JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.152.52

102.129.152.52 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 13%: ?

13%

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Miami, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.152.52

Whois 102.129.152.52

IP Abuse Reports for 102.129.152.52:

This IP address has been reported a total of 30 times from 22 distinct sources. 102.129.152.52 was first reported on June 8th 2021, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇰 GOVCERT	2026-05-20 20:55:38 (4 weeks ago)	Excessive Firewall Denies	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2026-05-09 19:15:57 (1 month ago)	(mod_security) mod_security (id:240335) triggered by 102.129.152.52 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 102.129.152.52 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 09 15:15:50.514629 2026] [security2:error] [pid 10654:tid 10654] [client 102.129.152.52:39749] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 102.129.152.52 (+1 hits since last alert)\|market1st.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "market1st.com"] [uri "/xmlrpc.php"] [unique_id "af-H5v9L4cAvLt-h4IjbxgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-04-25 09:12:00 (1 month ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇧🇷 SvrAdmin	2025-12-31 11:12:03 (5 months ago)	[101] (smtpauth) Failed SMTP AUTH login from 102.129.152.52 (US/United States/-): 5 in the last 3600 ... show more [101] (smtpauth) Failed SMTP AUTH login from 102.129.152.52 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2025-12-31 08:12:00 dovecot_login authenticator failed for (ADMIN) [102.129.152.52]:41238: 535 Incorrect authentication data ([email protected]) 2025-12-31 08:12:00 dovecot_login authenticator failed for (ADMIN) [102.129.152.52]:54452: 535 Incorrect authentication data ([email protected]) 2025-12-31 08:12:00 dovecot_login authenticator failed for (ADMIN) [102.129.152.52]:49107: 535 Incorrect authentication data ([email protected]) 2025-12-31 08:12:00 dovecot_login authenticator failed for (ADMIN) [102.129.152.52]:39640: 535 Incorrect authentication data ([email protected]) 2025-12-31 08:12:00 dovecot_login authenticator failed for (ADMIN) [102.129.152.52]:12241: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
Anonymous	2025-08-04 15:36:19 (10 months ago)	Botnet - login attempts with leaked random user/pass lists	Hacking Brute-Force Web App Attack
🇳🇱 i-turnradio.nl	2025-06-10 11:12:56 (1 year ago)	2025-06-10 @ 13:12:55 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇺🇸 oncord	2025-06-06 07:32:19 (1 year ago)	Form spam	Web Spam
🇨🇦 wil.com	2025-04-19 14:08:14 (1 year ago)	GlobalProtect login attempts with user svcsymantec.	VPN IP Brute-Force
Anonymous	2025-03-29 16:30:02 (1 year ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇧🇷 SvrAdmin	2025-03-29 05:13:15 (1 year ago)	[101] (smtpauth) Failed SMTP AUTH login from 102.129.152.52 (US/United States/-): 5 in the last 3600 ... show more [101] (smtpauth) Failed SMTP AUTH login from 102.129.152.52 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2025-03-29 02:11:19 dovecot_login authenticator failed for (ADMIN) [102.129.152.52]:37856: 535 Incorrect authentication data ([email protected]) 2025-03-29 02:11:34 dovecot_login authenticator failed for (ADMIN) [102.129.152.52]:56940: 535 Incorrect authentication data ([email protected]) 2025-03-29 02:11:46 dovecot_login authenticator failed for (ADMIN) [102.129.152.52]:56956: 535 Incorrect authentication data ([email protected]) 2025-03-29 02:12:23 dovecot_login authenticator failed for (ADMIN) [102.129.152.52]:53120: 535 Incorrect authentication data ([email protected]) 2025-03-29 02:13:10 dovecot_login authenticator failed for (ADMIN) [102.129.152.52]:47266: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
🇿🇦 maximonline.co.za	2025-03-04 22:42:57 (1 year ago)	Brute Force IMAP AUTH Attack	Brute-Force
Anonymous	2025-02-08 22:19:38 (1 year ago)	wordpress-trap	Web App Attack
🇵🇱 sefinek.net	2024-10-03 06:08:58 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: CHALLENGE ASN: 174 (COGENT-174) Pro ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: CHALLENGE ASN: 174 (COGENT-174) Protocol: HTTP/1.1 (method GET) Domain: sefinek.net Endpoint: /genshin-stella-mod Timestamp: 2024-10-02T21:05:26Z Ray ID: 8cc7a68b3ed42233 Rule ID: cc5e7a6277d447eca9c1818934ba65c8 UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 Report generated by Node-Cloudflare-WAF-AbuseIPDB https://github.com/sefinek24/Node-Cloudflare-WAF-AbuseIPDB show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2024-09-22 17:40:58 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2024-09-21 11:35:14 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 87.156.176.191

🇺🇸 35.88.227.0

🇺🇸 20.9.34.144

🇺🇬 196.0.120.6

🇰🇷 115.140.161.61

🇹🇼 111.70.23.236

🇬🇧 87.236.176.174

🇬🇧 5.181.57.54

🇬🇧 217.146.80.117

🇨🇳 111.17.213.162

🇿🇦 105.247.12.214

🇧🇬 78.128.114.58

🇸🇬 45.197.12.65

🇮🇩 36.66.232.122

🇧🇪 198.235.24.246

🇨🇱 190.211.249.73

🇧🇷 172.217.35.19

🇨🇦 165.245.230.238

🇨🇳 114.117.243.100

🇩🇪 89.169.12.106