JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.153.137

102.129.153.137 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 0%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Miami, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.153.137

Whois 102.129.153.137

IP Abuse Reports for 102.129.153.137:

This IP address has been reported a total of 24 times from 14 distinct sources. 102.129.153.137 was first reported on August 15th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 VHosting	2026-01-21 19:04:24 (5 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇫🇷 Dampen59	2026-01-21 19:03:11 (5 months ago)	(smtpauth) Failed SMTP AUTH login from 102.129.153.137 (US/United States/-): 5 in the last 3600 secs ... show more (smtpauth) Failed SMTP AUTH login from 102.129.153.137 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-01-21 19:02:11 dovecot_login authenticator failed for H=(ADMIN) [102.129.153.137]:59949: 535 Incorrect authentication data ([email protected]) 2026-01-21 19:02:42 dovecot_login authenticator failed for H=(ADMIN) [102.129.153.137]:39877: 535 Incorrect authentication data ([email protected]) 2026-01-21 19:02:59 dovecot_login authenticator failed for H=(ADMIN) [102.129.153.137]:36295: 535 Incorrect authentication data ([email protected]) 2026-01-21 19:03:05 dovecot_login authenticator failed for H=(ADMIN) [102.129.153.137]:39276: 535 Incorrect authentication data ([email protected]) 2026-01-21 19:03:09 dovecot_login authenticator failed for H=(ADMIN) [102.129.153.137]:28000: 535 Incorrect authentication data ([email protected]) show less	Port Scan
🇨🇿 lp	2025-12-30 19:21:09 (5 months ago)	Email account brute force: 6 attempts were recorded from 102.129.153.137 2025-12-30T19:47:29+01:00 w ... show more Email account brute force: 6 attempts were recorded from 102.129.153.137 2025-12-30T19:47:29+01:00 warning: unknown[102.129.153.137]: SASL PLAIN authentication failed: authentication failure, [email protected] 2025-12-30T19:47:30+01:00 warning: unknown[102.129.153.137]: SASL LOGIN authentication failed: authentication failure, [email protected] 2025-12-30T19:47:32+01:00 warning: unknown[102.129.153.137]: SASL PLAIN authentication failed: authentication failure, [email protected] 2025-12-30T19:47:33+01:00 warning: unknown[102.129.153.137]: SASL LOGIN authentication failed: authentication failure, [email protected] 2025-12-30T19:47:36+01:00 warning: unknown[102.129.153.137]: SASL PLAIN authentication failed: authentication failure, [email protected] 2025-12-30T19:47:37+01:00 warning: unknown[102.129.153.137]: SASL LOGIN authentication show less	Brute-Force
🇺🇸 bigscoots.com	2025-12-30 18:50:27 (5 months ago)	(smtpauth) Failed SMTP AUTH login from 102.129.153.137 (US/United States/-): 5 in the last 3600 secs ... show more (smtpauth) Failed SMTP AUTH login from 102.129.153.137 (US/United States/-): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2025-12-30 13:49:28 dovecot_plain authenticator failed for ([10.8.18.100]) [102.129.153.137]:32194: 535 Incorrect authentication data ([email protected]) 2025-12-30 13:49:34 dovecot_login authenticator failed for ([10.8.18.100]) [102.129.153.137]:32194: 535 Incorrect authentication data ([email protected]) 2025-12-30 13:49:41 dovecot_plain authenticator failed for ([10.8.18.100]) [102.129.153.137]:48926: 535 Incorrect authentication data ([email protected]) 2025-12-30 13:49:43 dovecot_login authenticator failed for ([10.8.18.100]) [102.129.153.137]:48926: 535 Incorrect authentication data ([email protected]) 2025-12-30 13:50:27 dovecot_plain authenticator failed for ([10.8.18.100]) [102.129.153.137]:52119: 535 Incorrect authentication data ([email protected]) show less	Brute-Force SSH
Anonymous	2025-12-30 18:50:01 (5 months ago)	...	Brute-Force
Anonymous	2025-12-13 08:06:06 (6 months ago)	botnet	DDoS Attack
Anonymous	2025-10-13 16:30:48 (8 months ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇮🇹 VHosting	2025-10-13 13:58:54 (8 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇮🇹 VHosting	2025-07-06 16:15:51 (11 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-07-06 16:02:18 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.153.137 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.153.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 06 12:02:13.935617 2025] [security2:error] [pid 13521:tid 13546] [client 102.129.153.137:55150] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.79"] [uri "/.env"] [unique_id "aGqeBY9Uz7Bs3IRXU-h7aQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-06 15:44:38 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 102.129.153.137 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.153.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 06 11:44:34.318913 2025] [security2:error] [pid 32149:tid 32165] [client 102.129.153.137:54279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.23"] [uri "/.env"] [unique_id "aGqZ4uWcOJw37jeE7WPwYAAAAI4"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 BlueWire Hosting	2025-07-04 04:10:21 (11 months ago)	Probing for application vulnerabilities	Brute-Force Web App Attack
🇦🇺 oncord	2025-05-23 05:43:52 (1 year ago)	Form spam	Web Spam
🇦🇺 oncord	2025-05-07 11:04:09 (1 year ago)	Form spam	Web Spam
🇺🇸 oncord	2025-05-04 09:24:19 (1 year ago)	Form spam	Web Spam

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.162

🇩🇪 193.124.20.252

🇺🇸 172.253.214.114

🇩🇪 161.35.208.78

🇺🇸 147.182.232.253

🇸🇪 130.49.79.231

🇰🇷 118.41.137.223

🇧🇬 91.191.209.46

🇳🇱 91.92.40.47

🇨🇦 85.217.149.63

🇸🇬 47.84.142.164

🇮🇪 3.253.152.77

🇰🇷 222.108.100.117

🇨🇳 221.199.172.66

🇨🇳 220.167.233.144

🇬🇧 195.96.139.126

🇳🇱 185.47.133.129

🇸🇦 176.44.123.66

🇺🇸 147.185.132.84

🇸🇪 89.255.239.96