JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.0.28.20

102.0.28.20 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 39%: ?

39%

ISP	Allocated to Airtel Kenya Mobile Broadband and Fixed internet
Usage Type	Fixed Line ISP
ASN	AS36926
Hostname(s)	20-28-0-102.r.airtelkenya.com
Domain Name	airtel.in
Country	🇰🇪 Kenya
City	Nairobi, Nairobi County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.0.28.20

Whois 102.0.28.20

IP Abuse Reports for 102.0.28.20:

This IP address has been reported a total of 13 times from 12 distinct sources. 102.0.28.20 was first reported on February 9th 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-06-19 05:10:22 (4 hours ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2026-06-15 20:00:32 (3 days ago)	Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) ... show more Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) employed by Angara Technologies Group (Explicitly identified himself as enemy a week before attack began) \| Attack Signature Blocked: /wishlist/index/add/product/11105/form_key/XGGF7vGD5pnHHKIu/ \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36 \| (Magento Site) show less	Hacking Bad Web Bot Web App Attack
🇩🇪 Vegascosmetics	2026-06-09 21:28:19 (1 week ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated redirect. Vegas Security	DDoS Attack Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 10:09:47 (2 weeks ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇩🇪 SMARTNET	2026-05-27 06:03:53 (3 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: f33ea243-b344-42fe-b994-8adedb9f85ca	DDoS Attack
🇮🇹 A000Z	2026-05-15 20:06:39 (1 month ago)	Fail2Ban: 102.0.28.20 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ... show more Fail2Ban: 102.0.28.20 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36 show less	Bad Web Bot
🇺🇸 xmission.com	2026-05-14 21:05:16 (1 month ago)	Blocked by UFW (TCP on 23) Source port: 15256 TTL: 40 Packet length: 44 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 15256 TTL: 40 Packet length: 44 TOS: 0x08 This report (for 102.0.28.20) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
Anonymous	2026-05-07 04:06:22 (1 month ago)	XMLRPC BRUTEFORCE - HTTP (Request)	Hacking
🇺🇸 trentwiles.com	2026-04-08 00:28:00 (2 months ago)	102.0.28.20 - - [07/Apr/2026:23:36:53 +0000] "GET /shop/bracelets HTTP/2.0" 301 0 "-" "Mozilla/5.0 ( ... show more 102.0.28.20 - - [07/Apr/2026:23:36:53 +0000] "GET /shop/bracelets HTTP/2.0" 301 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 12_7_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.6834.83 Safari/537.36" show less	Hacking
🇫🇷 vtchost.com	2026-03-12 06:36:09 (3 months ago)	invalid/bad user agent - possible botnet ...	Bad Web Bot
🇩🇪 filstal.org	2026-03-04 08:42:01 (3 months ago)	Dovecot Brute-Force: Targeted User-Enumeration (Honey-Accounts)	Email Spam Brute-Force
🇩🇪 filstal.org	2026-02-28 05:27:58 (3 months ago)	Dovecot Brute-Force: Targeted User-Enumeration (Honey-Accounts)	Email Spam Brute-Force
🇺🇸 kosada.com	2026-02-09 17:14:48 (4 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 198.62.4.253

🇺🇸 162.216.149.67

🇮🇳 143.110.186.36

🇨🇳 115.57.80.155

🇺🇸 170.246.53.177

🇺🇸 170.246.53.146

🇺🇸 170.246.53.102

🇺🇸 170.231.251.70

🇨🇳 119.249.100.46

🇭🇰 103.229.126.95

🇮🇩 103.186.31.66

🇫🇷 77.136.120.20

🇺🇸 35.254.209.97

🇳🇱 176.65.148.58

🇵🇱 172.253.206.50

🇺🇸 170.231.251.236

🇺🇸 170.231.251.121

🇺🇸 170.231.251.108

🇺🇸 143.137.167.79

🇨🇳 115.195.103.180