JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.215.13.26

102.215.13.26 was found in our database!

This IP was reported 175 times. Confidence of Abuse is 77%: ?

77%

ISP	SPRINKVILLE NETWORKS LIMITED
Usage Type	Fixed Line ISP
ASN	AS329167
Domain Name	sprinkvillenetworks.co.ke
Country	🇰🇪 Kenya
City	Nairobi, Nairobi County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.215.13.26

Whois 102.215.13.26

IP Abuse Reports for 102.215.13.26:

This IP address has been reported a total of 175 times from 73 distinct sources. 102.215.13.26 was first reported on September 16th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-08 15:30:17 (4 days ago)	Attribution: Angara Technologies Group / mikhail-smirnov-79830322 \| Aggressive search filter manipul ... show more Attribution: Angara Technologies Group / mikhail-smirnov-79830322 \| Aggressive search filter manipulation / web scraper probe on port 443 \| URI: Soft-Block: Excessive filters used: /catalogsearch/result/?mode=list+&product_vc_type=100%2C101&q=north+face&rating=4 \| UA: Mozilla/5.0 (Windows NT 5.1; ru-RU; rv:1.9.2.20) Gecko/7067-07-02 05:13:47.305908 Firefox/15.0 \| (Magento Site) show less	Hacking Bad Web Bot
🇨🇦 polycoda	2026-06-08 12:36:33 (4 days ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
🇮🇩 Konaa	2026-06-07 08:43:38 (5 days ago)	Jun 07 15:38:29 rapi wings[1730548]: 2026/06/07 15:37:50 http: TLS handshake error from 102.215.13.2 ... show more Jun 07 15:38:29 rapi wings[1730548]: 2026/06/07 15:37:50 http: TLS handshake error from 102.215.13.26:47684: tls: first record does not look like a TLS handshake Jun 07 15:38:29 rapi wings[1730548]: 2026/06/07 15:38:24 http: TLS handshake error from 102.215.13.26:49868: tls: first record does not look like a TLS handshake Jun 07 15:38:29 rapi wings[1730548]: 2026/06/07 15:38:26 http: TLS handshake error from 102.215.13.26:52370: tls: first record does not look like a TLS handshake Jun 07 15:38:29 rapi wings[1730548]: 2026/06/07 15:38:26 http: TLS handshake error from 102.215.13.26:3418: tls: first record does not look like a TLS handshake 2026-06-07T15:38:30.822963+07:00 rapi postfix/smtpd[175260]: improper command pipelining after CONNECT from unknown[102.215.13.26]: b\222}\\\311i\022\213\345wx\n\025\371\|m\017\304\274\231\233\|\327\377\342\213\225\334\006\a,\235\254\|BfR@\377Kq\262*U@\256\264\031^\345n\352]\342\001\200\022\305\017\310\344%\375UXd^.W\232\244V]\023\202sz>\362\355\373\226V show less	Email Spam Port Scan Brute-Force
🇮🇩 hermawan	2026-06-05 01:26:12 (1 week ago)	[Fri Jun 05 08:26:08.296723 2026] [security2:error] [pid 623569:tid 139764362557120] [client 102.215 ... show more [Fri Jun 05 08:26:08.296723 2026] [security2:error] [pid 623569:tid 139764362557120] [client 102.215.13.26:35116] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561581-mengenal-fenomena-la-nina-si-pembawa-hujan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-klimat-story/555561581-mengenal-fenomena-la-nina-si-pembawa-hujan"] [unique_id "aiIlsEbwqA8hKWccREVkIgAAUxQ"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[623590] [wZCKizcEsIQ] [aiIlsEbwqA8hKWccREVkIgAAUxQ] keep_alive=[1] [ ... show less	Email Spam Hacking
🇫🇷 security.rdmc.fr	2026-06-04 18:01:52 (1 week ago)	Port Scan Attack proto:TCP src:56262 dst:23	Port Scan
🇮🇪 RoboSOC	2026-06-04 10:18:08 (1 week ago)	TCP SYN with data , PTR: PTR record not found	Hacking
🇯🇵 VXG-NET	2026-06-04 06:44:58 (1 week ago)	port=49712, indicator_type=N/A	Port Scan Hacking
🇮🇪 AutosOnShow	2026-05-29 14:00:08 (2 weeks ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-05-29 13:59:36.139 \|	Web App Attack
🇩🇪 SMARTNET	2026-05-27 06:03:53 (2 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
🇨🇭 ALPHANET	2026-05-26 03:55:02 (2 weeks ago)	Botnet or web spider not respecting robots.txt	DDoS Attack Exploited Host
🇺🇸 nodepile	2026-05-25 23:39:26 (2 weeks ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/static/version1775170088/fr ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/static/version1775170088/frontend/Smartwave/porto/en_US/font-awesome/css/font-awesome.min.css ua='Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.3606.1825 Safari/537.36') show less	Web App Attack Exploited Host
🇮🇩 David Koswari	2026-05-25 05:23:00 (2 weeks ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
Anonymous	2026-05-22 01:19:41 (3 weeks ago)	Unauthorized access (tcp/23/telnet)	Port Scan
🇩🇪 milcraft.nl	2026-05-19 00:16:10 (3 weeks ago)	Suspicious WooCommerce query combination detected. Not default available on websites. Matched combi ... show more Suspicious WooCommerce query combination detected. Not default available on websites. Matched combi patterns: filter_, add-to-cart=, orderby=, product_count=. Activity is consistent with high-volume request abuse. show less	DDoS Attack Web App Attack
🇩🇪 milcraft.nl	2026-05-16 10:00:59 (3 weeks ago)	Suspicious WooCommerce query combination detected. Not default available on websites. Matched combi ... show more Suspicious WooCommerce query combination detected. Not default available on websites. Matched combi patterns: filter_, add-to-cart=, orderby=, product_count=. Activity is consistent with high-volume request abuse. show less	DDoS Attack Web App Attack

Showing 1 to 15 of 175 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 183.197.46.164

🇨🇦 85.217.149.23

🇫🇷 85.217.140.38

🇺🇸 206.0.68.175

🇹🇭 203.154.158.195

🇳🇱 185.213.174.22

🇺🇸 174.102.190.217

🇨🇳 171.217.92.33

🇯🇵 160.251.202.50

🇩🇪 116.202.20.68

🇻🇳 113.172.124.25

🇺🇸 107.167.34.125

🇺🇸 65.111.1.29

🇱🇺 64.89.161.184

🇳🇱 45.148.10.152

🇺🇸 3.131.142.122

🇨🇳 171.8.138.165

🇫🇮 147.185.133.194

🇨🇳 119.251.179.179

🇺🇸 91.230.168.25