JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.35.149.121

161.35.149.121 was found in our database!

This IP was reported 104 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.35.149.121

Whois 161.35.149.121

IP Abuse Reports for 161.35.149.121:

This IP address has been reported a total of 104 times from 71 distinct sources. 161.35.149.121 was first reported on August 24th 2025, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 teamsecure	2026-02-18 16:20:27 (4 months ago)	Banned for trying to access wp-login	Web App Attack
🇺🇸 mind5t0rm	2026-02-18 16:12:15 (4 months ago)	(WPLOGIN) WP Login Attack 161.35.149.121 (NL/Netherlands/-): 3 in the last 3600 secs; Ports: ; Dire ... show more (WPLOGIN) WP Login Attack 161.35.149.121 (NL/Netherlands/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 161.35.149.121 - - [18/Feb/2026:22:42:59 +0700] "GET /wp-login.php HTTP/2.0" 500 574 "https://www.google.com/" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 161.35.149.121 - - [18/Feb/2026:22:42:59 +0700] "GET /wp-login.php HTTP/2.0" 500 574 "https://t.co/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:120.0) Gecko/20100101 Firefox/120.0" 161.35.149.121 - - [18/Feb/2026:23:12:12 +0700] "GET /wp-login.php HTTP/2.0" 500 574 "https://www.facebook.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:120.0) Gecko/20100101 Firefox/120.0" show less	Port Scan
🇲🇾 Rizzy	2026-02-18 00:03:41 (4 months ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇳🇿 Antinson	2026-02-16 08:18:33 (4 months ago)	High error rate and elevated request volume targeting cPanel servers	Bad Web Bot
🇺🇸 mind5t0rm	2026-02-16 06:56:38 (4 months ago)	(WPLOGIN) WP Login Attack 161.35.149.121 (NL/The Netherlands/-): 3 in the last 3600 secs; Ports: ; ... show more (WPLOGIN) WP Login Attack 161.35.149.121 (NL/The Netherlands/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 161.35.149.121 - - [16/Feb/2026:13:56:28 +0700] "GET /wp-login.php HTTP/2.0" 200 2455 "-" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 161.35.149.121 - - [16/Feb/2026:13:56:29 +0700] "GET /wp-login.php HTTP/2.0" 200 2455 "https://t.co/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 161.35.149.121 - - [16/Feb/2026:13:56:34 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Fzerowaterthailand.com%2Fwp-admin%2F&reauth=1 HTTP/2.0" 200 2460 "https://www.google.com/search?q=wordpress" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0" show less	Port Scan
🇦🇺 paulshipley.com.au	2026-02-16 00:55:47 (4 months ago)	paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:55:28 +1100] "GET /wp-login.php?redirect_t ... show more paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:55:28 +1100] "GET /wp-login.php?redirect_to=https%3A%2F%2Fpaulshipley.com.au%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:55:28 +1100] "GET /wp-admin/profile.php HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:55:29 +1100] "GET /wp-admin/edit.php HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:55:29 +1100] "GET /wp-admin/plugins.php HTTP/1.1 ... show less	Web App Attack
🇺🇸 mind5t0rm	2026-02-16 00:37:25 (4 months ago)	(WPLOGIN) WP Login Attack 161.35.149.121 (NL/The Netherlands/-): 3 in the last 3600 secs; Ports: ; ... show more (WPLOGIN) WP Login Attack 161.35.149.121 (NL/The Netherlands/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 161.35.149.121 - - [16/Feb/2026:06:46:36 +0700] "GET /wp-login.php HTTP/2.0" 500 574 "https://www.facebook.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:118.0) Gecko/20100101 Firefox/118.0" 161.35.149.121 - - [16/Feb/2026:06:46:36 +0700] "GET /wp-login.php HTTP/2.0" 500 574 "https://www.google.com/search?q=wordpress" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15" 161.35.149.121 - - [16/Feb/2026:07:37:22 +0700] "GET /wp-login.php HTTP/2.0" 500 574 "https://wordpress.org/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:118.0) Gecko/20100101 Firefox/118.0" show less	Port Scan
🇦🇺 afleventoffice.com.au	2026-02-16 00:36:37 (4 months ago)	GET /wp-login.php HTTP/1.1	Web App Attack
