197.248.155.90

Basic Info

City: Nairobi

Region: Nairobi

Country: Kenya

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
197.248.155.194	attackspam	SMB Server BruteForce Attack	2019-11-25 05:31:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.248.155.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58844
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;197.248.155.90.			IN	A

;; AUTHORITY SECTION:
.			159	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024032502 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 26 04:19:59 CST 2024
;; MSG SIZE  rcvd: 107

Host info

90.155.248.197.in-addr.arpa domain name pointer 197-248-155-90.safaricombusiness.co.ke.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
90.155.248.197.in-addr.arpa	name = 197-248-155-90.safaricombusiness.co.ke.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
162.210.70.52	attack	Phishing mail send: We recently experience service disruption with our home bank on international transactions ever since the Convid 19 situation started affecting bank operation hours. Please process payment to our below offshore Sweden bank account. Please confirm when payment will be expected and also share the transfer copy once processed for follow up. Received: from us2-ob1-1.mailhostbox.com (162.210.70.52) by AM5EUR03FT041.mail.protection.outlook.com (10.152.17.186) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_RSA_WITH_AES_256_CBC_SHA) id 15.20.2856.17 via Frontend Transport; Sat, 28 Mar 2020 14:21:49 +0000	2020-04-11 04:10:45
138.97.40.230	attackbotsspam	Automatic report - SSH Brute-Force Attack	2020-04-11 04:38:26
122.202.48.251	attackbotsspam	Apr 10 18:51:13 ns382633 sshd\[9635\]: Invalid user work from 122.202.48.251 port 44670 Apr 10 18:51:13 ns382633 sshd\[9635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.202.48.251 Apr 10 18:51:15 ns382633 sshd\[9635\]: Failed password for invalid user work from 122.202.48.251 port 44670 ssh2 Apr 10 19:05:15 ns382633 sshd\[12665\]: Invalid user admin from 122.202.48.251 port 59302 Apr 10 19:05:15 ns382633 sshd\[12665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.202.48.251	2020-04-11 04:22:04
157.230.190.1	attackbotsspam	Invalid user test from 157.230.190.1 port 36052	2020-04-11 04:28:25
106.52.134.88	attackspam	Apr 11 01:33:43 gw1 sshd[19620]: Failed password for root from 106.52.134.88 port 49230 ssh2 ...	2020-04-11 04:38:14
50.244.37.249	attackbots	Invalid user test from 50.244.37.249 port 57694	2020-04-11 04:19:18
51.75.18.212	attackspambots	SSH bruteforce	2020-04-11 04:20:51
119.41.204.132	attackspam	3389BruteforceStormFW21	2020-04-11 04:11:17
162.243.128.127	attackspam	Automatic report - Port Scan Attack	2020-04-11 04:11:46
13.58.81.26	attackspam	Apr 10 20:36:47 *** sshd[28782]: Invalid user rmstn from 13.58.81.26	2020-04-11 04:40:34
134.209.50.169	attackbotsspam	Apr 10 22:33:56 host01 sshd[30393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.50.169 Apr 10 22:33:58 host01 sshd[30393]: Failed password for invalid user tara from 134.209.50.169 port 39338 ssh2 Apr 10 22:36:49 host01 sshd[30987]: Failed password for root from 134.209.50.169 port 35724 ssh2 ...	2020-04-11 04:39:12
111.61.121.170	attack	Apr 10 22:25:28 163-172-32-151 sshd[22819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.61.121.170 user=root Apr 10 22:25:31 163-172-32-151 sshd[22819]: Failed password for root from 111.61.121.170 port 38148 ssh2 ...	2020-04-11 04:34:07
159.146.126.36	attackspambots	Unauthorized connection attempt from IP address 159.146.126.36 on Port 445(SMB)	2020-04-11 04:21:03
82.196.15.195	attack	Brute-force attempt banned	2020-04-11 04:44:15
125.215.207.40	attackbots	Apr 10 15:27:08 vps647732 sshd[32608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.40 Apr 10 15:27:10 vps647732 sshd[32608]: Failed password for invalid user test2 from 125.215.207.40 port 58984 ssh2 ...	2020-04-11 04:25:40

Recently Reported IPs

5.165.134.226	47.89.134.184	147.51.85.73	1.192.247.144
145.54.181.235	57.36.188.110	81.19.104.172	103.167.151.169
23.48.168.4	218.94.16.246	192.155.94.200	124.90.145.0
104.152.52.90	103.203.84.144	43.133.146.174	104.28.28.69
104.28.69.32	178.20.236.150	124.90.145.80	91.187.94.29