JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.152.78

102.129.152.78 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 1%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Miami, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.152.78

Whois 102.129.152.78

IP Abuse Reports for 102.129.152.78:

This IP address has been reported a total of 17 times from 9 distinct sources. 102.129.152.78 was first reported on July 13th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 VHosting	2026-05-18 08:04:52 (1 month ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇬🇧 consul.to	2026-04-20 15:25:21 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇬🇧 consul.to	2026-04-09 15:44:44 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2025-12-29 11:29:46 (5 months ago)	(smtpauth) Failed SMTP AUTH login from 102.129.152.78 (US/United States/Florida/Miami/-/[redacted])	Brute-Force
Anonymous	2025-12-02 15:26:20 (6 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.02 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.02 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-14 16:30:56 (8 months ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇺🇸 TPI-Abuse	2025-07-24 16:37:51 (10 months ago)	(mod_security) mod_security (id:210350) triggered by 102.129.152.78 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 102.129.152.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 24 12:37:47.227002 2025] [security2:error] [pid 26180:tid 26180] [client 102.129.152.78:53105] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|oualierealty.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "oualierealty.com"] [uri "/buynevis.com/403.shtml"] [unique_id "aIJhWzV4ncl8YrxULlDhrAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 Julio Covolato	2025-03-26 20:25:01 (1 year ago)	Imap or Submission login brute-force attacks.	Brute-Force
🇺🇸 ChamberofCommerce.com	2024-09-24 03:17:12 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2024-09-22 17:04:57 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2024-08-17 04:12:55 (1 year ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:227 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2024-03-27 16:50:09 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 TPI-Abuse	2024-03-24 17:13:56 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 102.129.152.78 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 102.129.152.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 24 13:13:49.143421 2024] [security2:error] [pid 3208] [client 102.129.152.78:55842] [client 102.129.152.78] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.229"] [uri "/.env"] [unique_id "ZgBfTR_qZWcYjeiXjEgbYwAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-03-24 16:52:33 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 102.129.152.78 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 102.129.152.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 24 12:52:28.342638 2024] [security2:error] [pid 32229] [client 102.129.152.78:58223] [client 102.129.152.78] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.181"] [uri "/.env"] [unique_id "ZgBaTA97EGd8N83jFDx5wwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-03-24 16:35:07 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 102.129.152.78 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 102.129.152.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 24 12:35:05.450557 2024] [security2:error] [pid 1636048] [client 102.129.152.78:50055] [client 102.129.152.78] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.231"] [uri "/.env"] [unique_id "ZgBWOSPpyba8f9PdpukK5QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.59.206.2

🇳🇱 160.119.76.19

🇻🇳 103.195.238.51

🇳🇱 88.210.63.69

🇲🇾 47.254.244.31

🇩🇪 167.94.145.27

🇩🇰 109.57.191.175

🇺🇸 107.167.34.125

🇺🇸 107.150.100.201

🇮🇩 103.165.139.145

🇫🇷 85.217.140.16

🇺🇸 20.163.2.35

🇺🇸 20.55.36.63

🇧🇷 201.24.254.37

🇵🇱 194.180.48.112

🇬🇧 193.163.125.252

🇺🇸 136.113.239.201

🇧🇷 129.121.32.44

🇳🇱 77.83.39.14

🇮🇳 61.2.240.100