🇦🇺 paulshipley.com.au	2026-02-16 00:32:10 (4 months ago)	paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:31:51 +1100] "GET /wp-login.php?redirect_t ... show more paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:31:51 +1100] "GET /wp-login.php?redirect_to=https%3A%2F%2Fpaulshipley.com.au%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:31:51 +1100] "GET /wp-admin/profile.php HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:31:52 +1100] "GET /wp-admin/edit.php HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:31:53 +1100] "GET /wp-admin/plugins.php HTTP/1.1 ... show less	Web App Attack
🇦🇺 paulshipley.com.au	2026-02-16 00:08:15 (4 months ago)	paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:07:55 +1100] "GET /wp-login.php?redirect_t ... show more paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:07:55 +1100] "GET /wp-login.php?redirect_to=https%3A%2F%2Fpaulshipley.com.au%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:07:56 +1100] "GET /wp-admin/profile.php HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:07:56 +1100] "GET /wp-admin/edit.php HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:11:07:57 +1100] "GET /wp-admin/plugins.php HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20 ... show less	Web App Attack
🇨🇭 teamsecure	2026-02-16 00:01:45 (4 months ago)	Banned for trying to access wp-login	Web App Attack
🇦🇺 paulshipley.com.au	2026-02-15 23:44:36 (4 months ago)	paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:10:42:45 +1100] "GET /?author=1 HTTP/1.1" 404 ... show more paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:10:42:45 +1100] "GET /?author=1 HTTP/1.1" 404 70410 "https://www.google.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:10:43:00 +1100] "GET /?author=6 HTTP/1.1" 404 70410 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:10:43:03 +1100] "GET /?author=7 HTTP/1.1" 404 70410 "https://wordpress.org/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:10:43:05 +1100] "GET /?author=8 HTTP/1.1" 404 70410 "https://www.bing.com/" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" paulshipley.com.au:443 161. ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 19:32:30 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 161.35.149.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 161.35.149.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 14:32:25.224179 2026] [security2:error] [pid 25444:tid 25444] [client 161.35.149.121:55918] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|wave94.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wave94.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZIfSTgUCkvKYn5GkHzUKAAAAAU"], referer: https://wordpress.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-02-15 16:18:11 (4 months ago)	Accessed trap at '/wp-login.php'	Web App Attack
🇦🇺 paulshipley.com.au	2026-02-15 13:10:39 (4 months ago)	paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:00:10:19 +1100] "GET /wp-login.php?redirect_t ... show more paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:00:10:19 +1100] "GET /wp-login.php?redirect_to=https%3A%2F%2Fpaulshipley.com.au%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:00:10:20 +1100] "GET /wp-admin/profile.php HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:00:10:21 +1100] "GET /wp-admin/edit.php HTTP/1.1" 403 776 "https://brettkaye.com.au/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" paulshipley.com.au:443 161.35.149.121 - - [16/Feb/2026:00:10:21 +1100] "GET /wp-admin/plugins.php HTTP/1.1" 403 776 "https:/ ... show less	Web App Attack

Showing 1 to 15 of 104 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.36

🇳🇱 77.83.39.10

🇸🇪 45.159.12.1

🇳🇱 45.148.10.157

🇷🇺 212.3.155.8

🇺🇸 136.118.174.157

🇻🇳 116.110.219.122

🇰🇷 112.216.129.27

🇮🇩 103.245.17.220

🇫🇮 85.192.31.14

🇧🇬 79.124.56.146

🇩🇪 69.5.169.91

🇨🇳 203.76.241.18

🇮🇶 185.187.78.110

🇷🇺 178.178.222.53

🇵🇭 136.158.37.242

🇰🇷 121.142.87.218

🇨🇳 112.195.135.214

🇮🇳 103.153.105.51

🇫🇷 94.183.188.94