JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 102.0.11.242

102.0.11.242 was found in our database!

This IP was reported 78 times. Confidence of Abuse is 30%: ?

30%

ISP	Allocated to Airtel Kenya Mobile Broadband and Fixed internet
Usage Type	Fixed Line ISP
ASN	AS36926
Hostname(s)	242-11-0-102.r.airtelkenya.com
Domain Name	airtel.in
Country	🇰🇪 Kenya
City	Ruiru, Kiambu County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 102.0.11.242

Whois 102.0.11.242

IP Abuse Reports for 102.0.11.242:

This IP address has been reported a total of 78 times from 35 distinct sources. 102.0.11.242 was first reported on July 15th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-09 06:54:23 (1 week ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated encoding. Vegas Security	DDoS Attack Hacking Bad Web Bot
Anonymous	2026-05-21 21:15:53 (3 weeks ago)	Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to ... show more Distributed web crawl botnet attack (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions in thread-skip.asp show less	Exploited Host Bad Web Bot
🇩🇪 milcraft.nl	2026-05-13 21:20:23 (1 month ago)	Suspicious WooCommerce query combination detected. Not default available on websites. Matched combi ... show more Suspicious WooCommerce query combination detected. Not default available on websites. Matched combi patterns: filter_, add-to-cart=, orderby=, product_count=. Activity is consistent with high-volume request abuse. show less	DDoS Attack Web App Attack
🇺🇸 MPL	2026-05-03 06:10:39 (1 month ago)	tcp/23 (2 or more attempts)	Port Scan
🇧🇾 sashan	2026-05-02 23:33:06 (1 month ago)	2026-05-03T02:33:05.257890+03:00 gate kernel: nftables: JAIL-TELNET IN=wan OUT= MAC= SRC=102.0.11.24 ... show more 2026-05-03T02:33:05.257890+03:00 gate kernel: nftables: JAIL-TELNET IN=wan OUT= MAC= SRC=102.0.11.242 DST=xxx.xxx.xxx.xxx LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=31494 DF PROTO=TCP SPT=10878 DPT=23 WINDOW=29040 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 RAP	2026-05-02 22:46:16 (1 month ago)	2026-05-02 22:46:16 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
Anonymous	2026-05-02 13:59:27 (1 month ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇩🇪 filstal.org	2026-04-30 17:00:36 (1 month ago)	Bad web bot: Spoofed/obsolete UA (Mozilla/5.0 (compatible; MSIE 5.0; Windows NT 5.2; Trident/5.0)). ... show more Bad web bot: Spoofed/obsolete UA (Mozilla/5.0 (compatible; MSIE 5.0; Windows NT 5.2; Trident/5.0)). Mass-scanning WordPress plugin. Coordinated large-scale bot attack. show less	Bad Web Bot Web App Attack
🇯🇵 mkaraki	2026-04-27 18:39:09 (1 month ago)	1777315145 # Service_probe # SIGNATURE_SEND # source_ip:102.0.11.242 # dst_port:443 ...	Port Scan
🇹🇼 kk_it_man	2026-04-21 18:20:27 (1 month ago)		Hacking
🇺🇸 TPI-Abuse	2026-04-04 03:53:40 (2 months ago)	(mod_security) mod_security (id:217210) triggered by 102.0.11.242 (242-11-0-102.r.airtelkenya.com): ... show more (mod_security) mod_security (id:217210) triggered by 102.0.11.242 (242-11-0-102.r.airtelkenya.com): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 23:53:32.513514 2026] [security2:error] [pid 831:tid 831] [client 102.0.11.242:38594] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^(?i:(?:[a-z]{3,10}\\\\s+(?:\\\\w{3,7}?://[\\\\w\\\\-\\\\./](?::\\\\d+)?)?/[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S])?\|connect (?:\\\\d{1,3}\\\\.){3}\\\\d{1,3}\\\\.?(?::\\\\d+)?\|options \\\\)\\\\s+[\\\\w\\\\./]+\|get /[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S]*)?)$" against "REQUEST_LINE" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "114"] [id "217210"] [rev "1"] [msg "COMODO WAF: Invalid HTTP Request Line\|\|zee61fills.xyz\|F\|4"] [data "GET http://zee61fills.xyz HTTP/1.1"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "zee61fills.xyz"] [uri "/"] [unique_id "adCLPJyQKyBen3Y52s-SJAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 rtbh.com.tr	2026-03-28 20:12:18 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 TPI-Abuse	2026-03-12 06:02:54 (3 months ago)	(mod_security) mod_security (id:218580) triggered by 102.0.11.242 (242-11-0-102.r.airtelkenya.com): ... show more (mod_security) mod_security (id:218580) triggered by 102.0.11.242 (242-11-0-102.r.airtelkenya.com): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 12 02:02:49.371628 2026] [security2:error] [pid 14863:tid 14876] [client 102.0.11.242:47504] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:\\\\/\\\\[!+](?:[\\\\w\\\\s=_\\\\-()]+)?\\\\*\\\\/)" at ARGS:pid. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/22_SQL_SQLi.conf"] [line "76"] [id "218580"] [rev "1"] [msg "COMODO WAF: MySQL in-line comment detected.\|\|bigalsclubhouse.com.au\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "bigalsclubhouse.com.au"] [uri "/gallery/displayimage.php"] [unique_id "abJXCa5d2Mjnz9JSRiSFgAAAAIo"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2026-03-08 14:39:15 (3 months ago)	Form spam	Web Spam
🇫🇷 vtchost.com	2026-03-02 18:59:17 (3 months ago)	hit a honeypot - ignored robots.txt - possible botnet ...	Bad Web Bot

Showing 1 to 15 of 78 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.212.83.51

🇭🇰 150.5.169.138

🇬🇧 35.203.211.40

🇩🇪 213.209.159.227

🇯🇵 203.25.124.3

🇲🇽 189.203.190.153

🇨🇳 183.221.20.144

🇧🇷 177.131.17.140

🇺🇸 162.216.149.125

🇨🇴 154.223.16.92

🇨🇳 144.123.77.121

🇹🇭 130.94.23.224

🇮🇳 115.96.216.247

🇨🇳 112.94.253.4

🇸🇬 103.190.178.24

🇺🇸 66.132.186.127

🇻🇳 27.79.41.23

🇺🇸 13.217.95.0

🇬🇧 2a06:4880:2000::43

🇨🇳 222.176.200.196