JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.245.251.104

157.245.251.104 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Hostname(s)	prod-beryllium-nyc1-26.do.binaryedge.ninja
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	North Bergen, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.245.251.104

Whois 157.245.251.104

IP Abuse Reports for 157.245.251.104:

This IP address has been reported a total of 145 times from 50 distinct sources. 157.245.251.104 was first reported on April 17th 2025, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-05-26 23:57:13 (1 week ago)	tcp/3330	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-26 11:37:26 (1 week ago)	Honeypot hit: Unauthorized traffic (19 bytes of payload); 3325 [3] TCP	Port Scan
🇺🇸 MPL	2026-05-26 09:30:16 (1 week ago)	tcp/8443	Port Scan
🇩🇪 dispaisyenterprises	2026-05-25 19:40:32 (1 week ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 3318 [39] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 3318 [39] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 xmission.com	2026-05-25 19:15:02 (1 week ago)	Blocked by UFW (TCP on 3318) Source port: 56010 TTL: 240 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 3318) Source port: 56010 TTL: 240 Packet length: 44 TOS: 0x08 This report (for 157.245.251.104) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇦 dpinse	2026-05-25 16:09:06 (1 week ago)	Honeypot [honeypot-ca-sensor1]: Unauthorized traffic on 27017/mongod	Port Scan
🇲🇹 neilcaruana	2026-05-25 15:30:05 (1 week ago)	Sentinel detected an attack on port [3316]	Hacking
🇺🇸 MPL	2026-05-25 10:58:26 (1 week ago)	tcp/5900 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-05-25 10:58:26 (1 week ago)	tcp/5900	Port Scan
🇺🇸 MPL	2026-05-25 07:50:28 (1 week ago)	tcp/3315	Port Scan
🇳🇱 DonAtari	2026-05-25 05:20:43 (1 week ago)	DShield firewall scan - TCP to port 3313	Brute-Force SSH
🇺🇸 MPL	2026-05-25 04:42:16 (1 week ago)	tcp/3313 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-05-25 04:42:16 (1 week ago)	tcp/3313	Port Scan
🇩🇪 excill	2026-05-25 03:04:33 (1 week ago)	Honeypot mesh observed 39 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
🇺🇸 donarev419	2026-05-25 02:19:35 (1 week ago)	Connection to port 3311 with data transfer. Data preview:	Port Scan Hacking

Showing 76 to 90 of 145 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 213.177.179.126

🇩🇪 213.165.35.72

🇳🇱 204.76.203.222

🇬🇧 185.91.69.65

🇹🇼 128.14.227.52

🇮🇳 116.73.240.74

🇨🇳 106.12.212.9

🇫🇷 94.23.188.193

🇺🇸 66.132.186.185

🇮🇳 64.227.171.209

🇺🇸 64.62.197.166

🇲🇽 46.250.175.6

🇭🇰 23.249.28.115

🇧🇷 191.0.106.37

🇩🇪 185.176.94.38

🇨🇳 106.75.144.134

🇵🇱 87.251.64.141

🇷🇴 80.94.92.187

🇺🇸 67.207.92.95

🇫🇷 54.37.118.76