AbuseIPDB » 85.163.57.244
85.163.57.244 was found in our database!
This IP was reported 6 times. Confidence of
Abuse
is 28% : ?
ISP
CETIN a.s.
Usage Type
Fixed Line ISP
ASN
AS28725
Hostname(s)
webhosting.intevia.cloud
Domain Name
cetin.cz
Country
๐จ๐ฟ
Czechia
City
Polna, Vysocina
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 85.163.57.244 :
This IP address has been reported a total of
6
times from
5 distinct
sources.
85.163.57.244 was first reported on
June 15th 2026 , and the most recent report was
1 week ago .
Old Reports:
The most recent abuse report for this IP address is from
1 week ago
. It is possible that this IP is no longer involved in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
Anonymous
2026-06-28 19:30:05
(1 week ago)
2026-06-28T21:30:03.247500+02:00 aion wordpress[2266351]: XML-RPC authentication attempt for unknown ...
show more
2026-06-28T21:30:03.247500+02:00 aion wordpress[2266351]: XML-RPC authentication attempt for unknown user wp_client from 85.163.57.244
...
show less
Hacking
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-22 21:16:05
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 85.163.57.244 (webhosting.intevia.cloud): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 85.163.57.244 (webhosting.intevia.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 17:15:58.689370 2026] [security2:error] [pid 18703:tid 18703] [client 85.163.57.244:58404] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.allotrope.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.allotrope.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajmmDvO-zwzokq8KoduWgwAAACU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-06-22 15:00:05
(2 weeks ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
Anonymous
2026-06-15 18:39:37
(3 weeks ago)
[ns41.kdns.gr] httpd-suspicious-path: sites=msjacovides.com; logs=/var/log/httpd/domains/msjacovides ...
show more
[ns41.kdns.gr] httpd-suspicious-path: sites=msjacovides.com; logs=/var/log/httpd/domains/msjacovides.com.log; samples=/wp-json/wp/v2/users | /?author=1 | /author/admin/
show less
Hacking
Web App Attack
Anonymous
2026-06-15 07:07:05
(3 weeks ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2026-06-15 06:22:48
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 85.163.57.244 (webhosting.intevia.cloud): 1 in ...
show more
(mod_security) mod_security (id:225170) triggered by 85.163.57.244 (webhosting.intevia.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 02:22:40.101118 2026] [security2:error] [pid 32497:tid 32497] [client 85.163.57.244:44470] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.baselinesc.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.baselinesc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai-aMKWHQwQaYSRbVe0fdAAAAFk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: