JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.153.148

102.129.153.148 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 0%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Miami, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.153.148

Whois 102.129.153.148

IP Abuse Reports for 102.129.153.148:

This IP address has been reported a total of 38 times from 19 distinct sources. 102.129.153.148 was first reported on June 7th 2021, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 octageeks.com	2025-12-28 05:06:04 (5 months ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇮🇹 VHosting	2025-12-27 02:29:50 (5 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇮🇹 VHosting	2025-10-26 19:17:40 (7 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
Anonymous	2025-08-04 15:36:15 (10 months ago)	Botnet - login attempts with leaked random user/pass lists	Hacking Brute-Force Web App Attack
🇦🇺 MAGIC	2025-05-16 15:17:24 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 kosada.com	2025-05-15 14:22:18 (1 year ago)	Web comment spam: situs togel 4d, [email protected]	Web Spam
🇲🇾 syokadmin	2025-04-05 06:53:04 (1 year ago)	(cpanel) Failed cPanel login from 102.129.153.148 (US/United States/-): 1 in the last 3600 secs	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-01-15 05:18:21 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 102.129.153.148 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.153.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 15 00:18:17.595178 2025] [security2:error] [pid 1179700:tid 1179700] [client 102.129.153.148:51147] [client 102.129.153.148] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thompsonboatworks.com"] [uri "/.env"] [unique_id "Z4dFGW38PJ50nwZ2-DlwawAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 el-brujo	2025-01-15 03:00:23 (1 year ago)	Cloudflare WAF: Request Path: /.env Request Query: Host: www.elhacker.net userAgent: Mozilla/5.0 (X ... show more Cloudflare WAF: Request Path: /.env Request Query: Host: www.elhacker.net userAgent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 Action: block Source: firewallManaged ASN Description: COGENT-174 Country: US Method: GET Timestamp: 2025-01-15T03:00:23Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-01-14 18:34:03 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 102.129.153.148 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.153.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 14 13:33:57.436127 2025] [security2:error] [pid 389561:tid 389561] [client 102.129.153.148:55834] [client 102.129.153.148] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bigheartskitchen.net"] [uri "/.env"] [unique_id "Z4auFbfs4tJtSDGp8rRZLQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-14 17:30:17 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 102.129.153.148 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 102.129.153.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 14 12:30:11.378097 2025] [security2:error] [pid 8733:tid 8733] [client 102.129.153.148:50516] [client 102.129.153.148] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.midway-island.com"] [uri "/.env"] [unique_id "Z4afI6cP7aUXZ9b-NtIH2QAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 polycoda	2025-01-14 17:05:37 (1 year ago)	📄 Probes for tons of inexistent files and PHP scripts	Hacking Web App Attack
🇩🇪 conseilgouz	2025-01-14 16:55:48 (1 year ago)	coe-12 : Block return, carriage return, ... characters=>//media/mod_cg_popup/css/style.css?d2908c%27 ... show more coe-12 : Block return, carriage return, ... characters=>//media/mod_cg_popup/css/style.css?d2908c%27(') show less	Hacking
🇬🇧 Steve	2025-01-14 13:24:08 (1 year ago)	SQL Injection Attempts	SQL Injection Brute-Force
Anonymous	2025-01-14 13:15:01 (1 year ago)	Configuration snooping (/.env): 102.129.153.148 - - [14/Jan/2025:13:07:45 +0000] "GET /.env HTTP/1. ... show more Configuration snooping (/.env): 102.129.153.148 - - [14/Jan/2025:13:07:45 +0000] "GET /.env HTTP/1.1" 404 241 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" show less	Hacking Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.229.218.50

🇫🇮 209.85.167.69

🇫🇷 5.189.154.44

🇭🇰 199.45.155.82

🇪🇹 196.188.227.152

🇭🇰 185.227.153.56

🇩🇪 167.172.184.242

🇻🇳 116.99.49.208

🇨🇦 104.253.66.186

🇫🇮 94.183.234.205

🇮🇷 86.57.40.122

🇺🇸 74.142.22.250

🇯🇵 52.69.199.226

🇧🇷 45.205.1.243

🇺🇸 2a04:c300:400::1ed

🇰🇷 210.104.221.252

🇭🇰 199.45.155.80

🇧🇷 187.50.194.182

🇧🇷 187.40.215.162

🇳🇱 178.16.55.210