JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 197.136.17.182

197.136.17.182 was found in our database!

This IP was reported 114 times. Confidence of Abuse is 53%: ?

53%

ISP	Kenya Education Network
Usage Type	University/College/School
ASN	AS36914
Hostname(s)	mail.tvetcdacc.go.ke
Domain Name	kenet.or.ke
Country	🇰🇪 Kenya
City	Nairobi, Nairobi County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 197.136.17.182

Whois 197.136.17.182

IP Abuse Reports for 197.136.17.182:

This IP address has been reported a total of 114 times from 41 distinct sources. 197.136.17.182 was first reported on January 30th 2025, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇴 SpamStopper	2026-06-26 18:46:31 (6 hours ago)	Fail2Ban - POSTFIX DNSBL listed sender	Email Spam
🇨🇭 Origon	2026-06-23 15:35:48 (3 days ago)	NOQUEUE - IP: 197.136.17.182 - Jun 23 17:35:48 plesk postfix/smtpd[3270552]: NOQUEUE: reject: RCPT ... show more NOQUEUE - IP: 197.136.17.182 - Jun 23 17:35:48 plesk postfix/smtpd[3270552]: NOQUEUE: reject: RCPT from mail.tvetcdacc.go.ke[197.136.17.182]: 554 5.7.1 Service unavailable; Client host [197.136.17.182] blocked using dnsbl-1.uceprotect.net; IP 197.136.17.182 is UCEPROTECT-Level 1 listed. See http://www.uceprotect.net/rblcheck.php?ipr=197.136.17.182; from=<REDACTED@REDACTED> to=<REDACTED@REDACTED> proto=ESMTP helo=<mail.tvetcdacc.go.ke> show less	Email Spam
🇺🇸 wavellan	2026-06-23 01:24:00 (3 days ago)	https://pastebin.com/uyiexCj2	Email Spam Phishing
🇨🇭 Origon	2026-06-18 07:21:18 (1 week ago)	NOQUEUE - IP: 197.136.17.182 - Jun 18 09:21:17 plesk postfix/smtpd[2905361]: NOQUEUE: reject: RCPT ... show more NOQUEUE - IP: 197.136.17.182 - Jun 18 09:21:17 plesk postfix/smtpd[2905361]: NOQUEUE: reject: RCPT from mail.tvetcdacc.go.ke[197.136.17.182]: 554 5.7.1 Service unavailable; Client host [197.136.17.182] blocked using dnsbl-1.uceprotect.net; IP 197.136.17.182 is UCEPROTECT-Level 1 listed. See http://www.uceprotect.net/rblcheck.php?ipr=197.136.17.182; from=<[email protected]> to=<REDACTED@REDACTED> proto=ESMTP helo=<mail.tvetcdacc.go.ke> show less	Email Spam
🇺🇸 xmission.com	2026-06-18 01:15:53 (1 week ago)	Sourced 2 spam messages over 3x XMissions threshold. Highest score: 28.8. Latest msgid suffix: ...ai ... show more Sourced 2 spam messages over 3x XMissions threshold. Highest score: 28.8. Latest msgid suffix: ...ail.zimbra show less	Email Spam
Anonymous	2026-06-16 16:47:31 (1 week ago)	SMTP scanner - relay access denied	Brute-Force Exploited Host
🇷🇸 Smel	2026-06-16 02:04:23 (1 week ago)	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	Email Spam Hacking Brute-Force
🇨🇭 Origon	2026-06-15 07:01:54 (1 week ago)	NOQUEUE - IP: 197.136.17.182 - Jun 15 09:01:53 plesk postfix/smtpd[1302842]: NOQUEUE: reject: RCPT ... show more NOQUEUE - IP: 197.136.17.182 - Jun 15 09:01:53 plesk postfix/smtpd[1302842]: NOQUEUE: reject: RCPT from mail.tvetcdacc.go.ke[197.136.17.182]: 554 5.7.1 Service unavailable; Client host [197.136.17.182] blocked using b.barracudacentral.org; http://www.barracudanetworks.com/reputation/?pr=1&ip=197.136.17.182; from=<[email protected]> to=<REDACTED@REDACTED> proto=ESMTP helo=<mail.tvetcdacc.go.ke> show less	Email Spam
🇺🇸 xmission.com	2026-06-13 21:12:26 (1 week ago)	Sourced 3 spam messages over 3x XMissions threshold. Highest score: 27.6. Latest msgid suffix: ...ai ... show more Sourced 3 spam messages over 3x XMissions threshold. Highest score: 27.6. Latest msgid suffix: ...ail.zimbra show less	Email Spam
🇬🇧 Joe-Mark	2026-06-03 03:12:30 (3 weeks ago)	Spam Timestamp : 03-Jun-26 04:02 BlockList Provider barracudacentral.org (55)	Email Spam
🇸🇰 EVISION	2026-06-03 01:30:55 (3 weeks ago)	Automatic report from EV firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporti ... show more Automatic report from EV firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporting ID: kAdizt0wze9F0N8uZLMi218ByuRSzRXQ show less	Port Scan Hacking Brute-Force
🇬🇧 Joe-Mark	2026-06-02 03:12:17 (3 weeks ago)	Spam Timestamp : 02-Jun-26 03:25 BlockList Provider barracudacentral.org (69)	Email Spam
🇸🇰 Eurofluid	2026-06-02 03:01:05 (3 weeks ago)	You shall not pass ! Abusive behavior blocked by EF firewall.	Port Scan Hacking Brute-Force
Anonymous	2026-06-01 18:34:00 (3 weeks ago)	malicious link spam from mail.tvetcdacc.go.ke (mail.tvetcdacc.go.ke. [197.136.17.182]) Mon, 1 Jun 2 ... show more malicious link spam from mail.tvetcdacc.go.ke (mail.tvetcdacc.go.ke. [197.136.17.182]) Mon, 1 Jun 2026 11:28:54 -0700 (PDT) broadcast № 53072! 2 1 8 3 9558 50 63 47 06 https://docs.google.com/drawings/d/1s9t92JnlqoeV2IX4xLsuMVTQXBgTQnkMfGEbV9KsbKA/preview#TLlywRL show less	Fraud Orders Email Spam Spoofing Exploited Host Phishing
🇸🇰 EVISION	2026-05-31 07:31:42 (3 weeks ago)	Automatic report from EV firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporti ... show more Automatic report from EV firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporting ID: 31b8fhEhllFGzGZe49qqxMSZkWF0ULUZ show less	Port Scan Hacking Brute-Force

Showing 1 to 15 of 114 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 152.32.135.135

🇨🇳 112.86.225.83

🇺🇸 37.123.192.41

🇺🇸 2602:feda:f395:c47a:bc54:1761:3728:7571

🇺🇸 216.25.89.134

🇺🇸 205.210.31.45

🇬🇧 193.163.125.158

🇬🇹 181.209.150.40

🇧🇷 177.190.89.163

🇧🇷 177.44.71.134

🇸🇬 140.245.43.171

🇩🇿 105.235.139.202

🇫🇷 85.217.140.28

🇸🇬 68.183.190.62

🇯🇲 63.143.99.143

🇨🇴 45.167.250.45

🇺🇸 45.146.55.131

🇬🇧 35.203.211.129

🇭🇰 8.218.44.42

🇮🇳 223.185.56.9