JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.38.206.248

209.38.206.248 was found in our database!

This IP was reported 58 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.38.206.248

Whois 209.38.206.248

IP Abuse Reports for 209.38.206.248:

This IP address has been reported a total of 58 times from 42 distinct sources. 209.38.206.248 was first reported on May 29th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 gu-alvareza	2026-06-23 07:05:12 (1 day ago)	Nmap.Script.Scanner	Port Scan
🇩🇪 auridh	2026-06-22 11:57:43 (2 days ago)	Ip 209.38.206.248 performed 'crowdsecurity/postfix-non-smtp-command' (1 events over 0s) at 2026-06-2 ... show more Ip 209.38.206.248 performed 'crowdsecurity/postfix-non-smtp-command' (1 events over 0s) at 2026-06-22 11:04:31.841593746 +0000 UTC show less	Hacking
🇺🇸 anon333	2026-06-22 08:06:15 (2 days ago)	Invalid HTTP port 80 probes to server T0406	Hacking Exploited Host
🇩🇪 Roper123	2026-06-22 07:44:35 (2 days ago)	Web exploits	Web App Attack
🇺🇸 kosada.com	2026-06-22 05:43:25 (2 days ago)	Web vulnerability probing: /HNAP1 (bogus vhost/SNI)	Web App Attack
🇹🇭 MWA SOC	2026-06-21 20:34:06 (3 days ago)		Hacking
🇺🇸 www.winos.me	2026-06-21 19:21:21 (3 days ago)	Shield: Layer4 Port 9 Trap	Port Scan Hacking
Anonymous	2026-06-21 11:07:23 (3 days ago)	PAD: ModSec_Scanner!,Bad_Web_Bot_D detected	Bad Web Bot
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-20 14:17:00 (4 days ago)	Honeypot hit: Empty payload (likely service probe); 4891 [15] TCP	Port Scan
🇦🇪 abusiveIntelligence	2026-06-20 13:00:00 (4 days ago)	RDP connect attempt: Nmap Scanner	Brute-Force
🇩🇪 mfilser	2026-06-18 02:21:32 (6 days ago)	2026-06-18T04:21:24.513624+02:00 mail postfix/submission/smtpd[6834]: lost connection after CONNECT ... show more 2026-06-18T04:21:24.513624+02:00 mail postfix/submission/smtpd[6834]: lost connection after CONNECT from unknown[209.38.206.248] 2026-06-18T04:21:32.025506+02:00 mail postfix/submission/smtpd[6834]: lost connection after EHLO from unknown[209.38.206.248] ... show less	Brute-Force
🇩🇪 Kreisausschuss des Odenwaldkreises	2026-06-17 18:36:36 (1 week ago)	HAProxy NOSRV or BADREQ	Web App Attack
🇩🇪 itak	2026-06-17 18:29:11 (1 week ago)	postfix Server Abuse - invalid commands, non-standard protocol, non-FQDN, unauthorized attempt to us ... show more postfix Server Abuse - invalid commands, non-standard protocol, non-FQDN, unauthorized attempt to use as a relay, trying to deliver spam, etc. show less	DDoS Attack Email Spam Port Scan Brute-Force
🇩🇪 MBombeck	2026-06-17 15:47:07 (1 week ago)	Fail2Ban/traefik-botsearch on ops-01.bombeck.io: banned after 5 failures	Web App Attack
🇮🇹 NukeDuke	2026-06-17 10:31:06 (1 week ago)	209.38.206.248 abuse ...	Port Scan Hacking

Showing 1 to 15 of 58 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.217

🇺🇸 162.216.149.242

🇺🇸 146.190.37.241

🇨🇳 124.31.106.169

🇮🇩 117.102.86.226

🇹🇳 102.31.250.108

🇲🇽 200.57.190.209

🇨🇴 190.26.154.250

🇺🇸 162.216.149.236

🇹🇼 128.14.239.217

🇨🇳 118.145.107.219

🇳🇱 91.92.40.10

🇷🇴 2.57.121.112

🇧🇷 179.42.96.134

🇩🇪 134.122.93.100

🇮🇳 113.11.231.104

🇫🇷 85.217.140.23

🇨🇳 60.223.250.50

🇫🇷 31.36.163.95

🇺🇸 13.57.35.46