197.248.5.22 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 197.248.5.22 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 40/100

Host and Network Information

• Tags: cyber security, ioc, malicious, Nextray, phishing

• View other sources: Spamhaus VirusTotal

• Contained within other IP sets: cleanmx_phishing

• Country: Kenya
• Network:
• Noticed: 29 times
• Protocols Attacked: SSH
• Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
• Passive DNS Results: sample.authenticsparrows.co.ke www.sample.authenticsparrows.co.ke shop.kwajirani.com www.shop.kwajirani.com webtest.thuitas.com www.webtest.thuitas.com www.helpdesk.maryhelphospital.org helpdesk.maryhelphospital.org valueplus.ziarasez.co.ke www.valueplus.ziarasez.co.ke www.orgysolutions.co.ke www.mpesa.thuitas.com mpesa.thuitas.com www.logistics.eballot.co.ke logistics.eballot.co.ke businessintegrity.bcckenya.org www.eballot.co.ke eballot.co.ke www.pastilecompany.co.ke pastilecompany.co.ke www.hog.einbulinda.com www.clean.aceafricakenya.org clean.aceafricakenya.org www.veytexconstruction.com paymentgateway.thuitas.com www.paymentgateway.thuitas.com lutheran.sirmepixstudio.com www.lutheran.sirmepixstudio.com dms.kma.go.ke www.dms.kma.go.ke www.portal.kma.go.ke portal.kma.go.ke www.localhost254526yty7896e465lk.uzimahosp.org localhost254526yty7896e465lk.uzimahosp.org www.admin.mambosafi.co.ke admin.mambosafi.co.ke www.old.aceafricakenya.org old.aceafricakenya.org housing.aceafricakenya.org www.housing.aceafricakenya.org hacof.com www.nairobi.eballot.co.ke nairobi.eballot.co.ke www.kiantec.co.ke kiantec.co.ke www.nyanza.eballot.co.ke nyanza.eballot.co.ke uzimahosp.org www.uzimahosp.org www.lynak.co.ke lynak.co.ke www.radio.thuitas.com radio.thuitas.com www.eyecentre.unes.co.ke eyecentre.unes.co.ke www.site.edasconsulting.co.ke site.edasconsulting.co.ke dromedic.mothersloveconsultantship.com www.dromedic.mothersloveconsultantship.com www.utui.org www.pares.co.ke pares.co.ke www.test-api.wakulimasacco.co.ke test-api.wakulimasacco.co.ke transtradesolutions.co.ke www.transtradesolutions.co.ke www.nugreen.co.ke www.landcommission.go.ke olenyanjafarmsltd.co.ke www.olenyanjafarmsltd.co.ke nlc.symyra.co.ke www.nlc.symyra.co.ke logistics.authenticsparrows.co.ke www.logistics.authenticsparrows.co.ke www.baraza.balmoralbeachhotel.co.ke baraza.balmoralbeachhotel.co.ke goshenstudentportal.goshencollege.ac.ke www.goshenstudentportal.goshencollege.ac.ke www.99men.net www.hivisasa.net www.graniteinternationalltd.co.ke graniteinternationalltd.co.ke www.miamiproject.vincenthammond.co.ke miamiproject.vincenthammond.co.ke www.melaninclub.ananas.co.ke melaninclub.ananas.co.ke www.malfinicapital.com malfinicapital.com 123456789trial.kerichotimesnetwork.com www.123456789trial.kerichotimesnetwork.com www.nsite.terrytechsolution.co.ke nsite.terrytechsolution.co.ke www.mis.telenor.co.ke www.giganet.co.ke www.veritasventuresltd.com www.store.easeussolutions.com store.easeussolutions.com www.easeussolutions.com shule.easeussolutions.com www.shule.easeussolutions.com www.crossfixlimited.com www.gavanatransportation.com web.joygardenschool.co.ke www.web.joygardenschool.co.ke www.ananas.co.ke ananas.co.ke elinerstourscarhire.com.tour.elinerstourscarhire.com www.elinerstourscarhire.com.tour.elinerstourscarhire.com www.elinerstourscarhire.com www.hustlernation.outcometipsters.com hustlernation.outcometipsters.com niftique.co.ke infosainathtradingltd.co.ke www.infosainathtradingltd.co.ke franngumuzcontractorsltd.co.ke www.franngumuzcontractorsltd.co.ke www.igamingbuddy.com www.hillsher.co.ke hillsher.co.ke tech.wetpa.org www.tech.wetpa.org www.gridlockholdingsltd.com www.erp.telenor.co.ke erp.telenor.co.ke www.invoice.lechpatinvestments.co.ke invoice.lechpatinvestments.co.ke netizennews.co.ke www.netizennews.co.ke www.highpharm.co.ke highpharm.co.ke msp.kma.go.ke www.msp.kma.go.ke www.aronkimutai.com www.mmpensions.co.ke.aronkimutai.com mmpensions.co.ke.aronkimutai.com www.salynan.com