JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.35.145.21

161.35.145.21 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 14%: ?

14%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.35.145.21

Whois 161.35.145.21

IP Abuse Reports for 161.35.145.21:

This IP address has been reported a total of 24 times from 19 distinct sources. 161.35.145.21 was first reported on March 16th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-04 12:21:05 (1 month ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇺🇸 sumnone	2026-04-20 02:19:40 (1 month ago)	Port probing on unauthorized port 4000	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-04-20 01:47:43 (1 month ago)	tcp/2000	Port Scan
🇦🇹 centurion	2026-04-20 01:24:29 (1 month ago)	Unauthorized attempt on coresecret [995/tcp] Source port: 61014 TTL: 245 Packet length: 44 TOS: 0x00 ... show more Unauthorized attempt on coresecret [995/tcp] Source port: 61014 TTL: 245 Packet length: 44 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇩 Incidents Response Neptus Team	2026-04-07 09:13:00 (2 months ago)	Report Abuse IP	Exploited Host Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-04-06 13:28:57 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 161.35.145.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 161.35.145.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 09:28:52.640953 2026] [security2:error] [pid 110976:tid 110976] [client 161.35.145.21:49999] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fletesgero.com"] [uri "/wp-config.php"] [unique_id "adO1FPVik-fyiVucmQIJxAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-04-05 07:30:27 (2 months ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 controleert.nl	2026-04-05 00:58:52 (2 months ago)	161.35.145.21 - - [05/Apr/2026:02:58:52 +0200] "GET /cgi-bin/alfacgiapi/perl.alfa HTTP/2.0" 404 132 ... show more 161.35.145.21 - - [05/Apr/2026:02:58:52 +0200] "GET /cgi-bin/alfacgiapi/perl.alfa HTTP/2.0" 404 132 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" "161.35.145.21" 161.35.145.21 - - [05/Apr/2026:02:58:52 +0200] "GET /cgi-bin/alfacgiapi/perl.alfa HTTP/2.0" 404 132 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" "161.35.145.21" 161.35.145.21 - - [05/Apr/2026:02:58:52 +0200] "GET /cgi-bin/alfacgiapi/bash.alfa HTTP/2.0" 404 132 "-" "Mozilla/5.0 (Linux; Android 11; Redmi Note 9 Pro Build/RKQ1.200826.002; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/90.0.4430.210 Mobile Safari/537.36" "161.35.145.21" 161.35.145.21 - - [05/Apr/2026:02:58:52 +0200] "GET /cgi-bin/alfacgiapi/bash.alfa HTTP/2.0" 404 132 "-" "Mozilla/5.0 (Linux; An ... show less	Web App Attack
🇺🇸 mnsf	2026-04-04 23:05:55 (2 months ago)	Too many Status 40X (20)	Brute-Force Web App Attack
🇺🇸 ipblock.com	2026-04-04 12:47:00 (2 months ago)	IPBlock protected site ID [4055-d][s=01]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇦🇹 penguin-solutions.at	2026-04-04 10:14:36 (2 months ago)	Excessive 403/404 errors ...	Brute-Force Web App Attack
🇺🇸 ipblock.com	2026-04-04 02:24:00 (2 months ago)	IPBlock protected site ID [3192-af][s=02]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇫🇷 Octopuce	2026-04-03 22:21:37 (2 months ago)	Aggressive web search of vulnerable pages: /wp-content/uploads/wpr-addons/forms/b1ack.php /wp-conten ... show more Aggressive web search of vulnerable pages: /wp-content/uploads/wpr-addons/forms/b1ack.php /wp-content/plugins/fix/up.php /defaults.php /dropdow ... show less	Web App Attack
🇧🇪 cmbplf	2026-04-03 17:35:17 (2 months ago)	978 requests with url.path *.alfa 10 requests with url.path /indoxploit.php	Brute-Force Bad Web Bot
🇫🇷 RodGel	2026-04-03 17:27:16 (2 months ago)	Multiple 404 errors (Potential brute force attempt)	Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 202.63.207.8

🇳🇱 176.65.148.158

🇺🇸 193.203.8.137

🇵🇦 190.32.246.14

🇮🇳 116.204.175.230

🇾🇪 110.238.56.47

🇫🇷 92.170.107.195

🇺🇸 66.132.186.233

🇪🇨 45.170.44.146

🇪🇪 31.134.7.189

🇺🇸 18.119.209.50

🇩🇪 8.209.126.67

🇸🇬 212.73.148.20

🇭🇰 199.45.154.135

🇸🇬 194.233.83.141

🇺🇸 144.225.187.123

🇮🇳 134.209.145.28

🇻🇳 116.96.77.83

🇳🇱 89.149.242.46

🇵🇱 46.205.205.161