JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 152.42.203.248

152.42.203.248 was found in our database!

This IP was reported 73 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 152.42.203.248

Whois 152.42.203.248

IP Abuse Reports for 152.42.203.248:

This IP address has been reported a total of 73 times from 71 distinct sources. 152.42.203.248 was first reported on June 11th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 dwmosaics	2026-06-11 09:32:24 (2 days ago)	refused connect from 152.42.203.248 (152.42.203.248)	Brute-Force SSH
🇩🇪 dispaisyenterprises	2026-06-11 09:18:42 (2 days ago)	Honeypot [fra-de-honeypot]: Brute-force attack detected on 22/SSH • Credentials: root:MoeClub.org, r ... show more Honeypot [fra-de-honeypot]: Brute-force attack detected on 22/SSH • Credentials: root:MoeClub.org, root:cxthhhhh.com, root:Minijer.com, root:LeitboGi0ro, root:IdcOffer.com, root:Pwd@CentOS, root:Pwd@Linux • Number of login attempts: 7 • 1 command(s) were executed during the session • Client: SSH-2.0-Go Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Brute-Force SSH Hacking
🇩🇪 webanyone	2026-06-11 09:15:28 (2 days ago)	SSH abuse or brute-force attack detected by Fail2Ban in ssh jail	Brute-Force SSH
Anonymous	2026-06-11 09:06:08 (2 days ago)	2026-06-11T11:06:07.327083+02:00 ubuntu sshd-session[1772857]: Failed password for root from 152.42. ... show more 2026-06-11T11:06:07.327083+02:00 ubuntu sshd-session[1772857]: Failed password for root from 152.42.203.248 port 46900 ssh2 2026-06-11T11:06:05.165332+02:00 ubuntu sshd-session[1772860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.203.248 user=root 2026-06-11T11:06:07.397487+02:00 ubuntu sshd-session[1772860]: Failed password for root from 152.42.203.248 port 46910 ssh2 2026-06-11T11:06:05.159576+02:00 ubuntu sshd-session[1772858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.203.248 user=root 2026-06-11T11:06:07.421980+02:00 ubuntu sshd-session[1772858]: Failed password for root from 152.42.203.248 port 46924 ssh2 ... show less	Brute-Force
🇫🇷 largo-it.net	2026-06-11 09:05:36 (2 days ago)	Jun 11 11:05:35 vps-9f3cdc33 sshd[437201]: Failed password for root from 152.42.203.248 port 34232 s ... show more Jun 11 11:05:35 vps-9f3cdc33 sshd[437201]: Failed password for root from 152.42.203.248 port 34232 ssh2 Jun 11 11:05:35 vps-9f3cdc33 sshd[437202]: Failed password for root from 152.42.203.248 port 34242 ssh2 Jun 11 11:05:35 vps-9f3cdc33 sshd[437204]: Failed password for root from 152.42.203.248 port 34222 ssh2 Jun 11 11:05:35 vps-9f3cdc33 sshd[437203]: Failed password for root from 152.42.203.248 port 34206 ssh2 Jun 11 11:05:36 vps-9f3cdc33 sshd[437211]: Failed password for root from 152.42.203.248 port 34230 ssh2 ... show less	Brute-Force SSH Hacking
🇨🇦 danielw	2026-06-11 09:05:14 (2 days ago)	2026-06-11T09:05:13.041927+00:00 vpn-tor sshd[1055741]: Failed password for root from 152.42.203.248 ... show more 2026-06-11T09:05:13.041927+00:00 vpn-tor sshd[1055741]: Failed password for root from 152.42.203.248 port 43044 ssh2 2026-06-11T09:05:10.870470+00:00 vpn-tor sshd[1055739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.203.248 user=root 2026-06-11T09:05:13.053948+00:00 vpn-tor sshd[1055739]: Failed password for root from 152.42.203.248 port 43028 ssh2 2026-06-11T09:05:10.888852+00:00 vpn-tor sshd[1055740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.203.248 user=root 2026-06-11T09:05:13.078295+00:00 vpn-tor sshd[1055740]: Failed password for root from 152.42.203.248 port 43074 ssh2 ... show less	Brute-Force SSH