innowaveafricasolutions.co.ke www.innowaveafricasolutions.co.ke www.ratoskenya.co.ke ratoskenya.co.ke louisetecinvestment.com www.louisetecinvestment.com mthorebprayercenter.co.ke www.mthorebprayercenter.co.ke www.staging.einbulinda.com staging.einbulinda.com www.keydata.co.ke keydata.co.ke joyfuldaughters.co.ke www.flaxem.co.ke www.joyfuldaughters.co.ke flaxem.co.ke www.bishintransportersandconstructionltd.com www.centicoin.co.ke centicoin.co.ke www.einbulinda.com www.bookshop.unes.co.ke bookshop.unes.co.ke www.new.g-soko.com new.g-soko.com www.site.g-soko.com site.g-soko.com www.radhika.co.ke www.typotechkenya.com gridlockholdingsltd.com www.thesitimaequipment.co.ke new.radonkenya.org www.new.radonkenya.org fgckthikatown.org www.delighteamoutdoorgurus.co.ke www.terokiholdingenterprisesltd.co.ke terokiholdingenterprisesltd.co.ke corridors.upesi.co.ke www.corridors.upesi.co.ke www.lodestar.co.ke lodestar.co.ke midafricaholdings.com www.midafricaholdings.com www.bleenfieldagencies.com www.betsysaina.com www.littleinnovators.org www.prda-southsudan.org www.delegateatask.com delegateatask.com www.hminternational.info www.havenmax.net kuppetvihiga.co.ke www.kuppetvihiga.co.ke symyra.co.ke www.symyra.co.ke www.collengine.com www.nijenta.co.ke www.elitekhatsacco.com www.sizing.ppsers-engineering.co.ke sizing.ppsers-engineering.co.ke consulting.ppsers-engineering.co.ke www.consulting.ppsers-engineering.co.ke aditech.co.ke www.aditech.co.ke www.landsettlementfund.co.ke landsettlementfund.co.ke www.wotewatermanagement.co.ke wotewatermanagement.co.ke www.realfabzk.com www.mardgitenterprises.co.ke mardgitenterprises.co.ke magicmoppers.co.ke www.magicmoppers.co.ke www.kmmlegalpractitioners.com ham.co.ke www.ham.co.ke www.isaakahwawire.com www.symbioticsynergy.co.ke www.burustudios.com www.bclb.or.ke bclb.or.ke www.nationalguardkenya.co.ke nationalguardkenya.co.ke www.sumtek.info.ke sumtek.info.ke www.nairobischoolfurnitures.co.ke nairobischoolfurnitures.co.ke www.globalgreen.globalgreen.co.ke globalgreen.globalgreen.co.ke advoice.co.ke www.advoice.co.ke www.riftvegltd.co.ke snaptube.co.ke www.snaptube.co.ke www.okothoberaadvocates.com www.prowenltd.net www.kimyamotors.co.ke kimyamotors.co.ke www.swisscottagemanagement.org www.steppingstones.sc.ke steppingstones.sc.ke www.opensystems.co.ke opensystems.co.ke okshenterprise.com www.okshenterprise.com www.giandoafrica.com www.emeraldcomputers.co.ke emeraldcomputers.co.ke jaframbu.co.ke www.jaframbu.co.ke mwakisatraders.co.ke www.mwakisatraders.co.ke www.play.kwajirani.com play.kwajirani.com veritasventuresltd.com cdn-7.99men.net cdn-0.99men.net cdn.99men.net cdn-4.99men.net sms.ficquakers.org www.sms.ficquakers.org vineyardltd.co.ke www.vineyardltd.co.ke admin.radonkenya.org www.admin.radonkenya.org fic2.ficquakers.org www.fic2.ficquakers.org www.glitzmarketing.co.ke www.shethandwathigoadvocates.co.ke radonkenya.org www.radonkenya.org utui.org www.hypertexlimited.com www.swafya.org swafya.org www.technervesolutions.co.ke www.geowaveshipping.co.ke www.suntouchengineering.com www.tallgrassinsurance.co.ke www.rajair.co.ke www.rainbowlogistics.co.ke www.nuclear.co.ke www.upesi.co.ke www.masatransporters.com www.powerturboparts.com crbadvisoryservices.co.ke www.crbadvisoryservices.co.ke www.trackme.co.ke trackme.co.ke www.kwajirani.com kwajirani.com www.smartcellsolutions.co.ke smartcellsolutions.co.ke www.mohbizenterprises.co.ke mohbizenterprises.co.ke www.emerge.co.ke emerge.co.ke www.blog.ennahcosmetics.co.ke blog.ennahcosmetics.co.ke miraba8.com www.miraba8.com www.estmachewa.co.ke estmachewa.co.ke safeenvironmentadvocacy.org www.safeenvironmentadvocacy.org ourusuperstores.com www.ourusuperstores.com crossfixlimited.com easeussolutions.com bleenfieldagencies.com tonsamenergy.co.ke www.tonsamenergy.co.ke www.biovail.co.ke biovail.co.ke mwanziamutua.co.ke www.mwanziamutua.co.ke www.mutuanicholas.co.ke idyllicwellness.org www.idyllicwellness.org www.cedarmallnanyuki.co.ke cedarmallnanyuki.co.ke www.chumbani.com