JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.248.158.72

104.248.158.72 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.248.158.72

Whois 104.248.158.72

IP Abuse Reports for 104.248.158.72:

This IP address has been reported a total of 133 times from 67 distinct sources. 104.248.158.72 was first reported on June 12th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 KIsmay	2026-06-16 14:10:55 (2 hours ago)	Jun 16 06:38:57 www4 WPAudit[2100879]: 104.248.158.72 valhallasafety.com "Mozilla/5.0 (X11; Linux x8 ... show more Jun 16 06:38:57 www4 WPAudit[2100879]: 104.248.158.72 valhallasafety.com "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" valhalla:Valhalla1! FAIL Jun 16 07:54:53 www4 WPAudit[2142603]: 104.248.158.72 www.trilloperelloyates.com "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" sbd-admin:sbd-admin123 FAIL Jun 16 08:11:54 www4 WPAudit[2143827]: 104.248.158.72 dev.siscobc.com "Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" sisco:sisco123!@# FAIL Jun 16 10:09:24 www4 WPAudit[2153000]: 104.248.158.72 ouchiaccounting.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 11_7_10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" bwouchi:Bwouchi123@123 FAIL Jun 16 10:10:54 www4 WPAudit[2152097]: 104.248.158.72 servicesfyi.ca "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_7_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/53 ... show less	Brute-Force Web App Attack
🇩🇪 Click-Networks	2026-06-16 14:09:01 (2 hours ago)		Web Spam Brute-Force Exploited Host
🇳🇱 Site.eu	2026-06-16 13:54:01 (2 hours ago)	Excessive multi-domain requests	Brute-Force
🇪🇸 masterguru	2026-06-16 13:47:48 (3 hours ago)	(PERMBLOCK) 104.248.158.72 (SG/Singapore/-) has had more than 4 temp blocks in the last 86400 secs ( ... show more (PERMBLOCK) 104.248.158.72 (SG/Singapore/-) has had more than 4 temp blocks in the last 86400 secs (0-122) show less	Hacking
🇬🇧 SCLwebadministrator	2026-06-16 13:37:00 (3 hours ago)	Bruteforce WordPress logins detected with Loginizer	Brute-Force Web App Attack Hacking
🇺🇸 nationaleventpros.com	2026-06-16 13:34:54 (3 hours ago)	WordPress login attempt	Brute-Force
Anonymous	2026-06-16 13:12:07 (3 hours ago)	[Tue Jun 16 15:12:05.555020 2026] [authz_core:error] [pid 97318:tid 97352] [client 104.248.158.72:56 ... show more [Tue Jun 16 15:12:05.555020 2026] [authz_core:error] [pid 97318:tid 97352] [client 104.248.158.72:56262] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php [Tue Jun 16 15:12:05.958185 2026] [authz_core:error] [pid 97318:tid 97347] [client 104.248.158.72:56262] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php, referer: https://pre.cimt-precision.de/wp-login.php [Tue Jun 16 15:12:05.958185 2026] [authz_core:error] [pid 97318:tid 97347] [client 104.248.158.72:56262] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php, referer: https://pre.cimt-precision.de/wp-login.php ... show less	Brute-Force Web App Attack
