:59 (2 days ago)	(mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra. ... show more (mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 10:29:52.766639 2026] [security2:error] [pid 8228:tid 8228] [client 102.218.148.132:59540] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.218.148.132 (+1 hits since last alert)\|roguetechtalks.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "roguetechtalks.com"] [uri "/xmlrpc.php"] [unique_id "ajlG4OuUvR6LapfmEa3eeQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 13:55:46 (5 days ago)	(mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra. ... show more (mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 09:55:41.624344 2026] [security2:error] [pid 29859:tid 29859] [client 102.218.148.132:63497] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.218.148.132 (+1 hits since last alert)\|innolympics.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "innolympics.com"] [uri "/xmlrpc.php"] [unique_id "ajVKXTRJF_eE08wrMqU6MgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 debestelapp	2026-06-19 12:00:08 (5 days ago)		Web App Attack
🇺🇸 WeekendWeb	2026-06-18 11:08:29 (1 week ago)	Wordpress Vunerability attack	Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-18 10:37:30 (1 week ago)	Blocked by CSF 13 firewall - Rule: XMLRPC cust-102-218-148-132.zapfibra.co.ao	Web App Attack
🇦🇺 screwlooseit.com.au	2026-06-15 12:28:33 (1 week ago)	Blocked by CSF 13 firewall - Rule: XMLRPC cust-102-218-148-132.zapfibra.co.ao	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 15:36:32 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra. ... show more (mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 11:36:29.468357 2026] [security2:error] [pid 1766:tid 1769] [client 102.218.148.132:56179] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.218.148.132 (+1 hits since last alert)\|luxury.management\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "luxury.management"] [uri "/xmlrpc.php"] [unique_id "ai14_eV514EO4NLS50iuzgAAAME"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 15:04:35 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra. ... show more (mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 11:04:27.446578 2026] [security2:error] [pid 3247:tid 3247] [client 102.218.148.132:62485] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.218.148.132 (+1 hits since last alert)\|directcch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "directcch.com"] [uri "/xmlrpc.php"] [unique_id "ai1xe636SHfYNmd64yaJ-QAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 12:21:54 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra. ... show more (mod_security) mod_security (id:240335) triggered by 102.218.148.132 (cust-102-218-148-132.zapfibra.co.ao): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 08:21:47.862557 2026] [security2:error] [pid 23730:tid 23730] [client 102.218.148.132:55937] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.218.148.132 (+1 hits since last alert)\|hotpay.co\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "hotpay.co"] [uri "/xmlrpc.php"] [unique_id "ai1LWyWPA4T4NRll0_niqgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.130.56.214

🇺🇸 172.184.210.35

🇫🇮 147.185.133.97

🇮🇳 103.25.47.94

🇮🇷 85.198.20.161

🇳🇱 45.156.87.93

🇰🇪 41.90.100.147

🇹🇭 223.204.248.123

🇳🇱 192.109.200.78

🇨🇦 142.93.146.198

🇨🇳 111.61.171.123

🇸🇬 94.231.206.104

🇳🇱 92.63.197.5

🇳🇱 81.19.216.94

🇹🇷 78.177.138.141

🇺🇸 69.55.54.156

🇧🇿 45.227.254.156

🇳🇱 45.148.10.141

🇻🇳 27.79.47.240

🇨🇳 221.131.139.70