JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.223.231.234

159.223.231.234 was found in our database!

This IP was reported 206 times. Confidence of Abuse is 36%: ?

36%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.223.231.234

Whois 159.223.231.234

IP Abuse Reports for 159.223.231.234:

This IP address has been reported a total of 206 times from 110 distinct sources. 159.223.231.234 was first reported on September 2nd 2022, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ValtonTahiri	2026-06-07 13:21:48 (4 days ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=159.223.231.234; proto=TCP; source_port=61011; target_port=8085; flags=SYN show less	Port Scan
🇫🇷 dynamix	2026-05-12 00:39:27 (4 weeks ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-05-11 17:59:14 (1 month ago)	159.223.231.234 - - [11/May/2026:19:58:11 +0200] "GET /alfacgiapi/perl.alfa HTTP/1.1" 404 23544 "-" ... show more 159.223.231.234 - - [11/May/2026:19:58:11 +0200] "GET /alfacgiapi/perl.alfa HTTP/1.1" 404 23544 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 159.223.231.234 - - [11/May/2026:19:58:26 +0200] "GET /alfacgiapi/perl.alfa HTTP/1.1" 404 16450 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 159.223.231.234 - - [11/May/2026:19:58:26 +0200] "GET /alfacgiapi/bash.alfa HTTP/1.1" 404 16450 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" 159.223.231.234 - - [11/May/2026:19:58:26 +0200] "GET /alfacgiapi/bash.alfa HTTP/1.1" 404 16451 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKi ... show less	DDoS Attack
🇺🇸 ipblock.com	2026-05-11 16:21:00 (1 month ago)	IPBlock protected site ID [3192-af][s=06]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
Anonymous	2026-05-10 20:09:25 (1 month ago)	[Sun May 10 22:09:23.663590 2026] [authz_core:error] [pid 58144:tid 58187] [client 159.223.231.234:5 ... show more [Sun May 10 22:09:23.663590 2026] [authz_core:error] [pid 58144:tid 58187] [client 159.223.231.234:53129] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/alfacgiapi [Sun May 10 22:09:23.763602 2026] [authz_core:error] [pid 58144:tid 58175] [client 159.223.231.234:53129] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/alfacgiapi [Sun May 10 22:09:23.837709 2026] [authz_core:error] [pid 58144:tid 58188] [client 159.223.231.234:53129] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/alfacgiapi [Sun May 10 22:09:23.886345 2026] [authz_core:error] [pid 58144:tid 58196] [client 159.223.231.234:53129] AH01630: client denied by server configuration: /var/www/cimt-precision/wp-admin/alfacgiapi ... show less	Brute-Force Web App Attack
Anonymous	2026-05-10 10:47:59 (1 month ago)	159.223.231.234 - - [10/May/2026:12:47:47 +0200] "GET /alfacgiapi/perl.alfa HTTP/1.1" 404 29717 159. ... show more 159.223.231.234 - - [10/May/2026:12:47:47 +0200] "GET /alfacgiapi/perl.alfa HTTP/1.1" 404 29717 159.223.231.234 - - [10/May/2026:12:47:48 +0200] "GET /alfacgiapi/perl.alfa HTTP/1.1" 404 28177 159.223.231.234 - - [10/May/2026:12:47:49 +0200] "GET /alfacgiapi/bash.alfa HTTP/1.1" 404 29717 159.223.231.234 - - [10/May/2026:12:47:50 +0200] "GET /alfacgiapi/bash.alfa HTTP/1.1" 404 28177 159.223.231.234 - - [10/May/2026:12:47:51 +0200] "GET /alfacgiapi/py.alfa HTTP/1.1" 404 29717 159.223.231.234 - - [10/May/2026:12:47:52 +0200] "GET /alfacgiapi/py.alfa HTTP/1.1" 404 28177 159.223.231.234 - - [10/May/2026:12:47:53 +0200] "GET /alfacgiapi/?bx=0e215962017 HTTP/1.1" 404 27534 159.223.231.234 - - [10/May/2026:12:47:54 +0200] "GET /alfacgiapi/radio.php?bx=0e215962017 HTTP/1.1" 404 27534 159.223.231.234 - - [10/May/2026:12:47:55 +0200] "GET /alfacgiapi/404.php?bx=0e215962017 HTTP/1.1" 404 29074 159.223.231.234 - - [10/May/2026:12:47:56 +0200] "GET /ALFA_DATA/alfacgiapi/perl.alfa HTTP/1.1" 404 29717 ... show less	Web Spam Web App Attack
