JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 200.85.209.246

200.85.209.246 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 33%: ?

33%

ISP	Telefonica del Sur S.A.
Usage Type	Fixed Line ISP
ASN	AS14117
Domain Name	telsur.cl
Country	🇨🇱 Chile
City	Castro, Los Lagos Region

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 200.85.209.246

Whois 200.85.209.246

IP Abuse Reports for 200.85.209.246:

This IP address has been reported a total of 14 times from 12 distinct sources. 200.85.209.246 was first reported on February 11th 2026, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 sthoyer.de	2026-06-03 22:44:55 (9 hours ago)	Jun 4 00:44:54 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 4 00:44:54 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=200.85.209.246 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=9830 DF PROTO=TCP SPT=55557 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 Little Iguana	2026-06-03 22:43:42 (9 hours ago)	trying to access non-authorized port	Port Scan
🇫🇷 sthoyer.de	2026-06-03 20:33:17 (11 hours ago)	Jun 3 22:33:17 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 3 22:33:17 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=200.85.209.246 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=16483 DF PROTO=TCP SPT=51575 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇳🇱 Yachiyo Runami	2026-06-03 15:25:28 (16 hours ago)	Port Scan on Honeypot \| Ports: 445/SMB \| Proto: TCP(1) \| Flags: all SYN \| TTL: 109 \| Len: 52B \| Win: ... show more Port Scan on Honeypot \| Ports: 445/SMB \| Proto: TCP(1) \| Flags: all SYN \| TTL: 109 \| Len: 52B \| Win: 8192(1) \| F2B/ufw-honeypot@2026-06-03T15:25:27Z show less	Port Scan Hacking
🇫🇷 zulzeen	2026-06-02 02:58:39 (2 days ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (SMB/Possible Ransomware Attack)	Hacking Brute-Force
🇧🇪 dbelm	2026-04-20 07:40:32 (1 month ago)	RdpGuard detected brute-force attempt on IMAP	Brute-Force
🇳🇱 maxxsense	2026-03-27 12:03:31 (2 months ago)	200.85.209.246 (CL/Chile/-), 12 distributed imapd attacks on account [redacted]	Brute-Force
Anonymous	2026-03-14 14:40:16 (2 months ago)	\| Multiple SQL injection attempts from same source ip.(multiple servers)	Web App Attack Hacking SQL Injection
🇳🇱 maxxsense	2026-02-27 13:16:35 (3 months ago)	200.85.209.246 (CL/Chile/-), 12 distributed imapd attacks on account [redacted]	Brute-Force
🇸🇬 mypatricks	2026-02-26 13:34:08 (3 months ago)	200.85.209.246 \| Port: 11738 \| DNS: 200.85.209.246 2026-02-26T21:34:07+08:00 America/Santiago \| IPs ... show more 200.85.209.246 \| Port: 11738 \| DNS: 200.85.209.246 2026-02-26T21:34:07+08:00 America/Santiago \| IPs Spam list \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Edg/119.0.0.0 HTTP/1.1 443 GET \| URL: /hashtag/motor/?c60524113363c89f77b0d6b241ed=KRW&code=KRW \| Ref: - \| Country: CL/Chile/-04:00 IP City: Castro Windows 9d3fd1697c040652-EZE/Buenos Aires, Argentina 1 hits/0 secs Robots 4 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇩🇪 tall1oN	2026-02-21 14:38:24 (3 months ago)	2026-02-21T15:38:14.209874+01:00 kenny dovecot: auth-worker(624910): conn unix:auth-worker (pid=5153 ... show more 2026-02-21T15:38:14.209874+01:00 kenny dovecot: auth-worker(624910): conn unix:auth-worker (pid=515379,uid=107): auth-worker<1>: sql([email protected],200.85.209.246,<lpfZfFZLsJ3IVdH2>): Password mismatch 2026-02-21T15:38:16.180903+01:00 kenny dovecot: auth-worker(624910): conn unix:auth-worker (pid=515379,uid=107): auth-worker<2>: pam([email protected],200.85.209.246,<lpfZfFZLsJ3IVdH2>): pam_authenticate() failed: Authentication failure (Password mismatch?) 2026-02-21T15:38:23.118608+01:00 kenny dovecot: imap-login: Disconnected: Connection closed (auth failed, 1 attempts in 9 secs): user=<[email protected]>, method=PLAIN, rip=200.85.209.246, lip=195.201.95.142, TLS: Connection closed, TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits) ... show less	Brute-Force Email Spam
🇧🇷 hostseries	2026-02-20 12:07:54 (3 months ago)	Trigger: LF_DISTATTACK	Brute-Force
Anonymous	2026-02-18 21:21:51 (3 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2026-02-11 22:46:35 (3 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 110.136.172.97

🇷🇺 94.29.124.154

🇺🇸 54.204.147.98

🇭🇰 47.86.239.42

🇳🇱 45.142.193.8

🇬🇧 35.203.211.239

🇵🇱 2a00:1450:4025:802::12a

🇺🇸 130.131.220.95

🇩🇪 69.5.169.203

🇱🇹 62.60.130.139

🇺🇸 54.163.219.20

🇳🇱 45.148.10.141

🇮🇹 37.119.255.238

🇬🇧 35.203.210.166

🇷🇴 92.118.39.236

🇫🇷 91.160.49.198

🇺🇸 66.132.172.254

🇰🇷 59.24.133.197

🇧🇷 45.70.216.245

🇩🇪 194.88.98.85