chumbani.com www.autopartsdepot.co.ke autopartsdepot.co.ke www.premstaffsacco.co.ke premstaffsacco.co.ke dev.roverseek.com www.dev.roverseek.com www.burnertap.co.ke burnertap.co.ke site.authenticsparrows.co.ke www.site.authenticsparrows.co.ke www.riskhood.co.ke riskhood.co.ke kwep.org salynan.com powerturboparts.com boffarresidence.com gavanatransportation.com www.wamal.co.ke wamal.co.ke www.transoniclogistics.co.ke transoniclogistics.co.ke www.wilpalmtea.co.ke wilpalmtea.co.ke www.weklean.co.ke weklean.co.ke galaxylogistics.co.ke www.galaxylogistics.co.ke www.odda.co.ke odda.co.ke www.akarienterprises.info akarienterprises.info 99men.net hminternational.info www.tablefountains.co.ke tablefountains.co.ke portal.teachershub.co.ke www.portal.teachershub.co.ke www.broadcapital.co.ke broadcapital.co.ke www.swyflypl.org swyflypl.org naturecert.co.ke www.naturecert.co.ke illumineinternationalltd.com www.illumineinternationalltd.com www.square7lounge.com square7lounge.com www.anzllp.com anzllp.com www.babashugedesign.com babashugedesign.com aronkimutai.com clients.centicoin.co.ke www.clients.centicoin.co.ke www.namacobranding.co.ke namacobranding.co.ke www.lush.ke lush.ke www.jp-consulting-sk.com jp-consulting-sk.com kingpackaging.ke www.kingpackaging.ke www.lopezdorothyent.com lopezdorothyent.com jerseyawesomefoodslimited.co.ke www.jerseyawesomefoodslimited.co.ke www.theriteconsult.com www.rentry.xyz rentry.xyz bishintransportersandconstructionltd.com www.megiremiclimited.com megiremiclimited.com star-alswafaa.co.ke www.star-alswafaa.co.ke www.savannahlodgenguluni.com savannahlodgenguluni.com www.topcovervaluers.co.ke topcovervaluers.co.ke www.primeinnovest.org cpcontacts.giandoafrica.com www.quotation.sirmepixstudio.com quotation.sirmepixstudio.com www.neptuventures.com neptuventures.com www.teachershub.co.ke teachershub.co.ke www.mothersloveconsultantship.com infoarksecurity.com www.infoarksecurity.com www.onlineservices.thuitas.com onlineservices.thuitas.com theriteconsult.com nyotapaints.com www.humanityaid.or.ke humanityaid.or.ke hgminvest.com www.hgminvest.com elitecaptions.com www.elitecaptions.com viralawektudung.tk www.viralawektudung.tk www.suretipskenya.com collengine.com betsysaina.com www.kidmangroup.com kidmangroup.com www.konegeinvest.co.ke konegeinvest.co.ke cairopalacehotel.com www.cairopalacehotel.com elitekhatsacco.com www.edasconsulting.co.ke edasconsulting.co.ke realfabzk.com contracts.sirmepixstudio.com www.contracts.sirmepixstudio.com primeinnovest.org agiiza.co.ke www.agiiza.co.ke golfviewestate.org www.golfviewestate.org fitiescorts.com www.fitiescorts.com www.project.wotewatermanagement.co.ke project.wotewatermanagement.co.ke isaakahwawire.com igamingbuddy.com burustudios.com einbulinda.com kmmlegalpractitioners.com broadcapital.com.broadcapital.co.ke www.broadcapital.com.broadcapital.co.ke www.takarcc.com takarcc.com syncnbackup.co.ke www.syncnbackup.co.ke www.niftique.co.ke stonewayconstruction.co.ke www.stonewayconstruction.co.ke www.rfid.co.ke rfid.co.ke southportinternational.co.ke www.sichern.co.ke www.southportinternational.co.ke sichern.co.ke www.quitaledental.co.ke quitaledental.co.ke www.ppsers-engineering.co.ke www.pathufocus.co.ke ppsers-engineering.co.ke pathufocus.co.ke www.ochwerimasanyaassociates.com ochwerimasanyaassociates.com www.africaeresolutioncenter.com africaeresolutioncenter.com mialemabati.co.ke www.mialemabati.co.ke www.muthominjuki.com contentcreations.co.ke www.contentcreations.co.ke api.outcometipsters.com www.api.outcometipsters.com hivisasa.net www.virtualmetrik.com virtualmetrik.com www.stclareskaplonghospital.org stclareskaplonghospital.org www.schroederkenya.co.ke schroederkenya.co.ke www.lionesshouse.co.ke lionesshouse.co.ke globalgreen.co.ke www.globalgreen.co.ke www.avivmanusolutions.co.ke hajjacapital.futurebright.co.ke www.hajjacapital.futurebright.co.ke prowenltd.net www.sureguard.co.ke sureguard.co.ke www.ennahcosmetics.co.ke ennahcosmetics.co.ke www.esanikenya.com