🇧🇪 cmbplf	2026-05-10 01:38:15 (1 month ago)	1.066 requests with url.path *.alfa 6 requests with url.path /indoxploit.php	Brute-Force Bad Web Bot
🇩🇪 botreporter	2026-05-09 17:50:54 (1 month ago)	CMS vulnerability/installation scanning	Brute-Force Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-05-09 16:16:50 (1 month ago)	Remote Shell Reconnaisance: "2026-05-09T23:16:50.709+07:00" "/alfacgiapi/perl.alfa" "159.223.231.234 ... show more Remote Shell Reconnaisance: "2026-05-09T23:16:50.709+07:00" "/alfacgiapi/perl.alfa" "159.223.231.234" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" show less	Web App Attack Brute-Force
🇮🇹 VHosting	2026-05-09 16:00:05 (1 month ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
Anonymous	2026-05-09 15:41:16 (1 month ago)	159.223.231.234 - - [09/May/2026:17:40:50 +0200] "GET /wp-content/uploads/wpr-addons/forms/b1ack.php ... show more 159.223.231.234 - - [09/May/2026:17:40:50 +0200] "GET /wp-content/uploads/wpr-addons/forms/b1ack.php HTTP/1.1" 404 29074 159.223.231.234 - - [09/May/2026:17:40:54 +0200] "GET /wp-content/plugins/fix/up.php HTTP/1.1" 404 29074 159.223.231.234 - - [09/May/2026:17:40:55 +0200] "GET /defaults.php HTTP/1.1" 404 29074 159.223.231.234 - - [09/May/2026:17:40:57 +0200] "GET /dropdown.php HTTP/1.1" 404 29074 159.223.231.234 - - [09/May/2026:17:41:00 +0200] "GET /simple.php HTTP/1.1" 404 29074 159.223.231.234 - - [09/May/2026:17:41:03 +0200] "GET /wp-includes/install.php HTTP/1.1" 404 29074 159.223.231.234 - - [09/May/2026:17:41:05 +0200] "GET /wp-content/themes/twentyfive/include.php HTTP/1.1" 404 29074 159.223.231.234 - - [09/May/2026:17:41:07 +0200] "GET /install.php HTTP/1.1" 404 29074 159.223.231.234 - - [09/May/2026:17:41:11 +0200] "GET /about.php HTTP/1.1" 404 29074 159.223.231.234 - - [09/May/2026:17:41:13 +0200] "GET /simple.php HTTP/1.1" 404 29074 ... show less	Web Spam Web App Attack
🇨🇳 ThreatBook.io	2026-03-01 23:41:58 (3 months ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/159.223.231.234	SSH
🇺🇸 xmission.com	2026-03-01 04:48:38 (3 months ago)	Blocked by UFW (TCP on 8181) Source port: 61012 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8181) Source port: 61012 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 159.223.231.234) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-03-01 04:24:55 (3 months ago)	tcp/7777 (3 or more attempts)	Port Scan
🇳🇱 EGP Abuse Dept	2026-03-01 03:44:37 (3 months ago)	Scanning for port/service exploits on tpc-031.mach3builders.nl	Port Scan Hacking

Showing 1 to 15 of 206 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.60

🇻🇪 201.249.205.94

🇪🇪 109.206.241.199

🇭🇰 101.36.107.233

🇺🇸 43.165.65.117

🇬🇧 35.203.210.85

🇩🇪 34.179.167.160

🇨🇳 120.48.77.176

🇷🇺 91.221.176.27

🇸🇬 45.78.201.248

🇬🇧 35.203.210.223

🇶🇦 34.18.106.202

🇨🇳 218.94.25.243

🇦🇷 190.112.102.174

🇺🇸 172.253.198.146

🇫🇮 147.185.133.196

🇨🇳 123.249.125.207

🇨🇳 101.37.129.33

🇧🇬 78.128.112.6

🇵🇰 38.100.221.73