JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 197.248.27.225

197.248.27.225 was found in our database!

This IP was reported 75 times. Confidence of Abuse is 47%: ?

47%

ISP	Safaricom Limited
Usage Type	Fixed Line ISP
ASN	AS37061
Hostname(s)	197-248-27-225.safaricombusiness.co.ke
Domain Name	safaricom.co.ke
Country	🇰🇪 Kenya
City	Nairobi, Nairobi County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 197.248.27.225

Whois 197.248.27.225

IP Abuse Reports for 197.248.27.225:

This IP address has been reported a total of 75 times from 35 distinct sources. 197.248.27.225 was first reported on September 6th 2025, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 sthoyer.de	2026-06-26 23:06:14 (4 hours ago)	Jun 27 01:06:13 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 27 01:06:13 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=197.248.27.225 DST=173.212.223.67 LEN=48 TOS=0x00 PREC=0x00 TTL=119 ID=876 DF PROTO=TCP SPT=53342 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 Little Iguana	2026-06-26 23:05:04 (4 hours ago)	trying to access non-authorized port	Port Scan
🇫🇷 sthoyer.de	2026-06-26 22:21:29 (5 hours ago)	Jun 27 00:21:28 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 27 00:21:28 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=197.248.27.225 DST=173.212.223.67 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=26466 DF PROTO=TCP SPT=65129 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2026-06-25 23:36:31 (1 day ago)	Try to connect to Port_Scan_445_stealth	Port Scan
🇦🇺 LiftUp Hosting	2026-06-22 12:25:44 (4 days ago)	Honeypot hit: SMB traffic on port 445	Hacking
🇫🇷 vtchost.com	2026-06-12 21:41:44 (2 weeks ago)	Jun 12 23:41:43 vtchost kernel: [51797.010009] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11 ... show more Jun 12 23:41:43 vtchost kernel: [51797.010009] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:2a:b3:08:00 SRC=197.248.27.225 DST=161.97.181.152 LEN=52 TOS=0x00 PREC=0x00 TTL=119 ID=15729 DF PROTO=TCP SPT=63775 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 IP Analyzer	2026-06-06 19:00:29 (2 weeks ago)	Unauthorized connection attempt from IP address 197.248.27.225 on Port 445(SMB)	Port Scan
🇦🇹 urnilxfgbez	2026-05-30 22:45:00 (3 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 MPL	2026-05-24 15:04:58 (1 month ago)	tcp/445 (2 or more attempts)	Port Scan
🇫🇷 sthoyer.de	2026-05-24 13:15:26 (1 month ago)	May 24 15:15:25 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 24 15:15:25 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=197.248.27.225 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=118 ID=27620 DF PROTO=TCP SPT=58655 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-05-22 04:40:18 (1 month ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-19 19:19:14 (1 month ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Honeypot-EU-Fru	2026-05-05 23:37:06 (1 month ago)	1778024226 - 05/06/2026 01:37:06 Host: 197.248.27.225/197.248.27.225 Port: 445 TCP Blocked ...	Port Scan
🇩🇪 IP Analyzer	2026-04-04 00:31:00 (2 months ago)	Unauthorized connection attempt from IP address 197.248.27.225 on Port 445(SMB)	Port Scan
🇹🇷 rtbh.com.tr	2026-04-01 20:12:24 (2 months ago)	list.rtbh.com.tr report: tcp/445	Brute-Force

Showing 1 to 15 of 75 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 201.103.197.82

🇺🇸 198.211.116.31

🇫🇮 193.66.151.86

🇺🇸 172.216.11.26

🇺🇸 63.135.169.175

🇳🇱 45.148.10.147

🇲🇽 201.102.253.48

🇲🇽 201.102.136.41

🇧🇷 201.1.133.117

🇺🇸 141.11.88.6

🇨🇳 112.86.225.227

🇵🇰 110.93.224.226

🇮🇳 103.101.58.128

🇮🇷 93.117.103.197

🇳🇱 91.92.40.151

🇩🇪 88.218.224.12

🇫🇮 80.223.198.246

🇧🇬 79.124.59.78

🇧🇷 45.205.1.245

🇺🇦 31.42.184.185