JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.248.172.159

104.248.172.159 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 21%: ?

21%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.248.172.159

Whois 104.248.172.159

IP Abuse Reports for 104.248.172.159:

This IP address has been reported a total of 28 times from 25 distinct sources. 104.248.172.159 was first reported on January 11th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-14 08:46:33 (1 hour ago)	tcp/3306	Port Scan
🇺🇸 xmission.com	2026-06-14 08:16:47 (1 hour ago)	Blocked by UFW (TCP on 8089) Source port: 61007 TTL: 239 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8089) Source port: 61007 TTL: 239 Packet length: 44 TOS: 0x08 This report (for 104.248.172.159) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇺 trentwiles.com	2026-04-28 01:36:28 (1 month ago)	Unauthorized connection attempt detected from IP address 104.248.172.159 to port 8083 [SYD]	Port Scan
🇺🇸 MPL	2026-04-28 00:26:29 (1 month ago)	tcp/8082 (2 or more attempts)	Port Scan
🇦🇺 svejk	2026-03-27 06:44:00 (2 months ago)	[27/Mar/2026:02:47:49 +1030] "GET / HTTP/1.1" 444 0 ...Ports scanning nuisance. Banned!	Port Scan Bad Web Bot Phishing
🇦🇹 urnilxfgbez	2026-03-26 23:45:00 (2 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
Anonymous	2026-03-26 16:38:27 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 Elias Schreiner	2026-03-15 01:06:20 (2 months ago)	Reported by fail2ban SSH jail	Brute-Force SSH
🇸🇬 dankmemer3920	2026-03-15 01:01:15 (2 months ago)	2026-03-15T00:57:41.251235+00:00 mc sshd[864746]: Invalid user admin from 104.248.172.159 port 40916 ... show more 2026-03-15T00:57:41.251235+00:00 mc sshd[864746]: Invalid user admin from 104.248.172.159 port 40916 2026-03-15T00:58:34.741141+00:00 mc sshd[882187]: Invalid user admin from 104.248.172.159 port 40910 2026-03-15T00:59:23.067648+00:00 mc sshd[898513]: Invalid user admin from 104.248.172.159 port 40800 2026-03-15T01:00:18.812207+00:00 mc sshd[916252]: Invalid user admin from 104.248.172.159 port 45292 2026-03-15T01:01:15.351807+00:00 mc sshd[935835]: Invalid user admin from 104.248.172.159 port 51336 ... show less	Brute-Force SSH
🇨🇦 Josh S.	2026-03-15 01:00:58 (2 months ago)	2026-03-14T19:57:25.300712-05:00 nextcloud sshd[3917413]: Invalid user admin from 104.248.172.159 po ... show more 2026-03-14T19:57:25.300712-05:00 nextcloud sshd[3917413]: Invalid user admin from 104.248.172.159 port 42808 2026-03-14T19:58:19.498045-05:00 nextcloud sshd[3931286]: Invalid user admin from 104.248.172.159 port 60314 2026-03-14T19:59:09.017980-05:00 nextcloud sshd[3944182]: Invalid user admin from 104.248.172.159 port 39058 2026-03-14T19:59:56.339610-05:00 nextcloud sshd[3955918]: Invalid user admin from 104.248.172.159 port 39632 2026-03-14T20:00:58.100294-05:00 nextcloud sshd[3971810]: Invalid user admin from 104.248.172.159 port 60584 ... show less	Brute-Force SSH
🇩🇪 odin	2026-03-15 00:59:50 (2 months ago)	Log Entry: 2026-03-15T00:58:12987 abuse sshd[2016298]: Invalid user admin from 104.248.172.159 port ... show more Log Entry: 2026-03-15T00:58:12987 abuse sshd[2016298]: Invalid user admin from 104.248.172.159 port 56650 Log Entry: 2026-03-15T00:59:01982 abuse sshd[2016375]: Invalid user admin from 104.248.172.159 port 44420 Log Entry: 2026-03-15T00:59:49762 abuse sshd[2016434]: Invalid user admin from 104.248.172.159 port 45762 Log Entry: ... show less	Brute-Force SSH
Anonymous	2026-03-15 00:59:21 (2 months ago)	Mar 15 00:57:42 ns5024002 sshd[1376308]: Failed password for invalid user admin from 104.248.172.159 ... show more Mar 15 00:57:42 ns5024002 sshd[1376308]: Failed password for invalid user admin from 104.248.172.159 port 41358 ssh2 Mar 15 00:58:33 ns5024002 sshd[1377056]: Invalid user admin from 104.248.172.159 port 60816 Mar 15 00:58:33 ns5024002 sshd[1377056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.172.159 Mar 15 00:58:36 ns5024002 sshd[1377056]: Failed password for invalid user admin from 104.248.172.159 port 60816 ssh2 Mar 15 00:59:21 ns5024002 sshd[1377794]: Invalid user admin from 104.248.172.159 port 59958 ... show less	Brute-Force SSH
🇺🇸 kipfel★	2026-03-15 00:59:16 (2 months ago)	2026-03-14T20:57:33.243270-04:00 ovh-vm-us-starter-97-vin sshd[1288891]: Invalid user admin from 104 ... show more 2026-03-14T20:57:33.243270-04:00 ovh-vm-us-starter-97-vin sshd[1288891]: Invalid user admin from 104.248.172.159 port 43194 2026-03-14T20:58:27.062162-04:00 ovh-vm-us-starter-97-vin sshd[1288894]: Invalid user admin from 104.248.172.159 port 57378 2026-03-14T20:59:16.233738-04:00 ovh-vm-us-starter-97-vin sshd[1288896]: Invalid user admin from 104.248.172.159 port 48116 ... show less	Brute-Force SSH
🇨🇦 Psycho Solutions LLC	2026-03-15 00:59:05 (2 months ago)	Active SSH brute-force detected. Logs: 2026-03-15T00:57:24.699385+00:00 VPS-US-EAST sshd[24310]: Fai ... show more Active SSH brute-force detected. Logs: 2026-03-15T00:57:24.699385+00:00 VPS-US-EAST sshd[24310]: Failed password for invalid user admin from 104.248.172.159 port 37314 ssh2 2026-03-15T00:58:15.397175+00:00 VPS-US-EAST sshd[24313]: Invalid user admin fr... show less	SSH Brute-Force
Anonymous	2026-03-15 00:58:59 (2 months ago)	Large amount of failed SSH access attempts (brute-force)	Brute-Force SSH

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 144.48.241.162

🇨🇳 121.89.82.0

🇺🇸 107.175.16.36

🇺🇸 50.121.186.125

🇨🇴 206.62.136.109

🇭🇰 199.45.155.85

🇮🇩 157.15.40.77

🇳🇱 81.19.216.120

🇳🇱 64.188.77.26

🇺🇸 48.216.242.54

🇳🇱 45.148.10.141

🇬🇧 35.203.210.59

🇬🇧 217.146.80.107

🇩🇪 167.233.123.103

🇨🇳 115.190.127.7

🇺🇸 54.210.155.69

🇮🇳 49.43.241.11

🇺🇸 40.76.125.17

🇺🇸 209.222.101.54

🇳🇱 185.251.44.90