JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.248.240.44

104.248.240.44 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Hostname(s)	antonellapedone.com
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.248.240.44

Whois 104.248.240.44

IP Abuse Reports for 104.248.240.44:

This IP address has been reported a total of 151 times from 121 distinct sources. 104.248.240.44 was first reported on February 26th 2026, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 thetomtaylor.co.uk	2026-04-07 13:14:29 (2 months ago)	Fail2Ban - [SSH]Brute-force login attempts on sshd ... [ice01]	Brute-Force SSH
🇨🇳 ThreatBook.io	2026-04-03 00:41:51 (2 months ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/104.248.240.44 2026 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/104.248.240.44 2026-04-02 15:13:58 / 2026-04-02 15:13:58 / 2026-04-02 15:13:59 /nice%20ports%2C/Tri%6Eity.txt%2ebak show less	SSH
🇹🇷 ozyurterdem	2026-04-02 04:00:24 (2 months ago)	SiberKale NMS AI (Istanbul/TR): SSH brute-force (18 attempts). Gained shell, executed 0 commands. Au ... show more SiberKale NMS AI (Istanbul/TR): SSH brute-force (18 attempts). Gained shell, executed 0 commands. Automated threat detection. show less	Brute-Force SSH Hacking
🇺🇸 musicwolf83	2026-04-01 22:23:58 (2 months ago)	2026-04-01 16:23:57.334022676 2026-04-01T22:23:57.333Z ACCEPT host=::ffff:104.248.240.44 port=20511 ... show more 2026-04-01 16:23:57.334022676 2026-04-01T22:23:57.333Z ACCEPT host=::ffff:104.248.240.44 port=20511 fd=5 n=2/4096 ... show less	Brute-Force SSH
🇺🇸 bulkvm.com	2026-04-01 19:57:53 (2 months ago)	[bulkvm.com/honeypot] Generic HTTP. Port: 14791, request: GET / HTTP/1.0 , Time: 2026-04-01 19:57:45 ... show more [bulkvm.com/honeypot] Generic HTTP. Port: 14791, request: GET / HTTP/1.0 , Time: 2026-04-01 19:57:45 UTC show less	Hacking
🇺🇦 llighthunter	2026-04-01 18:38:08 (2 months ago)	Apr 1 21:38:06 mail postfix/submission/smtpd[16760]: lost connection after CONNECT from unknown[104 ... show more Apr 1 21:38:06 mail postfix/submission/smtpd[16760]: lost connection after CONNECT from unknown[104.248.240.44] Apr 1 21:38:06 mail postfix/submission/smtpd[16760]: improper command pipelining after CONNECT from unknown[104.248.240.44]: EHLO\r\n show less	Hacking SSH
🇺🇸 jkhorvath.com	2026-04-01 11:46:54 (2 months ago)	Unknown SMTP Client 104.248.240.44	Email Spam Brute-Force
🇺🇸 Axel	2026-04-01 08:10:09 (2 months ago)	SSH login attempts (endlessh): 2026-04-01T04:00:47.189Z ACCEPT host=::ffff:104.248.240.44 port=6233 ... show more SSH login attempts (endlessh): 2026-04-01T04:00:47.189Z ACCEPT host=::ffff:104.248.240.44 port=6233 fd=6 n=3/4096 show less	Brute-Force SSH
🇳🇱 Eric	2026-04-01 08:08:37 (2 months ago)	[Wed Apr 01 08:08:36.979070 2026] [security2:error] [pid 203811:tid 203811] [client 104.248.240.44:3 ... show more [Wed Apr 01 08:08:36.979070 2026] [security2:error] [pid 203811:tid 203811] [client 104.248.240.44:32871] [client 104.248.240.44] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "94.209.38.171"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "94.209.38.171"] [uri "/sdk"] [unique_id "aczShPS8kaixEAdxN6Z3zgAAABY"] [Wed Apr 01 08:08:36.978444 2026] [security2:error] [pid 19632:tid 19632] [client 104.248.240.44:30373] [client 104.248.240.44] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350 ... show less	Hacking Web App Attack
🇺🇸 Axel	2026-04-01 04:01:42 (2 months ago)	SSH login attempts (endlessh): 2026-04-01T04:00:30.948Z ACCEPT host=::ffff:104.248.240.44 port=12473 ... show more SSH login attempts (endlessh): 2026-04-01T04:00:30.948Z ACCEPT host=::ffff:104.248.240.44 port=12473 fd=5 n=2/4096 show less	Brute-Force SSH
🇷🇺 nyuuzyou	2026-04-01 02:44:57 (2 months ago)	{"action": "connection", "dest_ip": "0.0.0.0", "dest_port": "21", "server": "ftp_server", "src_ip": ... show more {"action": "connection", "dest_ip": "0.0.0.0", "dest_port": "21", "server": "ftp_server", "src_ip": "104.248.240.44", "src_port": "17615", "timestamp": "2026-04-01T02:43:59.645785"} show less	Port Scan FTP Brute-Force
🇺🇸 antlac1	2026-04-01 01:44:39 (2 months ago)	crowdsecurity/http-probing	Brute-Force Web App Attack
🇺🇸 drewf.ink	2026-03-31 14:34:54 (2 months ago)	[14:34] Port scanning. Port(s) scanned: TCP/5000	Port Scan
🇹🇭 MWA SOC	2026-03-31 07:02:00 (2 months ago)		Hacking
🇺🇸 kosada.com	2026-03-30 21:02:10 (2 months ago)	Web vulnerability probing: /odinhttpcall1774904530	Web App Attack

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 185.174.103.224

fe80::7a9a:18ff:fe2e:e8a4

🇹🇼 198.235.24.36

🇳🇱 193.176.31.248

🇦🇺 172.217.32.220

🇺🇸 172.173.200.62

🇰🇷 123.254.88.150

🇨🇳 117.83.83.235

🇨🇳 115.28.77.246

🇭🇰 43.155.40.91

🇨🇦 4.204.204.10

🇳🇱 193.176.31.231

🇳🇱 192.178.116.16

🇻🇳 183.80.38.3

🇬🇧 165.154.129.220

🇺🇸 164.92.76.238

🇨🇿 159.26.111.3

🇩🇪 69.5.169.177

🇺🇸 50.62.135.24

🇸🇬 43.134.113.217