🇺🇸 paradoxnetworks	2026-06-11 09:04:53 (2 days ago)	2026-06-11T09:04:52.254922+00:00 edge-con-sjc01.int.pdx.net.uk sshd[3884624]: Failed password for ro ... show more 2026-06-11T09:04:52.254922+00:00 edge-con-sjc01.int.pdx.net.uk sshd[3884624]: Failed password for root from 152.42.203.248 port 38518 ssh2 2026-06-11T09:04:50.482115+00:00 edge-con-sjc01.int.pdx.net.uk sshd[3884627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.203.248 user=root 2026-06-11T09:04:52.255014+00:00 edge-con-sjc01.int.pdx.net.uk sshd[3884627]: Failed password for root from 152.42.203.248 port 38578 ssh2 ... show less	Brute-Force SSH
🇨🇦 Psycho Solutions LLC	2026-06-11 09:04:01 (2 days ago)	Active SSH brute-force detected. Logs: Jun 11 11:04:00 AVM-708122 sshd[28296]: Failed password for r ... show more Active SSH brute-force detected. Logs: Jun 11 11:04:00 AVM-708122 sshd[28296]: Failed password for root from 152.42.203.248 port 58166 ssh2 Jun 11 11:03:58 AVM-708122 sshd[28297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=s... show less	SSH Brute-Force
🇨🇭 cybsecaoccol	2026-06-11 09:02:34 (2 days ago)	multiple malicious connection attempts on tcp port 22 - sch	DDoS Attack Port Scan Hacking Brute-Force
🇩🇪 PieKnu	2026-06-11 09:02:05 (2 days ago)	Jun 11 09:02:04 host sshd[1455300]: Failed password for root from 152.42.203.248 port 48844 ssh2 Jun ... show more Jun 11 09:02:04 host sshd[1455300]: Failed password for root from 152.42.203.248 port 48844 ssh2 Jun 11 09:02:02 host sshd[1455301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.203.248 user=root Jun 11 09:02:04 host sshd[1455301]: Failed password for root from 152.42.203.248 port 48880 ssh2 Jun 11 09:02:02 host sshd[1455302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.203.248 user=root Jun 11 09:02:04 host sshd[1455302]: Failed password for root from 152.42.203.248 port 48868 ssh2 ... show less	Brute-Force SSH
🇩🇪 sbajic	2026-06-11 09:01:41 (2 days ago)	Jun 11 11:01:40 themis sshd-session[612514]: User root from 152.42.203.248 not allowed because none ... show more Jun 11 11:01:40 themis sshd-session[612514]: User root from 152.42.203.248 not allowed because none of user's groups are listed in AllowGroups Jun 11 11:01:40 themis sshd-session[612517]: User root from 152.42.203.248 not allowed because none of user's groups are listed in AllowGroups Jun 11 11:01:40 themis sshd-session[612513]: User root from 152.42.203.248 not allowed because none of user's groups are listed in AllowGroups ... show less	Brute-Force SSH
🇯🇵 demonsword	2026-06-11 09:00:10 (2 days ago)	SSH brute-force detected: 7 failed login attempts in the last 1 hour.	Brute-Force SSH
🇨🇿 Countryman	2026-06-11 08:59:26 (2 days ago)	repeated unauthorized connection attempts, host sweep, port 22	Hacking Brute-Force
Anonymous	2026-06-11 08:56:26 (2 days ago)	1781168185 - 06/11/2026 10:56:25 Host: 152.42.203.248/152.42.203.248 Port: 22 TCP Blocked ...	Port Scan
🇩🇪 ZIME	2026-06-11 08:56:11 (2 days ago)	UFW BLOCK Report: Total attempts: 8 Top ports and details: - Port 22 (8x): SSH Brute-Force (e. ... show more UFW BLOCK Report: Total attempts: 8 Top ports and details: - Port 22 (8x): SSH Brute-Force (e.g., CVE-2024-6387 regreSSHion, botnets like Mirai, Mozi) Source IP: 152.42.203.248 \| this report is autogenerated by ZIME Cloud show less	Brute-Force SSH

Showing 1 to 15 of 73 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇴 200.105.141.172

🇳🇴 185.12.59.118

🇨🇳 171.113.110.195

🇮🇳 163.223.54.21

🇺🇸 154.83.197.96

🇺🇸 134.33.66.164

🇳🇱 93.88.205.191

🇷🇴 80.94.92.177

🇱🇹 45.227.254.170

🇺🇸 20.102.134.101

🇺🇸 3.18.108.78

🇰🇷 218.144.90.40

🇫🇮 138.124.5.60

🇯🇵 124.18.182.99

🇳🇱 91.92.40.8

🇺🇸 20.9.67.71

🇰🇷 1.235.192.214

🇰🇷 222.116.33.50

🇧🇷 206.0.11.186

🇺🇸 199.193.125.58