JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.248.80.244

104.248.80.244 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.248.80.244

Whois 104.248.80.244

IP Abuse Reports for 104.248.80.244:

This IP address has been reported a total of 7 times from 4 distinct sources. 104.248.80.244 was first reported on June 2nd 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2024-08-27 17:08:10 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 104.248.80.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 104.248.80.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 27 13:08:03.918601 2024] [security2:error] [pid 9817:tid 9817] [client 104.248.80.244:37994] [client 104.248.80.244] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 134.19.179.243 (0+1 hits since last alert)\|www.prostar.industries\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.prostar.industries"] [uri "/xmlrpc.php"] [unique_id "Zs4H8-VN5uvo60QF5C6NmgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-25 03:07:08 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 104.248.80.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 104.248.80.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 24 23:07:00.773932 2024] [security2:error] [pid 5762:tid 5762] [client 104.248.80.244:37498] [client 104.248.80.244] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 141.98.102.179 (0+1 hits since last alert)\|www.puckerbackbikini.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.puckerbackbikini.com"] [uri "/xmlrpc.php"] [unique_id "Zsqf1As2zEhVv7jTUZfElAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-22 21:58:42 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 104.248.80.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 104.248.80.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 22 17:58:38.114603 2024] [security2:error] [pid 388:tid 388] [client 104.248.80.244:39930] [client 104.248.80.244] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 213.152.176.135 (+1 hits since last alert)\|www.victorvictor.biz\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.victorvictor.biz"] [uri "/xmlrpc.php"] [unique_id "Zse0juHuw3fydSNAQCg43gAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-19 08:15:20 (1 year ago)	(mod_security) mod_security (id:240335) triggered by 104.248.80.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 104.248.80.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Aug 19 04:15:15.215601 2024] [security2:error] [pid 17212:tid 17216] [client 104.248.80.244:34180] [client 104.248.80.244] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 109.248.148.246 (0+1 hits since last alert)\|rockabyecotons.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "rockabyecotons.com"] [uri "/xmlrpc.php"] [unique_id "ZsL_E2Ci7pJwIXG9u7B4lQAAAMI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Block_Steady_Crew	2023-10-13 07:50:13 (2 years ago)	Honeypot snared from 104.248.80.244	Port Scan Web App Attack
🇺🇸 MPL	2023-10-13 07:49:01 (2 years ago)	tcp/443 (2 or more attempts)	Port Scan
Anonymous	2023-06-02 08:49:09 (3 years ago)	Common attack or app scan event detected and blocked	Port Scan Hacking Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 202.46.62.66

🇳🇱 45.148.10.151

🇵🇷 24.50.255.69

🇭🇰 190.92.237.24

🇨🇱 190.46.77.254

🇿🇦 147.136.66.132

🇿🇦 105.233.67.36

🇵🇰 103.86.132.251

🇿🇦 41.181.156.205

🇨🇳 27.18.96.55

🇨🇳 222.208.37.109

🇺🇸 172.234.25.243

🇮🇹 151.79.192.73

🇺🇸 142.93.194.165

🇮🇳 120.138.12.59

🇮🇩 103.49.239.60

🇮🇳 74.125.178.213

🇺🇸 66.132.186.162

🇺🇸 50.84.211.204

🇹🇼 49.213.180.202