JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 197.248.209.145

197.248.209.145 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 100%: ?

100%

ISP	Safaricom Limited
Usage Type	Fixed Line ISP
ASN	AS37061
Hostname(s)	197-248-209-145.safaricombusiness.co.ke
Domain Name	safaricom.co.ke
Country	🇰🇪 Kenya
City	Nairobi, Nairobi County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 197.248.209.145

Whois 197.248.209.145

IP Abuse Reports for 197.248.209.145:

This IP address has been reported a total of 25 times from 23 distinct sources. 197.248.209.145 was first reported on August 7th 2024, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-15 22:45:00 (22 hours ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2026-06-15 14:48:54 (1 day ago)	RdpGuard detected brute-force attempt on MS-SQL	Brute-Force
Anonymous	2026-06-15 12:17:42 (1 day ago)	Honeypot hit: MSSQL traffic (on 1433) without login credentials Reported by: https://github.com/sefi ... show more Honeypot hit: MSSQL traffic (on 1433) without login credentials Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-15 07:08:58 (1 day ago)	Honeypot [nx-infrastructure]: MSSQL traffic (on 1433) without login credentials Reported by: Justin ... show more Honeypot [nx-infrastructure]: MSSQL traffic (on 1433) without login credentials Reported by: Justin F. show less	Port Scan
🇳🇱 EGP Abuse Dept	2026-06-15 01:31:56 (1 day ago)	Unauthorized connection to MSSQL port 1433	Port Scan Hacking
🇹🇷 SeczarSecureOps	2026-06-13 23:39:04 (2 days ago)	Seczar SecureOps — Database Service Brute Force (6 events) — quarantined 43200m on LEFKOSA	Brute-Force SSH
🇺🇸 Cyber Crusader	2026-06-13 22:33:45 (2 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇺🇸 MPL	2026-06-13 19:38:39 (3 days ago)	tcp/1433 (2 or more attempts)	Port Scan
Anonymous	2026-06-13 13:26:10 (3 days ago)	Honeypot hit: MSSQL traffic (on 1433) without login credentials Reported by: https://github.com/sefi ... show more Honeypot hit: MSSQL traffic (on 1433) without login credentials Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 HoneyPot-FrPri	2026-06-13 11:09:26 (3 days ago)	1781348966 - 06/13/2026 13:09:26 Host: 197.248.209.145/197.248.209.145 Port: 1088 TCP Blocked ...	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-13 07:44:11 (3 days ago)	Honeypot [nx-infrastructure]: MSSQL traffic (on 1433) with username sa and empty password Reported b ... show more Honeypot [nx-infrastructure]: MSSQL traffic (on 1433) with username sa and empty password Reported by: Justin F. show less	Brute-Force
🇺🇸 sumnone	2026-06-12 23:30:09 (3 days ago)	Port probing on unauthorized port 1433	Port Scan Hacking Exploited Host
🇺🇸 RAP	2026-06-12 23:04:10 (3 days ago)	2026-06-12 23:04:10 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇺🇸 xmission.com	2026-06-12 18:29:05 (4 days ago)	Blocked by UFW (TCP on 1433) Source port: 43970 TTL: 120 Packet length: 52 TOS: 0x02 This report (f ... show more Blocked by UFW (TCP on 1433) Source port: 43970 TTL: 120 Packet length: 52 TOS: 0x02 This report (for 197.248.209.145) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇿 kronos	2026-06-12 05:35:04 (4 days ago)	IDS: FlowIntel scan-like source \| SID:9900001 \| session_sigs:100 \| alerts5m:100	Port Scan

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 2a06:a880:5:33a7::1

🇩🇪 217.160.162.192

🇮🇩 182.253.156.173

🇵🇱 95.214.53.157

🇺🇸 86.48.30.65

🇫🇷 85.204.70.118

🇬🇷 194.63.239.143

🇺🇸 162.141.167.39

🇸🇬 103.13.206.152

🇳🇱 93.123.72.183

🇫🇷 62.210.207.172

🇦🇷 45.237.222.29

🇨🇳 14.22.81.14

🇨🇳 222.89.138.40

🇧🇪 198.235.24.213

🇺🇸 185.191.171.4

🇺🇸 170.130.187.50

🇺🇸 162.216.149.56

🇺🇸 45.92.229.7

🇺🇸 38.45.72.198