JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 41.89.163.1

41.89.163.1 was found in our database!

This IP was reported 802 times. Confidence of Abuse is 79%: ?

79%

ISP	Moi University - School of Law
Usage Type	University/College/School
ASN	AS36914
Domain Name	kenet.or.ke
Country	🇰🇪 Kenya
City	Eldoret, Uasin Gishu County

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 41.89.163.1

Whois 41.89.163.1

IP Abuse Reports for 41.89.163.1:

This IP address has been reported a total of 802 times from 70 distinct sources. 41.89.163.1 was first reported on August 29th 2024, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 geeek	2026-06-19 02:55:10 (17 hours ago)	Port scanning: 445 TCP Blocked	Port Scan
🇫🇷 zulzeen	2026-06-19 00:49:16 (19 hours ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (SMB/Possible Ransomware Attack)	Hacking Brute-Force
🇳🇱 knock	2026-06-18 16:08:56 (1 day ago)	Knock-Knock honeypot brute-force: SMB (8 total hits)	Brute-Force
Anonymous	2026-06-18 15:19:45 (1 day ago)	Unauthorized access (tcp/445/smb)	Port Scan
Anonymous	2026-06-17 12:10:53 (2 days ago)	Unauthorized access (tcp/445/smb)	Port Scan
🇦🇹 urnilxfgbez	2026-06-16 22:45:00 (2 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 MPL	2026-06-12 13:15:26 (1 week ago)	tcp/445	Port Scan
🇩🇪 Luhte	2026-06-10 11:48:48 (1 week ago)	Unsolicited TCP connection from 41.89.163.1 to port 0 at 2026-06-10T11:48:48Z. Source IP completed t ... show more Unsolicited TCP connection from 41.89.163.1 to port 0 at 2026-06-10T11:48:48Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
🇺🇸 MPL	2026-06-10 09:05:53 (1 week ago)	tcp/445 (2 or more attempts)	Port Scan
🇬🇧 Birdo	2026-06-09 16:08:45 (1 week ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇺🇸 sumnone	2026-06-08 23:04:21 (1 week ago)	Port probing on unauthorized port 445	Port Scan Hacking Exploited Host
🇩🇪 Honeypot-EU-Fru	2026-06-08 06:16:10 (1 week ago)	1780899367 - 06/08/2026 08:16:07 Host: 41.89.163.1/41.89.163.1 Port: 445 TCP Blocked ...	Port Scan
🇦🇺 dyln	2026-06-05 10:27:57 (2 weeks ago)	Dyls honeypot brute-force: SMB (4 total hits)	Brute-Force
🇨🇦 dpinse	2026-06-05 06:57:10 (2 weeks ago)	Honeypot [honeypot-ca-sensor1]: SMB traffic on port 445	Hacking
🇬🇧 Birdo	2026-06-02 10:09:34 (2 weeks ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking

Showing 1 to 15 of 802 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 223.197.186.7

🇩🇪 216.26.247.71

🇺🇸 67.207.93.64

🇺🇸 216.25.89.133

🇵🇪 190.223.60.209

🇩🇪 172.238.115.20

🇳🇱 172.94.9.55

🇮🇩 118.99.114.224

🇺🇸 104.234.53.135

🇮🇳 59.97.254.175

🇧🇬 46.10.56.170

🇳🇱 204.76.203.206

🇧🇷 177.220.181.57

🇬🇧 172.237.114.35

🇫🇮 147.185.133.93

🇯🇵 121.84.147.45

🇭🇰 45.142.154.112

🇮🇩 43.157.210.132

🇦🇺 40.82.214.8

🇺🇸 24.30.81.121