JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.129.153.42

102.129.153.42 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 1%: ?

ISP	FREEDOMTECH SOLUTIONS LIMITED
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	netutil.io
Country	🇺🇸 United States of America
City	Miami, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.129.153.42

Whois 102.129.153.42

IP Abuse Reports for 102.129.153.42:

This IP address has been reported a total of 35 times from 20 distinct sources. 102.129.153.42 was first reported on June 9th 2021, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-16 08:08:46 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-05-15 06:26:18 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇮🇹 VHosting	2026-03-27 03:06:53 (2 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇺🇸 Ghost Rider	2025-12-30 05:10:18 (5 months ago)	RdpGuard detected brute-force attempt on SMTP	Brute-Force
🇵🇱 sefinek.net	2025-12-29 12:26:08 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇮🇹 VHosting	2025-10-09 21:36:27 (8 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇩🇪 marzzzello	2025-07-30 01:29:31 (10 months ago)	Ports: 5x 13083	Port Scan
🇺🇸 TPI-Abuse	2025-05-20 21:58:01 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 102.129.153.42 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 102.129.153.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 20 17:57:54.985145 2025] [security2:error] [pid 407599:tid 407599] [client 102.129.153.42:3991] [client 102.129.153.42] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cnprcertificationreviews.org\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cnprcertificationreviews.org"] [uri "/facebook.com"] [unique_id "aCz64qGVKbnv5lhanM1zAAAAAA4"], referer: https://cnprcertificationreviews.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 SvrAdmin	2025-04-02 03:56:57 (1 year ago)	[101] (smtpauth) Failed SMTP AUTH login from 102.129.153.42 (US/United States/-): 5 in the last 3600 ... show more [101] (smtpauth) Failed SMTP AUTH login from 102.129.153.42 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2025-04-02 00:55:26 dovecot_login authenticator failed for (ADMIN) [102.129.153.42]:56170: 535 Incorrect authentication data ([email protected]) 2025-04-02 00:55:49 dovecot_login authenticator failed for (ADMIN) [102.129.153.42]:59310: 535 Incorrect authentication data ([email protected]) 2025-04-02 00:56:39 dovecot_login authenticator failed for (ADMIN) [102.129.153.42]:53386: 535 Incorrect authentication data ([email protected]) 2025-04-02 00:56:54 dovecot_login authenticator failed for (ADMIN) [102.129.153.42]:59920: 535 Incorrect authentication data ([email protected]) 2025-04-02 00:56:54 dovecot_login authenticator failed for (ADMIN) [102.129.153.42]:59918: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
🇸🇬 mypatricks	2024-12-22 04:57:17 (1 year ago)	102.129.153.42 \| Port: 46838 \| DNS: 102.129.153.42 2024-12-22T12:57:15+08:00 America/New_York \| IPs ... show more 102.129.153.42 \| Port: 46838 \| DNS: 102.129.153.42 2024-12-22T12:57:15+08:00 America/New_York \| IPs reserved list \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/127 Version/11.1.1 Safari/605.1.15 HTTP/1.1 443 GET \| URL: / \| Ref: - \| Country: US/United States/-08:00 IP City: Miami 8f5d87ad1ae47466-MIA/Miami, FL, United States 1 hits/0 secs Robots 0 show less	Web Spam Blog Spam Brute-Force Exploited Host Web App Attack
Anonymous	2024-12-10 00:50:08 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2024-11-27 23:53:15 (1 year ago)	Excessive crawling/scraping	Hacking Brute-Force
Anonymous	2024-11-26 23:25:40 (1 year ago)	Multiple unauthorized attempt to access to non-existent path	Web App Attack
🇺🇸 TPI-Abuse	2024-11-26 01:13:00 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 102.129.153.42 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 102.129.153.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 25 20:12:53.853332 2024] [security2:error] [pid 17489:tid 17489] [client 102.129.153.42:49332] [client 102.129.153.42] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aquascapes.net"] [uri "/.git/config"] [unique_id "Z0UglUaGmR4sO4Y6nNZzAgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 Rizzy	2024-11-26 00:15:56 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:fa18:f2fe:83ee:b4e0:f569:47a6:b576

🇺🇸 216.169.136.31

🇵🇭 154.18.197.35

🇷🇴 79.115.35.27

🇰🇷 218.149.235.152

🇨🇳 218.78.59.30

🇧🇷 205.210.31.234

🇺🇸 205.210.31.70

🇨🇱 186.64.123.124

🇳🇱 185.242.226.59

🇭🇳 170.83.116.126

🇸🇬 165.232.170.62

🇮🇳 152.59.199.178

🇳🇱 91.92.40.36

🇳🇱 45.148.10.152

🇺🇸 20.168.127.104

🇷🇺 5.164.6.184

🇷🇴 2.57.121.112

🇰🇷 211.180.105.241

🇧🇷 205.210.31.164