JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.219.155.5

102.219.155.5 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 100%: ?

100%

ISP	FOB
Usage Type	Fixed Line ISP
ASN	AS36920
Domain Name	kkontech.com
Country	🇳🇬 Nigeria
City	Lagos, Lagos

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.219.155.5

Whois 102.219.155.5

IP Abuse Reports for 102.219.155.5:

This IP address has been reported a total of 48 times from 20 distinct sources. 102.219.155.5 was first reported on June 6th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 [email protected]	2026-06-13 00:30:38 (3 hours ago)	...	Brute-Force SSH
🇳🇱 Site.eu	2026-06-12 22:55:41 (5 hours ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇩🇪 stinpriza	2026-06-12 22:25:30 (5 hours ago)	Web App Attack	Web App Attack
🇫🇷 dynamix	2026-06-12 20:40:16 (7 hours ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 19:47:51 (8 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 15:47:46.076374 2026] [security2:error] [pid 1784:tid 1784] [client 102.219.155.5:44753] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.219.155.5 (+1 hits since last alert)\|clayrivers.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "clayrivers.com"] [uri "/xmlrpc.php"] [unique_id "aixiYoTz8vkguLwjOuxgRgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 17:45:47 (10 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 13:45:40.946868 2026] [security2:error] [pid 1459:tid 1459] [client 102.219.155.5:23477] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.219.155.5 (+1 hits since last alert)\|wwfstudio.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "wwfstudio.com"] [uri "/xmlrpc.php"] [unique_id "aixFxNCCyZHbBgDoef-TPAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2026-06-12 16:25:19 (11 hours ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇩🇪 dbmwebdesign	2026-06-12 15:45:15 (12 hours ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇺🇸 TPI-Abuse	2026-06-12 15:02:34 (12 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 11:02:30.718569 2026] [security2:error] [pid 32174:tid 32174] [client 102.219.155.5:21537] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.219.155.5 (+1 hits since last alert)\|gaeltv.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "gaeltv.com"] [uri "/xmlrpc.php"] [unique_id "aiwfhrQ73LhIsibOprnhsQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 14:34:34 (13 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 10:34:29.896037 2026] [security2:error] [pid 5591:tid 5591] [client 102.219.155.5:6922] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.219.155.5 (+1 hits since last alert)\|toepferlab.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "toepferlab.org"] [uri "/xmlrpc.php"] [unique_id "aiwY9YxWBgoeRra15v2jegAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 13:51:25 (14 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 09:51:20.032260 2026] [security2:error] [pid 25325:tid 25325] [client 102.219.155.5:2650] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.219.155.5 (+1 hits since last alert)\|greenmountainfeeds.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "greenmountainfeeds.com"] [uri "/xmlrpc.php"] [unique_id "aiwO2MO8dxVwKUzX1x9HYQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 applemooz	2026-06-12 13:42:46 (14 hours ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 11:06:52 (16 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 07:06:48.621230 2026] [security2:error] [pid 17382:tid 17382] [client 102.219.155.5:19655] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.219.155.5 (+1 hits since last alert)\|drayvian.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "drayvian.com"] [uri "/xmlrpc.php"] [unique_id "aivoSDpNBPB8V1MvdQ2dCwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 abdubhai	2026-06-12 10:28:28 (17 hours ago)	102.219.155.5 - - [12/Jun/2026:1 ...	Brute-Force
🇺🇸 TPI-Abuse	2026-06-12 09:58:36 (17 hours ago)	(mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:240335) triggered by 102.219.155.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 05:58:29.981046 2026] [security2:error] [pid 18163:tid 18163] [client 102.219.155.5:60385] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.219.155.5 (+1 hits since last alert)\|stationrestaurant.ca\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "stationrestaurant.ca"] [uri "/xmlrpc.php"] [unique_id "aivYRZ7_qwoSSV-44a_qxgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 186.96.145.241

🇺🇸 2001:470:1:fb5::180

🇺🇦 178.165.125.212

🇮🇩 163.227.52.50

🇸🇬 124.156.202.242

🇸🇬 124.156.194.248

🇯🇵 124.155.125.131

🇻🇳 116.110.148.213

🇻🇳 116.110.12.3

🇨🇳 115.190.241.179

🇨🇳 115.190.230.82

🇺🇸 104.168.30.30

🇭🇰 103.96.74.162

🇳🇱 89.124.80.109

🇺🇸 50.116.26.161

🇬🇧 35.203.211.238

🇯🇵 34.104.236.163

🇬🇧 217.154.61.249

🇧🇷 177.92.162.244

🇺🇸 157.245.1.7