Malware Detected on Host

Count: 5 81830748fea30b81f84ff2c35b1e4eae001cb9bbd555c3331e6318b82c5d444c 51a9663b56cbbed06cce17feef041e9cb508e16b839e22e386d8e95869ddf948 7a0712c8fd906bf6f7589a90cf3e6e24a448ac981077e7cde96fd1d55808b9d6 0741442af57012483cf19a051af75c8d88051990e97279cecf01e30e28f72924 2c86551de2ee6c2d5efc4ca6c9827e39d8cda122feb6918c0a2589c7481a9a2e

Map

Whois Information

• inetnum: 197.248.0.0 - 197.248.63.255
• netname: Safaricom-Business
• descr: For Safaricom KENYA Enterprise Business Unit
• country: KE
• admin-c: JM27-AFRINIC
• admin-c: DA1485-AFRINIC
• tech-c: DA1485-AFRINIC
• status: ASSIGNED PA
• mnt-by: MNT-SAF2004
• parent: 197.248.0.0 - 197.248.255.255
• person: Domain Admin
• address: Safaricom Limited
• address: Safaricom House
• address: POBox 46350-00100 Nairobi
• address: Kenya
• address: Nairobi
• address: Kenya
• phone: tel:+254-020427
• nic-hdl: DA1485-AFRINIC
• mnt-by: MNT-SAF2004
• person: John Muita
• address: P.O Box 66827, 00800
• address: Nairobi
• address: Kenya
• address: Nairobi
• address: Kenya
• phone: tel:+254-722-002829
• fax-no: tel:+254-722-003272
• nic-hdl: JM27-afrinic
• mnt-by: GENERATED-UNS1E7EXFG6F7TJILQ9DMMHDN4Y0VRSV-MNT
• route: 197.248.5.0/24
• descr: Safaricom Limited
• origin: AS33771
• mnt-by: MNT-SAF2004

Links to attack logs

****** ****** ******