JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.35.229.208

161.35.229.208 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 38%: ?

38%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.35.229.208

Whois 161.35.229.208

IP Abuse Reports for 161.35.229.208:

This IP address has been reported a total of 36 times from 19 distinct sources. 161.35.229.208 was first reported on April 23rd 2023, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 iNetWorker	2026-06-08 06:12:26 (9 hours ago)	trying to access non-authorized port	Port Scan
🇺🇸 xmission.com	2026-05-17 20:53:31 (3 weeks ago)	Blocked by UFW (TCP on 8082) Source port: 61011 TTL: 245 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8082) Source port: 61011 TTL: 245 Packet length: 44 TOS: 0x08 This report (for 161.35.229.208) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇮 6kilowatti	2026-05-17 20:32:09 (3 weeks ago)	2026-05-17T23:32:08.335659+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-05-17T23:32:08.335659+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=161.35.229.208 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=232 ID=5105 PROTO=TCP SPT=61004 DPT=4000 WINDOW=1025 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇨🇦 DRI	2026-05-17 20:26:42 (3 weeks ago)	Unsolicited TCP traffic on Honeypot, srcport=61003 dstport=5552	Port Scan Hacking
🇺🇸 RAP	2026-05-17 20:20:49 (3 weeks ago)	2026-05-17 20:20:49 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇩🇪 Admins@FBN	2026-05-14 06:15:44 (3 weeks ago)	FW-PortScan: Traffic Blocked srcport=61002 dstport=22	Port Scan Hacking SSH
🇺🇸 MPL	2026-04-30 04:21:16 (1 month ago)	tcp/8090 (2 or more attempts)	Port Scan
🇦🇺 HostFission	2026-04-30 01:42:34 (1 month ago)	PSAD port scan detected	Port Scan
🇺🇸 xmission.com	2026-04-30 01:24:25 (1 month ago)	Blocked by UFW (TCP on 8181) Source port: 61006 TTL: 245 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8181) Source port: 61006 TTL: 245 Packet length: 44 TOS: 0x08 This report (for 161.35.229.208) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-04-30 00:56:10 (1 month ago)	tcp/15000	Port Scan
🇺🇸 Cyber Crusader	2026-04-29 21:53:09 (1 month ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇺🇸 mawan	2026-01-28 12:18:50 (4 months ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
🇮🇩 zam	2026-01-28 10:12:49 (4 months ago)	161.35.229.208 - - [28/Jan/2026:10:12:36 +0000] "GET /upload/server/php/ HTTP/1.1" 404 82096 161.35. ... show more 161.35.229.208 - - [28/Jan/2026:10:12:36 +0000] "GET /upload/server/php/ HTTP/1.1" 404 82096 161.35.229.208 - - [28/Jan/2026:10:12:37 +0000] "GET /admin/server/php/ HTTP/1.1" 404 82096 161.35.229.208 - - [28/Jan/2026:10:12:38 +0000] "GET /fileupload/server/php/ HTTP/1.1" 404 82096 161.35.229.208 - - [28/Jan/2026:10:12:39 +0000] "GET /server/php/ HTTP/1.1" 404 82096 161.35.229.208 - - [28/Jan/2026:10:12:40 +0000] "GET /assets/global/plugins/jquery-file-upload/server/php/ HTTP/1.1" 404 82096 {"log":"161.35.229.208 - - [28/Jan/2026:10:12:41 + show less	Web App Attack
🇺🇸 mawan	2026-01-27 00:44:06 (4 months ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
🇮🇩 sockominfo	2026-01-26 16:22:05 (4 months ago)	[WAZUH] CRITICAL: Persistent attacker 161.35.229.208 - 10 attempts in 30 minutes	Hacking Web App Attack

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.227

🇨🇳 117.187.180.236

🇺🇸 64.62.156.210

🇰🇷 59.14.191.130

🇷🇺 46.191.163.43

🇧🇷 45.164.250.190

🇳🇱 45.148.10.141

🇨🇳 36.144.74.39

🇯🇵 34.180.103.66

🇧🇪 34.77.141.236

🇮🇳 27.123.112.74

🇻🇳 14.237.62.127

🇬🇧 5.226.140.59

🇺🇸 208.84.101.25

🇧🇷 205.210.31.198

🇳🇱 195.178.110.30

🇮🇶 185.166.25.150

🇳🇱 176.65.149.212

🇩🇪 141.11.187.21

🇸🇬 124.156.204.51