JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 197.248.207.139

197.248.207.139 was found in our database!

This IP was reported 6,502 times. Confidence of Abuse is 100%: ?

100%

ISP	Safaricom Limited
Usage Type	Fixed Line ISP
ASN	AS37061
Hostname(s)	197-248-207-139.safaricombusiness.co.ke
Domain Name	safaricom.co.ke
Country	🇰🇪 Kenya
City	Nairobi, Nairobi County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 197.248.207.139

Whois 197.248.207.139

IP Abuse Reports for 197.248.207.139:

This IP address has been reported a total of 6,502 times from 1,302 distinct sources. 197.248.207.139 was first reported on March 12th 2024, and the most recent report was 44 seconds ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Cirno	2026-03-12 16:40:27 (2 months ago)	2026-03-12T16:40:24.544984+00:00 cirno sshd[2498894]: Invalid user webuser from 197.248.207.139 port ... show more 2026-03-12T16:40:24.544984+00:00 cirno sshd[2498894]: Invalid user webuser from 197.248.207.139 port 53943 2026-03-12T16:40:24.554492+00:00 cirno sshd[2498894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 2026-03-12T16:40:26.891490+00:00 cirno sshd[2498894]: Failed password for invalid user webuser from 197.248.207.139 port 53943 ssh2 ... show less	Brute-Force SSH
🇫🇷 helix	2026-03-12 16:40:01 (2 months ago)	Automated report: SSH brute force detected on port <port>. This IP exceeded the allowed number of fa ... show more Automated report: SSH brute force detected on port <port>. This IP exceeded the allowed number of failed login attempts (3 attempts in 10m seconds). show less	Brute-Force SSH
🇩🇪 Exc Me	2026-03-12 16:39:36 (2 months ago)	F2B blocked SSH BF	Brute-Force SSH
Anonymous	2026-03-12 16:39:23 (2 months ago)	Mar 12 16:39:21 conf sshd[893045]: Connection from 197.248.207.139 port 25188 on 79.137.33.6 port 22 ... show more Mar 12 16:39:21 conf sshd[893045]: Connection from 197.248.207.139 port 25188 on 79.137.33.6 port 22 rdomain "" Mar 12 16:39:22 conf sshd[893045]: Invalid user webuser from 197.248.207.139 port 25188 Mar 12 16:39:22 conf sshd[893045]: Disconnected from invalid user webuser 197.248.207.139 port 25188 [preauth] ... show less	Brute-Force SSH
🇺🇸 vestibtech	2026-03-12 16:34:23 (2 months ago)	2026-03-12T10:34:23.148740-06:00 Host-KLAX-C sshd[141706]: User root from 197.248.207.139 not allowe ... show more 2026-03-12T10:34:23.148740-06:00 Host-KLAX-C sshd[141706]: User root from 197.248.207.139 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇫🇮 pr0vieh	2026-03-12 16:14:18 (2 months ago)	2026-03-12T17:07:02.804043+01:00 Linux12 sshd-session[107036]: Failed password for invalid user den ... show more 2026-03-12T17:07:02.804043+01:00 Linux12 sshd-session[107036]: Failed password for invalid user den from 197.248.207.139 port 12397 ssh2 2026-03-12T17:09:30.723052+01:00 Linux12 sshd-session[115525]: Invalid user claude from 197.248.207.139 port 46545 2026-03-12T17:09:30.727123+01:00 Linux12 sshd-session[115525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 2026-03-12T17:09:33.026038+01:00 Linux12 sshd-session[115525]: Failed password for invalid user claude from 197.248.207.139 port 46545 ssh2 2026-03-12T17:11:51.881863+01:00 Linux12 sshd-session[123469]: Invalid user iot from 197.248.207.139 port 15511 2026-03-12T17:11:51.884099+01:00 Linux12 sshd-session[123469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 2026-03-12T17:11:53.593957+01:00 Linux12 sshd-session[123469]: Failed password for invalid user iot from 197.248.207.139 port 15511 ssh2 2026-03-12T17:14:15.91223 ... show less	Brute-Force SSH
🇺🇸 m2jest1c	2026-03-12 16:00:05 (2 months ago)	2026-03-12T12:00:02.830128 rhel-20gb-ash-1 sshd[1432999]: Invalid user auser from 197.248.207.139 po ... show more 2026-03-12T12:00:02.830128 rhel-20gb-ash-1 sshd[1432999]: Invalid user auser from 197.248.207.139 port 61007 ... show less	Brute-Force SSH
🇫🇮 TrafficAnalyser	2026-03-12 15:37:09 (2 months ago)	Invalid user ts3 from 197.248.207.139 port 47214	Brute-Force SSH
🇫🇷 TuxCLOUD	2026-03-12 15:24:47 (2 months ago)	Mar 12 16:20:30 s1-4-gra7 sshd[2420744]: Invalid user ts3 from 197.248.207.139 port 16405 Mar 12 16: ... show more Mar 12 16:20:30 s1-4-gra7 sshd[2420744]: Invalid user ts3 from 197.248.207.139 port 16405 Mar 12 16:24:47 s1-4-gra7 sshd[2420922]: Invalid user def from 197.248.207.139 port 51616 show less	Brute-Force SSH
🇩🇪 Freenex1911	2026-03-12 15:24:23 (2 months ago)	2026-03-12T16:19:23.136502+01:00 groves sshd-session[2163180]: pam_unix(sshd:auth): authentication f ... show more 2026-03-12T16:19:23.136502+01:00 groves sshd-session[2163180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 2026-03-12T16:19:25.206428+01:00 groves sshd-session[2163180]: Failed password for invalid user ts3 from 197.248.207.139 port 57621 ssh2 2026-03-12T16:24:23.006836+01:00 groves sshd-session[2164309]: Invalid user def from 197.248.207.139 port 40345 ... show less	Brute-Force SSH
🇮🇩 Vano Ganzzz	2026-03-12 15:24:05 (2 months ago)	[Fail2Ban] Banned 197.248.207.139 for 600 seconds. Relevant log lines: 2026-03-12T22:18:31&820915+07 ... show more [Fail2Ban] Banned 197.248.207.139 for 600 seconds. Relevant log lines: 2026-03-12T22:18:31&820915+07:00 iZk1a2l3gukhtm6gic2ky3Z sshd&375104&: Invalid user ts3 from 197&248&207&139 port 30386 2026-03-12T22:18:31&828980+07:00 iZk1a2l3gukhtm6gic2ky3Z sshd&375104&: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197&248&207&139 2026-03-12T22:18:33&699254+07:00 iZk1a2l3gukhtm6gic2ky3Z sshd&375104&: Failed password for invalid user ts3 from 197&248&207&139 port 30386 ssh2 2026-03-12T22:24:04&487335+07:00 iZk1a2l3gukhtm6gic2ky3Z sshd&375267&: Invalid user def from 197&248&207&139 port 51049 2026-03-12T22:24:04&492387+07:00 iZk1a2l3gukhtm6gic2ky3Z sshd&375267&: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197&248&207&139 show less	Brute-Force SSH
Anonymous	2026-03-12 15:23:25 (2 months ago)	2026-03-12T15:16:45.547239+00:00 nbg01-02-mail sshd[369806]: pam_unix(sshd:auth): authentication fai ... show more 2026-03-12T15:16:45.547239+00:00 nbg01-02-mail sshd[369806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 2026-03-12T15:16:48.200742+00:00 nbg01-02-mail sshd[369806]: Failed password for invalid user ts3 from 197.248.207.139 port 64514 ssh2 2026-03-12T15:23:24.133349+00:00 nbg01-02-mail sshd[369840]: Invalid user def from 197.248.207.139 port 26515 ... show less	Brute-Force
🇨🇭 liloscambio.ch	2026-03-12 15:12:11 (2 months ago)	2026-03-12T16:09:51.604077+01:00 liloscambio sshd[526160]: pam_unix(sshd:auth): authentication failu ... show more 2026-03-12T16:09:51.604077+01:00 liloscambio sshd[526160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 2026-03-12T16:09:53.421590+01:00 liloscambio sshd[526160]: Failed password for invalid user service from 197.248.207.139 port 4480 ssh2 2026-03-12T16:12:10.477006+01:00 liloscambio sshd[526230]: Invalid user kube from 197.248.207.139 port 60865 ... show less	Brute-Force SSH
🇺🇸 kaseidis	2026-03-12 14:52:10 (2 months ago)	Mar 12 14:45:31 s238143 sshd[1971875]: Failed password for invalid user es from 197.248.207.139 port ... show more Mar 12 14:45:31 s238143 sshd[1971875]: Failed password for invalid user es from 197.248.207.139 port 59890 ssh2 Mar 12 14:49:33 s238143 sshd[1972291]: Invalid user userdeploy from 197.248.207.139 port 63927 Mar 12 14:49:33 s238143 sshd[1972291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 Mar 12 14:49:36 s238143 sshd[1972291]: Failed password for invalid user userdeploy from 197.248.207.139 port 63927 ssh2 Mar 12 14:52:09 s238143 sshd[1972597]: Invalid user claude from 197.248.207.139 port 26653 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-03-12 14:19:15 (2 months ago)	(sshd) Failed SSH login from 197.248.207.139 (KE/Kenya/197-248-207-139.safaricombusiness.co.ke): 5 i ... show more (sshd) Failed SSH login from 197.248.207.139 (KE/Kenya/197-248-207-139.safaricombusiness.co.ke): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Mar 12 09:10:21 15299 sshd[1684]: Invalid user claude from 197.248.207.139 port 16634 Mar 12 09:10:23 15299 sshd[1684]: Failed password for invalid user claude from 197.248.207.139 port 16634 ssh2 Mar 12 09:16:24 15299 sshd[3063]: Invalid user gpadmin from 197.248.207.139 port 3897 Mar 12 09:16:26 15299 sshd[3063]: Failed password for invalid user gpadmin from 197.248.207.139 port 3897 ssh2 Mar 12 09:19:00 15299 sshd[3716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 user=root show less	Brute-Force SSH

Showing 6391 to 6405 of 6502 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.239.251.12

🇧🇪 198.235.24.200

🇦🇺 170.64.167.72

🇺🇸 162.216.149.213

🇫🇮 147.185.133.77

🇩🇪 104.248.22.153

🇺🇸 45.74.252.23

🇧🇪 198.235.24.197

🇧🇪 198.235.24.171

🇩🇪 185.220.101.159

🇨🇦 178.128.232.91

🇺🇸 162.216.149.65

🇩🇪 159.89.17.56

🇺🇸 93.152.208.54

🇱🇹 85.206.68.80

🇺🇸 66.132.186.214

🇺🇸 65.49.1.232

🇲🇾 60.54.63.117

🇹🇷 5.252.97.104

🇧🇪 198.235.24.169