JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.248.197.157

104.248.197.157 was found in our database!

This IP was reported 377 times. Confidence of Abuse is 20%: ?

20%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.248.197.157

Whois 104.248.197.157

IP Abuse Reports for 104.248.197.157:

This IP address has been reported a total of 377 times from 212 distinct sources. 104.248.197.157 was first reported on October 24th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-24 08:54:49 (2 weeks ago)	Drop from IP address 104.248.197.157 to tcp-port 1133	Port Scan
🇺🇸 MPL	2026-05-10 09:20:32 (1 month ago)	tcp/22	Port Scan
🇳🇱 StopAbuse	2026-05-10 09:19:47 (1 month ago)	tcp/1245	Port Scan
🇹🇷 Threat.live	2026-05-08 19:20:04 (1 month ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 xmission.com	2026-04-23 10:26:51 (1 month ago)	Blocked by UFW (TCP on 80) Source port: 61012 TTL: 238 Packet length: 44 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 61012 TTL: 238 Packet length: 44 TOS: 0x08 This report (for 104.248.197.157) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-04-08 23:08:04 (2 months ago)	Fail2Ban - [SSH]Brute-force login attempts on sshd ... [ice01,ice02,wa02]	Brute-Force SSH
🇫🇷 SpaceHost-Server	2026-02-22 23:26:36 (3 months ago)		Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2026-02-22 20:11:42 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 mueslo	2026-02-22 19:47:40 (3 months ago)	2026-02-21T00:21:43.436043+01:00 hyperion sshd-session[97454]: Failed password for invalid user test ... show more 2026-02-21T00:21:43.436043+01:00 hyperion sshd-session[97454]: Failed password for invalid user test from 104.248.197.157 port 46656 ssh2 2026-02-21T00:21:41.329380+01:00 hyperion sshd-session[97454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.197.157 2026-02-21T00:21:41.417311+01:00 hyperion sshd-session[97454]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.197.157 user=test 2026-02-21T00:21:43.436043+01:00 hyperion sshd-session[97454]: Failed password for invalid user test from 104.248.197.157 port 46656 ssh2 2026-02-21T00:22:24.051075+01:00 hyperion sshd-session[97524]: Invalid user test from 104.248.197.157 port 51322 2026-02-21T00:22:24.051075+01:00 hyperion sshd-session[97524]: Invalid user test from 104.248.197.157 port 51322 show less	Brute-Force SSH
Anonymous	2026-02-21 01:42:55 (3 months ago)	Port Scanner	Port Scan
🇫🇮 6kilowatti	2026-02-21 00:20:15 (3 months ago)	2026-02-21T02:20:14.607736+02:00 mummo sshd[2340608]: Invalid user pi from 104.248.197.157 port 4514 ... show more 2026-02-21T02:20:14.607736+02:00 mummo sshd[2340608]: Invalid user pi from 104.248.197.157 port 45148 ... show less	Brute-Force SSH
🇩🇪 ddos-report	2026-02-21 00:19:50 (3 months ago)	Feb 21 01:18:57 v220241135696295643 sshd[24492]: Invalid user pi from 104.248.197.157 port 46708 Feb ... show more Feb 21 01:18:57 v220241135696295643 sshd[24492]: Invalid user pi from 104.248.197.157 port 46708 Feb 21 01:18:57 v220241135696295643 sshd[24492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.197.157 Feb 21 01:18:57 v220241135696295643 sshd[24492]: Invalid user pi from 104.248.197.157 port 46708 Feb 21 01:19:00 v220241135696295643 sshd[24492]: Failed password for invalid user pi from 104.248.197.157 port 46708 ssh2 Feb 21 01:19:44 v220241135696295643 sshd[24499]: Invalid user pi from 104.248.197.157 port 37320 ... show less	Brute-Force SSH
🇦🇹 siprof	2026-02-21 00:15:39 (3 months ago)	Feb 21 01:14:07 server sshd[907549]: Failed password for invalid user postgres from 104.248.197.157 ... show more Feb 21 01:14:07 server sshd[907549]: Failed password for invalid user postgres from 104.248.197.157 port 55134 ssh2 Feb 21 01:14:53 server sshd[907556]: Invalid user postgres from 104.248.197.157 port 49842 Feb 21 01:14:54 server sshd[907556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.197.157 Feb 21 01:14:56 server sshd[907556]: Failed password for invalid user postgres from 104.248.197.157 port 49842 ssh2 Feb 21 01:15:39 server sshd[907577]: Invalid user pi from 104.248.197.157 port 48682 ... show less	Brute-Force SSH
🇧🇷 Felipe Brunelli de Andrade	2026-02-21 00:10:10 (3 months ago)	2026-02-20T21:09:20.870120-03:00 dns1 sshd[11833]: Failed password for invalid user postgres from 10 ... show more 2026-02-20T21:09:20.870120-03:00 dns1 sshd[11833]: Failed password for invalid user postgres from 104.248.197.157 port 53754 ssh2 2026-02-20T21:09:22.805800-03:00 dns1 sshd[11833]: Connection closed by invalid user postgres 104.248.197.157 port 53754 [preauth] 2026-02-20T21:10:06.718833-03:00 dns1 sshd[11841]: Invalid user postgres from 104.248.197.157 port 44100 2026-02-20T21:10:07.069895-03:00 dns1 sshd[11841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.197.157 2026-02-20T21:10:09.068964-03:00 dns1 sshd[11841]: Failed password for invalid user postgres from 104.248.197.157 port 44100 ssh2 show less	Brute-Force SSH
🇫🇮 6kilowatti	2026-02-21 00:04:37 (3 months ago)	2026-02-21T02:04:37.509591+02:00 mummo sshd[2337156]: Invalid user postgres from 104.248.197.157 por ... show more 2026-02-21T02:04:37.509591+02:00 mummo sshd[2337156]: Invalid user postgres from 104.248.197.157 port 45796 ... show less	Brute-Force SSH

Showing 1 to 15 of 377 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 152.32.239.90

🇨🇳 115.203.234.94

🇺🇸 216.169.136.151

🇺🇸 162.216.149.180

🇷🇴 85.121.245.186

🇷🇺 46.158.215.211

🇺🇦 178.212.243.18

🇺🇸 165.154.254.143

🇰🇷 112.216.129.27

🇷🇴 80.94.92.182

🇳🇱 45.198.224.143

🇧🇷 45.4.151.119

🇳🇱 5.187.35.142

🇧🇷 187.49.63.41

🇭🇰 185.216.119.190

🇬🇧 165.232.111.136

🇮🇳 103.199.123.104

🇫🇷 91.231.89.41

🇫🇷 85.217.140.41

🇫🇷 54.38.241.200