🇩🇪 Marc	2026-06-16 12:55:18 (3 hours ago)	104.248.158.72 - - [16/Jun/2026:11:37:05 +0200] "GET /wp-login.php HTTP/2.0" 200 4083 "-" "Mozilla/5 ... show more 104.248.158.72 - - [16/Jun/2026:11:37:05 +0200] "GET /wp-login.php HTTP/2.0" 200 4083 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 104.248.158.72 - - [16/Jun/2026:11:37:06 +0200] "POST /wp-login.php HTTP/2.0" 403 11169 "https://www.saatschule.de/wp-login.php" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 104.248.158.72 - - [16/Jun/2026:13:00:04 +0200] "GET /wp-login.php HTTP/2.0" 200 3329 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" 104.248.158.72 - - [16/Jun/2026:13:00:05 +0200] "POST /wp-login.php HTTP/2.0" 200 3241 "https://fachanwaelte-iserlohn.de/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" 104.248.158.72 - - [16/Jun/2026:14:55:17 +0200] "GET /wp-login.php HTTP/2.0" 200 3988 "-" "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" show less	Brute-Force Web App Attack
Anonymous	2026-06-16 12:33:26 (4 hours ago)	[Tue Jun 16 13:48:08.630159 2026] [authz_core:error] [pid 97380:tid 97466] [client 104.248.158.72:60 ... show more [Tue Jun 16 13:48:08.630159 2026] [authz_core:error] [pid 97380:tid 97466] [client 104.248.158.72:60810] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php [Tue Jun 16 13:48:08.968952 2026] [authz_core:error] [pid 97380:tid 97470] [client 104.248.158.72:60810] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php, referer: https://pre.cimt-precision.de/wp-login.php [Tue Jun 16 14:33:24.670541 2026] [authz_core:error] [pid 97318:tid 97349] [client 104.248.158.72:54422] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php [Tue Jun 16 14:33:25.019201 2026] [authz_core:error] [pid 97318:tid 97366] [client 104.248.158.72:54422] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-login.php, referer: https://pre.cimt-precision.de/wp-login.php ... show less	Brute-Force Web App Attack
🇩🇪 juutis	2026-06-16 12:00:04 (4 hours ago)	104.248.158.72 - - [15/Jun/2026:02:44:52 +0200] "POST /wp-login.php HTTP/1.1" 200 9279 "https://taid ... show more 104.248.158.72 - - [15/Jun/2026:02:44:52 +0200] "POST /wp-login.php HTTP/1.1" 200 9279 "https://taidesuunnistus.net/wp-login.php" "Mozilla/5.0 (X11; Fedora; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 104.248.158.72 - - [15/Jun/2026:07:45:35 +0200] "POST /wp-login.php HTTP/1.1" 200 9279 "https://taidesuunnistus.net/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" 104.248.158.72 - - [16/Jun/2026:14:00:00 +0200] "POST /wp-login.php HTTP/1.1" 200 9280 "https://taidesuunnistus.net/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:133.0) Gecko/20100101 Firefox/133.0" show less	Web App Attack
🇫🇷 ELYAZ	2026-06-16 11:52:52 (4 hours ago)	(y4) Failed scan -byebye- from 104.248.158.72 (SG/Singapore/-): (CF_ENABLE)	Hacking
🇮🇹 eliosbrocchi	2026-06-16 11:36:58 (5 hours ago)	2026-06-16T13:36:57.089416+02:00 thunderchild wordpress(www.crislio.com)[1886464]: Immediately block ... show more 2026-06-16T13:36:57.089416+02:00 thunderchild wordpress(www.crislio.com)[1886464]: Immediately block connections from 104.248.158.72 ... show less	VPN IP
🇺🇸 nyt	2026-06-16 11:18:01 (5 hours ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-06-16 09:47:03 (7 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 todix	2026-06-16 07:22:37 (9 hours ago)	Wordpress brute force or spam attempt from 104.248.158.72	Brute-Force

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 217.181.80.60

🇺🇸 194.187.179.29

🇳🇱 185.226.197.57

🇲🇴 182.93.50.90

🇺🇸 154.201.75.49

🇺🇸 154.19.241.170

🇻🇳 103.241.43.193

🇷🇴 80.94.92.171

🇺🇸 38.34.172.153

🇺🇸 2607:f8b0:4002:c1b::125

🇺🇸 2607:f8b0:4002:c00::128

🇨🇳 218.0.56.78

🇺🇸 195.184.76.113

🇳🇱 193.176.31.244

🇪🇨 190.12.151.163

🇪🇨 186.68.83.104

🇩🇪 118.193.58.125

🇳🇱 86.93.196.42

🇺🇦 77.87.40.114

🇺🇸 66.132.186.245