AbuseIPDB » 105.163.157.230
105.163.157.230 was found in our database!
This IP was reported 8 times. Confidence of
Abuse
is 4% : ?
ISP
Safaricom Limited
Usage Type
Fixed Line ISP
ASN
AS33771
Domain Name
safaricom.co.ke
Country
๐ฐ๐ช
Kenya
City
Nairobi, Nairobi County
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 105.163.157.230 :
This IP address has been reported a total of
8
times from
7 distinct
sources.
105.163.157.230 was first reported on
September 12th 2023 , and the most recent report was
1 week ago .
Old Reports:
The most recent abuse report for this IP address is from
1 week ago
. It is possible that this IP is no longer involved in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-07-05 09:22:18
(1 week ago)
(mod_security) mod_security (id:210730) triggered by 105.163.157.230 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210730) triggered by 105.163.157.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 05:22:13.387145 2026] [security2:error] [pid 497:tid 497] [client 105.163.157.230:1873] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.lertap5.com|F|2"] [data ".dat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.lertap5.com"] [uri "/Documentation/Samples/MondatY/mondaty.dat"] [unique_id "akoiRVzeYmAregxyJaLSNwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ธ๐ฌ
mypatricks
2026-02-27 10:06:04
(4 months ago)
105.163.157.230 | Port: 14150 | DNS: 105.163.157.230 2026-02-27T18:06:03+08:00 Africa/Nairobi | IPs ...
show more
105.163.157.230 | Port: 14150 | DNS: 105.163.157.230 2026-02-27T18:06:03+08:00 Africa/Nairobi | IPs reserved list | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0 HTTP/1.1 443 GET | URL: /customer-self-service/signing-in-to-your-cakedeliver-account/?ba451f6c9db1cf0c6264e26=AUD&code=AUD | Ref: - | Country: KE/Kenya/+03:00 IP City: Nairobi Windows 9d46de010f8765ec-MBA/Mombasa, Kenya 1 hits/0 secs Robots 3
show less
Brute-Force
Web App Attack
Blog Spam
Web Spam
Exploited Host
๐จ๐ฆ
polycoda
2025-12-12 12:54:34
(7 months ago)
๐ฅถ Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27
DDoS Attack
Anonymous
2025-12-10 12:37:20
(7 months ago)
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.10 is noted in report tim ...
show more
Attempted brute force login to web vpn 1 time(s); last attempt for 2025.12.10 is noted in report timestamp
show less
Hacking
Brute-Force
Anonymous
2025-11-25 12:12:10
(7 months ago)
scanning http requests from known botnet
Web App Attack
Anonymous
2025-11-19 06:37:00
(7 months ago)
scanning http requests from known botnet
Web App Attack
๐ณ๐ฑ
exxos
2025-08-28 12:05:10
(10 months ago)
Attacks with Bad user agents
Hacking
๐ท๐ธ
Smel
2023-09-12 10:04:30
(2 years ago)
Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -
Email Spam
Hacking
Brute-Force
Showing 1 to
8
of 8 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: