JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 197.248.207.139

197.248.207.139 was found in our database!

This IP was reported 6,498 times. Confidence of Abuse is 100%: ?

100%

ISP	Safaricom Limited
Usage Type	Fixed Line ISP
ASN	AS37061
Hostname(s)	197-248-207-139.safaricombusiness.co.ke
Domain Name	safaricom.co.ke
Country	🇰🇪 Kenya
City	Nairobi, Nairobi County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 197.248.207.139

Whois 197.248.207.139

IP Abuse Reports for 197.248.207.139:

This IP address has been reported a total of 6,498 times from 1,302 distinct sources. 197.248.207.139 was first reported on March 12th 2024, and the most recent report was 2 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇬 sh97	2026-06-03 01:23:50 (1 day ago)	rooted: SSH Brute Force from 197.248.207.139 at 2026-06-03 06:53:50 IST	Brute-Force SSH
🇩🇪 NxtGenIT	2026-06-03 01:21:20 (1 day ago)	Cowrie Honeypot hit, Event Type: cowrie.command.input, Command: CMD: cd ~; chattr -ia .ssh; lockr -i ... show more Cowrie Honeypot hit, Event Type: cowrie.command.input, Command: CMD: cd ~; chattr -ia .ssh; lockr -ia .ssh show less	Brute-Force
🇩🇪 ipcop.net	2026-06-03 00:58:28 (1 day ago)	Malicious activity detected from 197.248.207.139.	Brute-Force
🇩🇪 markawes	2026-06-03 00:50:36 (1 day ago)	[CDN] Auto banned by Fail2Ban. Reason: SSH brute force / repeated failed login attempts. Evidence: ... show more [CDN] Auto banned by Fail2Ban. Reason: SSH brute force / repeated failed login attempts. Evidence: Jun 3 01:48:22 cdn sshd[490951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 Jun 3 01:48:25 cdn sshd[490951]: Failed password for invalid user tym from 197.248.207.139 port 23712 ssh2 Jun 3 01:50:25 cdn sshd[491066]: Invalid user rishabh from 197.248.207.139 port 9585 Jun 3 01:50:25 cdn sshd[491066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 Jun 3 01:50:27 cdn sshd[491066]: Failed password for invalid user rishabh from 197.248.207.139 port 9585 ssh2 show less	Brute-Force SSH
🇺🇸 Tect.host	2026-06-03 00:50:24 (1 day ago)	Brute-force SSH server detected by Fail2ban	Brute-Force SSH
🇩🇪 www.fransveldman.world	2026-06-03 00:49:23 (1 day ago)	2026-06-03T00:47:16.320606+00:00 ubuntu sshd[2520742]: Invalid user tym from 197.248.207.139 port 35 ... show more 2026-06-03T00:47:16.320606+00:00 ubuntu sshd[2520742]: Invalid user tym from 197.248.207.139 port 35507 2026-06-03T00:49:22.909079+00:00 ubuntu sshd[2520771]: Invalid user rishabh from 197.248.207.139 port 12230 ... show less	Brute-Force SSH
🇩🇪 NxtGenIT	2026-06-03 00:47:32 (1 day ago)	Cowrie Honeypot hit, Event Type: cowrie.login.failed, Username: tym, Password: 3245gs5662d34	Brute-Force
Anonymous	2026-06-03 00:41:01 (1 day ago)	2026-06-03T00:40:57.701463+00:00 mta sshd[312073]: Failed password for root from 197.248.207.139 por ... show more 2026-06-03T00:40:57.701463+00:00 mta sshd[312073]: Failed password for root from 197.248.207.139 port 39063 ssh2 2026-06-03T00:40:59.704198+00:00 mta sshd[312073]: Disconnected from authenticating user root 197.248.207.139 port 39063 [preauth] ... show less	Brute-Force SSH
🇫🇮 vereinshosting	2026-06-03 00:20:50 (1 day ago)	Invalid user testusr from 197.248.207.139 port 2217	Brute-Force SSH
🇩🇪 on1x.cloud	2026-06-02 23:30:39 (1 day ago)	2026-06-02T23:28:06.164512+00:00 beemylink.on1x.cloud sshd[2966102]: pam_unix(sshd:auth): authentica ... show more 2026-06-02T23:28:06.164512+00:00 beemylink.on1x.cloud sshd[2966102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 2026-06-02T23:28:08.357206+00:00 beemylink.on1x.cloud sshd[2966102]: Failed password for invalid user ubuntu from 197.248.207.139 port 42121 ssh2 2026-06-02T23:30:35.629305+00:00 beemylink.on1x.cloud sshd[2968123]: Invalid user ubuntu from 197.248.207.139 port 34380 2026-06-02T23:30:35.635966+00:00 beemylink.on1x.cloud sshd[2968123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 2026-06-02T23:30:38.284680+00:00 beemylink.on1x.cloud sshd[2968123]: Failed password for invalid user ubuntu from 197.248.207.139 port 34380 ssh2 ... show less	Brute-Force SSH
🇩🇪 albasoft.com	2026-06-02 22:33:57 (1 day ago)		Brute-Force SSH
🇨🇱 n33	2026-06-02 22:27:24 (1 day ago)	SSH brute-force attack detected by fail2ban. Service: SSH. Banned after 3 failed attempts.	Brute-Force SSH
🇩🇪 on1x.cloud	2026-06-02 22:25:18 (1 day ago)	2026-06-02T22:23:00.504938+00:00 beemylink.on1x.cloud sshd[2913734]: Invalid user myftp from 197.248 ... show more 2026-06-02T22:23:00.504938+00:00 beemylink.on1x.cloud sshd[2913734]: Invalid user myftp from 197.248.207.139 port 15332 2026-06-02T22:23:00.508987+00:00 beemylink.on1x.cloud sshd[2913734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 2026-06-02T22:23:02.807717+00:00 beemylink.on1x.cloud sshd[2913734]: Failed password for invalid user myftp from 197.248.207.139 port 15332 ssh2 2026-06-02T22:25:15.636328+00:00 beemylink.on1x.cloud sshd[2915554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.207.139 user=root 2026-06-02T22:25:17.469400+00:00 beemylink.on1x.cloud sshd[2915554]: Failed password for root from 197.248.207.139 port 11775 ssh2 ... show less	Brute-Force SSH
🇩🇪 Filli Group	2026-06-02 22:24:43 (1 day ago)	2026-06-03T00:14:13.765710fra01-de-pop.as202427.net sshd[1563548]: Invalid user testusr from 197.248 ... show more 2026-06-03T00:14:13.765710fra01-de-pop.as202427.net sshd[1563548]: Invalid user testusr from 197.248.207.139 port 19197 2026-06-03T00:22:30.420536fra01-de-pop.as202427.net sshd[1565086]: Invalid user myftp from 197.248.207.139 port 10582 2026-06-03T00:24:42.647541fra01-de-pop.as202427.net sshd[1565419]: User root from 197.248.207.139 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇸🇬 sh97	2026-06-02 21:30:03 (1 day ago)	SG01-LYR: SSH Brute Force from 197.248.207.139 at 2026-06-03 03:00:12 IST	Brute-Force SSH

Showing 61 to 75 of 6498 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.202.118.38

🇺🇸 142.93.205.24

🇫🇷 80.124.54.14

🇬🇧 77.72.5.234

🇺🇸 66.228.34.203

🇩🇪 2a00:1450:4001:c00::121

🇨🇳 220.167.232.82

🇲🇽 209.178.128.32

🇩🇪 206.189.60.249

🇧🇷 205.210.31.237

🇧🇷 205.210.31.210

🇬🇧 193.163.125.48

🇩🇪 164.92.163.185

🇧🇷 147.93.37.13

🇮🇳 103.176.137.242

🇭🇰 103.149.26.43

🇮🇶 91.106.43.176

🇳🇱 89.21.67.181

🇺🇸 64.62.156.148

🇳🇱 45.148.10.21