JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.210.28.48

102.210.28.48 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 16%: ?

16%

ISP	Vilcom_Networks_Limited_Home
Usage Type	Fixed Line ISP
ASN	AS329014
Domain Name	vilcom.co.ke
Country	🇰🇪 Kenya
City	Eldoret, Uasin Gishu County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.210.28.48

Whois 102.210.28.48

IP Abuse Reports for 102.210.28.48:

This IP address has been reported a total of 31 times from 24 distinct sources. 102.210.28.48 was first reported on November 5th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 SMARTNET	2026-05-27 06:03:53 (1 week ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 5b730afc-5cec-4742-843f-18085cc64e5c	DDoS Attack
Anonymous	2026-05-18 18:02:43 (2 weeks ago)	Attac	Brute-Force
🇸🇬 mypatricks	2026-04-23 10:12:31 (1 month ago)	102.210.28.48 \| Port: 11004 \| DNS: 102.210.28.48 2026-04-23T18:12:30+08:00 Africa/Nairobi \| Credenti ... show more 102.210.28.48 \| Port: 11004 \| DNS: 102.210.28.48 2026-04-23T18:12:30+08:00 Africa/Nairobi \| Credential Forgery \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36 HTTP/1.1 443 GET \| URL: /chinese-style-longevity-parent-cake/?9f2308c5d3d684f42306d39=ms-my&code=ms-my \| Ref: - \| Country: KE/Kenya/+03:00 IP City: Eldoret 9f0c17160d2fae0f-MBA/Mombasa, Kenya 1 hits/0 secs Robots 3 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇸🇬 mypatricks	2026-03-29 11:37:20 (2 months ago)	102.210.28.48 \| Port: 14252 \| DNS: 102.210.28.48 2026-03-29T19:37:19+08:00 Africa/Nairobi \| Fake HTT ... show more 102.210.28.48 \| Port: 14252 \| DNS: 102.210.28.48 2026-03-29T19:37:19+08:00 Africa/Nairobi \| Fake HTTP Protocol detected! \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36 HTTP/1.1 443 GET \| URL: /fondant-tyrannosaurus-dinosaur-jurassic-world-cake/?b591407f95e361b5e6dc=KRW&code=KRW \| Ref: - \| Country: KE/Kenya/+03:00 IP City: Eldoret macOS 9e3e94ef7d3ba0d0-JNB/Johannesburg, South Africa 1 hits/0 secs Browser 3 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇮🇩 hermawan	2026-03-10 05:55:12 (2 months ago)	03/10/2026-12:54:59.672584 [Drop] [] [1:9200018:0] match JA4 hash Microsoft oai-searchbot openai. ... show more 03/10/2026-12:54:59.672584 [Drop] [] [1:9200018:0] match JA4 hash Microsoft oai-searchbot openai.com 74-7-241-181 [**] [Classification: (null)] [Priority: 3] {TCP} 102.210.28.48:46938 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇺🇸 kosada.com	2026-02-04 16:29:53 (4 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇩🇪 HandyTreff.de	2026-01-31 18:25:12 (4 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -29.792 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -29.792 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18. show less	Bad Web Bot Web App Attack
🇮🇹 Progetto1	2026-01-18 12:45:02 (4 months ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 RAP	2026-01-10 08:42:13 (4 months ago)	2026-01-10 08:42:13 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
Anonymous	2026-01-02 02:45:58 (5 months ago)	$f2bV_matches	Email Spam Brute-Force
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (5 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
🇨🇦 polycoda	2025-12-08 14:10:10 (5 months ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
🇫🇷 bigorre.org	2025-12-08 10:43:33 (5 months ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot
Anonymous	2025-11-24 20:18:14 (6 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-18 06:57:31 (6 months ago)	scanning http requests from known botnet	Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇾 200.58.134.172

🇨🇳 180.76.119.95

🇯🇵 172.253.235.27

🇺🇸 162.216.149.233

🇺🇸 138.197.200.106

🇨🇳 119.29.252.115

🇳🇱 91.92.42.170

🇺🇸 71.6.134.233

🇺🇸 68.193.167.32

🇨🇳 43.138.11.248

🇺🇸 43.135.141.116

🇸🇳 41.82.50.218

🇺🇸 35.252.102.15

🇳🇱 34.178.7.245

🇧🇪 2600:1900:0:4301::501

🇩🇪 217.154.173.63

🇩🇪 196.242.141.22

🇩🇪 193.124.20.232

🇵🇱 87.251.64.145

🇺🇸 74.125.80.89