JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.215.140.105

85.215.140.105 was found in our database!

This IP was reported 75 times. Confidence of Abuse is 48%: ?

48%

ISP	IONOS SE
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8560
Domain Name	ionos.com
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.215.140.105

Whois 85.215.140.105

IP Abuse Reports for 85.215.140.105:

This IP address has been reported a total of 75 times from 51 distinct sources. 85.215.140.105 was first reported on February 10th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-16 11:06:07 (1 week ago)	Blocked: Reason='Vulnerability probing — PHP scan detected (12/60 min)'; Requests=12	Port Scan
Anonymous	2026-06-16 10:42:13 (1 week ago)	85.215.140.105 - - [16/Jun/2026:10:42:11 +0000] "GET /adminer.php HTTP/2.0" 404 182 "-" "Mozilla/5.0 ... show more 85.215.140.105 - - [16/Jun/2026:10:42:11 +0000] "GET /adminer.php HTTP/2.0" 404 182 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇨🇭 zynex	2026-06-16 10:29:22 (1 week ago)	URL Probing: /adminer.php	Web App Attack
🇩🇪 bescared	2026-06-16 10:29:08 (1 week ago)	F2B - Malicious activity detected. URL Probing. -8ff06ede-	Hacking Bad Web Bot Web App Attack
🇫🇷 Thaliruth	2026-06-16 10:24:35 (1 week ago)	85.215.140.105 - - [16/Jun/2026:12:24:35 +0200] "GET /adminer.php HTTP/1.1" 404 264 "-" "Mozilla/5.0 ... show more 85.215.140.105 - - [16/Jun/2026:12:24:35 +0200] "GET /adminer.php HTTP/1.1" 404 264 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇩🇪 filstal.org	2026-06-16 10:22:23 (1 week ago)	Web reconnaissance detected: automated probing for sensitive files, backup archives, admin panels an ... show more Web reconnaissance detected: automated probing for sensitive files, backup archives, admin panels and known vulnerability paths. show less	Hacking Brute-Force Web App Attack
🇩🇪 Ba-Yu	2026-06-16 10:21:47 (1 week ago)	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
🇬🇧 SilverZippo	2026-06-16 10:21:30 (1 week ago)	Web App Attack	Web App Attack
🇳🇱 Mangelot Hosting	2026-06-16 10:20:50 (1 week ago)	(db_admin_scan) srv103 DB admin scan 85.215.140.105 (DE/Germany/-): 1 in the last 3600 secs; Ports: ... show more (db_admin_scan) srv103 DB admin scan 85.215.140.105 (DE/Germany/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇮🇹 VHosting	2026-06-16 10:20:03 (1 week ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇩🇪 Baltarsar	2026-04-23 06:38:00 (2 months ago)	Banned by Fail2Ban: Cross-Site Scripting (XSS)-Injection detected, multiple attack attempts simultan ... show more Banned by Fail2Ban: Cross-Site Scripting (XSS)-Injection detected, multiple attack attempts simultaneously, Example: "GET /index.php?option=\"><script%20>alert(String.fromCharCode(88,83,83))</script>&view=article&id=127:jugendamt-familiengericht-skandal-in-suhl&catid=1:aktuelle-nachrichten&Itemid=164 HTTP/1.1" 403 9993 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" show less	Brute-Force Web App Attack Hacking SQL Injection
🇩🇪 FeG Deutschland	2026-04-22 00:02:56 (2 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12	Exploited Host Web App Attack
🇱🇻 garmtech.com	2026-04-21 23:34:09 (2 months ago)	IM360 WAF: Infectors: OS File Access Attempt MV:/etc/passwd	Web App Attack
🇱🇻 garmtech.com	2026-04-21 23:34:09 (2 months ago)	IM360 WAF: Generic XSS exploitation attempt MV:"><script >alert(String.fromCharCode(88,83,83))</scri ... show more IM360 WAF: Generic XSS exploitation attempt MV:"><script >alert(String.fromCharCode(88,83,83))</script> show less	Web App Attack
🇩🇪 netclix.gr	2026-04-21 23:27:16 (2 months ago)	(mod_security) mod_security triggered on hostname [redacted] 85.215.140.105 (DE/Germany/-): (CF_ENA ... show more (mod_security) mod_security triggered on hostname [redacted] 85.215.140.105 (DE/Germany/-): (CF_ENABLE) show less	SQL Injection

Showing 1 to 15 of 75 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇿 212.116.247.31

🇧🇩 180.148.214.188

🇺🇸 162.216.149.123

🇧🇩 116.204.231.239

🇧🇩 114.31.8.202

🇮🇩 103.239.23.133

🇨🇳 101.68.7.248

🇨🇳 60.28.217.71

🇫🇷 51.77.158.34

🇳🇱 45.128.199.71

🇩🇪 18.194.136.203

🇮🇳 2001:4490:4e95:14a3:8ce4:c88:1012:2dfa

🇳🇱 204.76.203.206

🇮🇩 203.210.87.29

🇧🇷 189.50.142.78

🇨🇱 181.42.16.165

🇧🇷 168.232.162.133

🇦🇷 131.0.234.179

🇰🇷 121.1.120.182

🇩🇪 108.179.145.245