JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.13.146.15

85.13.146.15 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 0%: ?

ISP	Neue Medien Muennich GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS34788
Hostname(s)	dd27328.kasserver.com
Domain Name	all-inkl.com
Country	🇩🇪 Germany
City	Neusalza-Spremberg, Saxony

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.13.146.15

Whois 85.13.146.15

IP Abuse Reports for 85.13.146.15:

This IP address has been reported a total of 16 times from 11 distinct sources. 85.13.146.15 was first reported on August 23rd 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-03 07:13:00 (1 month ago)	phishing spam from dd27328.kasserver.com (dd27328.kasserver.com. [85.13.146.15]) Sat, 2 May 2026 2 ... show more phishing spam from dd27328.kasserver.com (dd27328.kasserver.com. [85.13.146.15]) Sat, 2 May 2026 22:00:19 -0700 (PDT) 36,824.44 Dollars ➜ graph.org/BALANCE-3682444-USD-04-21 show less	Email Spam Exploited Host Phishing
🇺🇸 mawan	2025-12-31 02:01:33 (5 months ago)	Suspected of having performed illicit activity on LAX server.	Web App Attack
🇺🇸 myagent.site	2025-12-30 20:54:02 (5 months ago)	Blocking for trying to access an exploit file: /xmlrpc.php	Hacking
🇺🇸 octageeks.com	2025-12-26 05:07:12 (6 months ago)	Wordpress malicious attack:[octawp]	Web App Attack
🇺🇸 TPI-Abuse	2025-12-25 13:27:14 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 85.13.146.15 (dd27328.kasserver.com): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 85.13.146.15 (dd27328.kasserver.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 25 08:27:08.828452 2025] [security2:error] [pid 2811:tid 2811] [client 85.13.146.15:59972] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|flanagan.works\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "flanagan.works"] [uri "/wp-json/wp/V2/users"] [unique_id "aU07rCigE9bIvH_v6PUtogAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-25 13:02:21 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 85.13.146.15 (dd27328.kasserver.com): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 85.13.146.15 (dd27328.kasserver.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 25 08:02:14.811940 2025] [security2:error] [pid 3878536:tid 3878536] [client 85.13.146.15:43018] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jbernsteinpc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jbernsteinpc.com"] [uri "/index.php/wp-json/wp/v2/users"] [unique_id "aU011uH4y1FWnQwvbqxTAgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 SCHAPPY	2025-12-25 11:19:56 (6 months ago)	Wordpress attack: Submitted data to wp-login.php prior getting page content, attempt blocked. POST c ... show more Wordpress attack: Submitted data to wp-login.php prior getting page content, attempt blocked. POST counter 1 is greater than GET counter 0 for /wp-login.php by 85.13.146.15. show less	Web Spam
🇩🇪 stinpriza	2025-12-25 09:56:02 (6 months ago)	Web App Attack	Web App Attack
🇧🇪 taivas.nl	2025-12-24 19:02:11 (6 months ago)	Wordpress_xmlrpc_attack	Bad Web Bot
🇳🇱 BlueWire Hosting	2025-12-24 16:06:00 (6 months ago)	Probing websites for vulnerabilities	Web App Attack
🇩🇪 karger	2025-12-24 15:36:36 (6 months ago)	Wordpress attack - soft filter	Brute-Force Web App Attack
🇺🇸 myagent.site	2025-12-24 15:25:28 (6 months ago)	Blocking for trying to access an exploit file: /xmlrpc.php	Hacking
🇹🇷 rtbh.com.tr	2025-08-25 20:08:26 (10 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-08-24 20:08:24 (10 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-08-24 00:08:24 (10 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 181.177.80.210

🇺🇸 170.106.110.129

🇺🇸 162.216.149.114

🇫🇮 95.217.142.75

🇧🇬 79.124.56.238

🇬🇧 35.203.210.175

🇯🇵 20.78.168.236

🇩🇪 217.154.226.150

🇧🇷 205.210.31.224

🇺🇸 143.198.153.185

🇮🇹 109.52.188.131

🇮🇳 103.91.246.101

🇳🇱 45.148.10.151

🇺🇸 20.168.0.218

🇸🇬 2406:da18:aa8:7e00:c622:4eaf:3ded:4c18

🇺🇸 147.185.132.214

🇨🇦 85.217.149.5

🇨🇳 223.199.191.23

🇮🇳 202.53.94.246

🇺🇸 64.72.74.162