JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.153.22

102.129.153.22 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 0%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Miami, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.153.22

Whois 102.129.153.22

IP Abuse Reports for 102.129.153.22:

This IP address has been reported a total of 31 times from 23 distinct sources. 102.129.153.22 was first reported on August 22nd 2022, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 int8	2026-04-04 12:46:50 (2 months ago)	2026-04-04T12:46:50.695808848Z Minecraft server scanner: status request	Port Scan
🇳🇱 FREAKISH	2026-04-04 12:46:01 (2 months ago)	2026-04-04 14:46:01: Minecraft server scan detected from 102.129.153.22 on port 25565 of 127.0.0.1	Port Scan
🇺🇸 LockBlock	2026-04-04 12:45:36 (2 months ago)	2026-04-04 12:45:36: Minecraft server scan detected from 102.129.153.22 on port 25565 of racknerd-e7 ... show more 2026-04-04 12:45:36: Minecraft server scan detected from 102.129.153.22 on port 25565 of racknerd-e7e1a9 show less	Port Scan
🇳🇱 ReporTR	2026-01-28 22:38:48 (4 months ago)	Repeated malicious activity detected by Fail2Ban jail 'plesk-postfix'. TCP connection completed. IP ... show more Repeated malicious activity detected by Fail2Ban jail 'plesk-postfix'. TCP connection completed. IP banned. show less	Email Spam Brute-Force
🇮🇹 VHosting	2026-01-07 23:13:12 (5 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇧🇷 SvrAdmin	2025-12-31 14:13:30 (5 months ago)	[101] (smtpauth) Failed SMTP AUTH login from 102.129.153.22 (US/United States/-): 5 in the last 3600 ... show more [101] (smtpauth) Failed SMTP AUTH login from 102.129.153.22 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2025-12-31 11:13:26 dovecot_login authenticator failed for (ADMIN) [102.129.153.22]:27142: 535 Incorrect authentication data ([email protected]) 2025-12-31 11:13:27 dovecot_login authenticator failed for (ADMIN) [102.129.153.22]:47833: 535 Incorrect authentication data ([email protected]) 2025-12-31 11:13:27 dovecot_login authenticator failed for (ADMIN) [102.129.153.22]:29036: 535 Incorrect authentication data ([email protected]) 2025-12-31 11:13:27 dovecot_login authenticator failed for (ADMIN) [102.129.153.22]:39762: 535 Incorrect authentication data ([email protected]) 2025-12-31 11:13:27 dovecot_login authenticator failed for (ADMIN) [102.129.153.22]:3911: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
🇧🇷 hostseries	2025-12-31 14:10:34 (5 months ago)	Trigger: LF_SMTPAUTH	Brute-Force
🇨🇿 lp	2025-12-30 20:52:41 (5 months ago)	Email account brute force: 8 attempts were recorded from 102.129.153.22 2025-12-30T20:40:18+01:00 wa ... show more Email account brute force: 8 attempts were recorded from 102.129.153.22 2025-12-30T20:40:18+01:00 warning: unknown[102.129.153.22]: SASL PLAIN authentication failed: authentication failure, [email protected] 2025-12-30T20:40:18+01:00 warning: unknown[102.129.153.22]: SASL PLAIN authentication failed: authentication failure, [email protected] 2025-12-30T20:40:18+01:00 warning: unknown[102.129.153.22]: SASL LOGIN authentication failed: authentication failure, [email protected] 2025-12-30T20:40:18+01:00 warning: unknown[102.129.153.22]: SASL LOGIN authentication failed: authentication failure, [email protected] 2025-12-30T20:40:21+01:00 warning: unknown[102.129.153.22]: SASL PLAIN authentication failed: authentication failure, [email protected] 2025-12-30T20:40:21+01:00 warning: unknown[102.129.153.22]: SASL PLAIN authentication failed: show less	Brute-Force
🇺🇸 TPI-Abuse	2025-11-09 13:26:04 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.153.22 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 102.129.153.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 09 08:25:59.630363 2025] [security2:error] [pid 16031:tid 16031] [client 102.129.153.22:15811] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rendermatrix.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rendermatrix.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aRCWZ4k5NnNdoWrn00WyYwAAAAw"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-09 11:46:47 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 102.129.153.22 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 102.129.153.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 09 06:46:41.587750 2025] [security2:error] [pid 25621:tid 25621] [client 102.129.153.22:57880] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ricketyshack.ca\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ricketyshack.ca"] [uri "/wp-json/wp/v2/users"] [unique_id "aRB_IVhEXNKpqxE95DXSCgAAAAk"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-11 04:30:29 (8 months ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇮🇹 VHosting	2025-10-10 17:55:35 (8 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇮🇹 VHosting	2025-10-10 17:55:17 (8 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇳🇱 Roderic	2025-08-09 16:00:09 (10 months ago)	(wordpress-404) Searching for non-existent wordpress installs from 102.129.153.22 (US/United States/ ... show more (wordpress-404) Searching for non-existent wordpress installs from 102.129.153.22 (US/United States/Florida/Miami/-/[redacted]) show less	Brute-Force
🇨🇴 j458rjqwi348fhjq46	2025-08-07 20:42:23 (10 months ago)	Malicious IP detected by WAF with anomaly score 10.0. Attack types: Suspicious URL detected (extende ... show more Malicious IP detected by WAF with anomaly score 10.0. Attack types: Suspicious URL detected (extended rules), Timestamp deviates by 1.3 hours, Exposure of environment file (.env) (+2 more). Activity: 678 requests to 45 URLs. Period: 2025-08-07 12:50:53 - 2025-08-07 12:50:45 (America/Bogota). Origin: US. Source: Automated WAF log analysis. show less	Hacking Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 85.217.149.50

🇨🇳 39.97.44.13

🇺🇦 31.148.28.219

🇩🇪 167.94.146.37

🇰🇷 61.81.141.186

🇮🇳 49.204.232.244

🇳🇱 31.14.32.7

🇯🇵 14.137.237.192

🇰🇷 211.217.203.165

🇩🇪 167.94.146.62

🇱🇹 81.30.98.158

🇹🇷 78.187.230.168

🇮🇷 46.143.79.46

🇷🇴 193.46.255.86

🇵🇰 182.184.204.252

🇧🇷 177.156.193.156

🇺🇸 172.217.46.244

🇲🇽 148.224.12.202

🇺🇸 91.230.168.208

🇩🇪 216.26.255.248