JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 197.248.159.242

197.248.159.242 was found in our database!

This IP was reported 1,029 times. Confidence of Abuse is 100%: ?

100%

ISP	Safaricom Limited
Usage Type	Fixed Line ISP
ASN	AS37061
Hostname(s)	mail.standardmedia.co.ke
Domain Name	safaricom.co.ke
Country	🇰🇪 Kenya
City	Nairobi, Nairobi County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 197.248.159.242

Whois 197.248.159.242

IP Abuse Reports for 197.248.159.242:

This IP address has been reported a total of 1,029 times from 89 distinct sources. 197.248.159.242 was first reported on May 26th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 dyln	2026-06-27 08:56:39 (1 day ago)	Dyls honeypot brute-force: SMB (16 total hits)	Brute-Force
Anonymous	2026-06-26 17:15:35 (1 day ago)	Unauthorized access (445/tcp/microsoft-ds)	Port Scan
🇩🇪 guldkage	2026-06-25 00:59:07 (3 days ago)	Unauthorized connection attempt detected from IP address 197.248.159.242 to port 445 (ger-02) [SMB]	Exploited Host
🇩🇪 IP Analyzer	2026-06-24 20:30:27 (3 days ago)	Unauthorized connection attempt from IP address 197.248.159.242 on Port 445(SMB)	Port Scan
🇫🇷 zulzeen	2026-06-24 16:20:24 (3 days ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (SMB/Possible Ransomware Attack)	Hacking Brute-Force
🇫🇷 Entalpi.net	2026-06-24 07:19:00 (4 days ago)	Tried to hit sensible closed port commonly used in attacks	Port Scan Hacking
🇩🇪 IP Analyzer	2026-06-23 19:00:32 (4 days ago)	Unauthorized connection attempt from IP address 197.248.159.242 on Port 445(SMB)	Port Scan
🇫🇷 zulzeen	2026-06-23 10:48:00 (5 days ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (SMB/Possible Ransomware Attack)	Hacking Brute-Force
🇺🇸 knock	2026-06-23 10:07:52 (5 days ago)	Knock-Knock honeypot brute-force: SMB (18 total hits)	Brute-Force
🇬🇧 Birdo	2026-06-21 22:55:33 (6 days ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇫🇷 vtchost.com	2026-06-21 10:04:40 (1 week ago)	Jun 21 12:04:39 vtchost kernel: [182592.645533] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:1 ... show more Jun 21 12:04:39 vtchost kernel: [182592.645533] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:47:2d:08:00 SRC=197.248.159.242 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=32299 DF PROTO=TCP SPT=42929 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 drewf.ink	2026-06-21 05:06:17 (1 week ago)	[05:06] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [05:06] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
🇺🇸 drewf.ink	2026-06-21 00:40:52 (1 week ago)	[00:40] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [00:40] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
🇺🇸 drewf.ink	2026-06-20 19:36:48 (1 week ago)	[19:36] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [19:36] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
🇫🇷 Coco Bongo	2026-06-20 13:22:50 (1 week ago)	1781961769 - 06/20/2026 15:22:49 Host: 197.248.159.242/197.248.159.242 Port: 445 TCP Blocked ...	Port Scan

Showing 1 to 15 of 1029 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 27.79.43.34

🇨🇳 14.103.63.16

🇧🇷 186.214.67.42

🇻🇳 160.191.244.158

🇯🇵 20.89.44.87

🇷🇴 2.57.121.25

🇱🇰 220.247.224.226

🇸🇦 188.50.147.29

🇧🇷 177.53.165.220

🇰🇷 118.37.214.187

🇨🇳 116.179.33.71

🇪🇸 90.162.116.66

🇺🇸 65.188.151.213

🇧🇷 45.205.1.70

🇯🇵 34.146.217.105

🇨🇷 190.112.222.28

🇨🇴 190.0.63.226

🇭🇰 183.87.44.46

🇹🇭 182.232.106.58

🇰🇭 175.100.107.238