JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.217.140.36

85.217.140.36 was found in our database!

This IP was reported 6,962 times. Confidence of Abuse is 100%: ?

100%

ISP	NL MODAT
Usage Type	Commercial
ASN	AS209334
Hostname(s)	o335.scanner.modat.io
Domain Name	modat.io
Country	🇫🇷 France
City	Gravelines, Hauts-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.217.140.36

Whois 85.217.140.36

IP Abuse Reports for 85.217.140.36:

This IP address has been reported a total of 6,962 times from 388 distinct sources. 85.217.140.36 was first reported on March 4th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 2048	2026-05-29 10:06:57 (5 days ago)	2026-05-29T12:06:18.032548+02:00 machodeer kernel: [2757095.585959] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-29T12:06:18.032548+02:00 machodeer kernel: [2757095.585959] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.36 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=11411 PROTO=TCP SPT=48666 DPT=42231 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-29T12:06:46.707633+02:00 machodeer kernel: [2757124.261160] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.36 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=48785 PROTO=TCP SPT=38364 DPT=21238 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-29T12:06:56.291572+02:00 machodeer kernel: [2757133.845143] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.36 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=38465 PROTO=TCP SPT=37514 DPT=62828 WINDOW=65535 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 shabi	2026-05-29 10:06:48 (5 days ago)	UFW Blocked [21238/TCP] Source: 85.217.140.36:38295 TTL: 52 Lenth: 52 TOS: 0x00	Port Scan
🇺🇸 podril1ak2.ru	2026-05-29 09:23:11 (5 days ago)	Blocked by UFW on reporterUS [51443/tcp] \| SPT: 47821 \| TTL: 52 \| LEN: 52 \| TOS: 0x00 • Reported by: ... show more Blocked by UFW on reporterUS [51443/tcp] \| SPT: 47821 \| TTL: 52 \| LEN: 52 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇬 MazenHost	2026-05-29 09:09:38 (5 days ago)	1780045777 - 05/29/2026 12:09:37 Host: 85.217.140.36/85.217.140.36 Port: 1 TCP Blocked ...	Port Scan
🇦🇺 dyln	2026-05-29 09:04:02 (5 days ago)	Dyls honeypot brute-force: proto8 (1 total hits)	Brute-Force
🇦🇹 begou.dev	2026-05-29 07:28:49 (5 days ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/5900	Port Scan
🇩🇪 2048	2026-05-29 07:06:01 (5 days ago)	2026-05-29T09:05:11.751064+02:00 machodeer kernel: [2746229.279655] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-29T09:05:11.751064+02:00 machodeer kernel: [2746229.279655] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.36 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=53951 PROTO=TCP SPT=40359 DPT=12225 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-29T09:05:24.789073+02:00 machodeer kernel: [2746242.317887] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.36 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=50657 PROTO=TCP SPT=55411 DPT=21719 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-29T09:06:00.715923+02:00 machodeer kernel: [2746278.244698] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.36 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=18915 PROTO=TCP SPT=60585 DPT=53913 WINDOW=65535 RES=0x00 SYN URGP=0 show less	Port Scan
🇭🇰 PingMeMaybe	2026-05-29 07:05:58 (5 days ago)	Blocked by UFW on hk [53913/tcp] Source port: 51056 TTL: 48 Packet length: 52 TOS: 0x00 This report ... show more Blocked by UFW on hk [53913/tcp] Source port: 51056 TTL: 48 Packet length: 52 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 mutebot.net	2026-05-29 07:05:16 (5 days ago)	SRC=85.217.140.36, PROTO=TCP, SPT=51990, DPT=12225	Port Scan
🇭🇰 pengpeng	2026-05-29 07:05:12 (5 days ago)	monitor: on ser162528253480 \| port: 12225 \| ttl: 44 script: github.com/sefinek/UFW-AbuseIPDB-Report ... show more monitor: on ser162528253480 \| port: 12225 \| ttl: 44 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇭 flaus	2026-05-29 07:00:49 (5 days ago)	$f2bV_matches	Hacking Bad Web Bot Web App Attack
🇮🇳 evicky2002	2026-05-29 06:52:29 (5 days ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇳🇱 StopAbuse	2026-05-29 06:25:49 (5 days ago)	tcp/11669 tcp/12584 tcp/51771 tcp/662 tcp/6907 tcp/7658	Port Scan
🇩🇪 IP Analyzer	2026-05-29 04:00:21 (6 days ago)	Unauthorized connection attempt from IP address 85.217.140.36 on Port 25(SMTP)	Port Scan
🇩🇪 guldkage	2026-05-29 03:26:17 (6 days ago)	Unauthorized connection attempt detected from IP address 85.217.140.36 to port 25 (ger-03) [a]	Brute-Force Exploited Host

Showing 136 to 150 of 6962 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.213

🇮🇳 103.91.246.73

🇩🇪 217.181.95.204

🇺🇸 205.210.31.18

🇹🇼 198.235.24.49

🇳🇱 176.65.148.147

🇺🇸 167.148.161.16

🇿🇦 165.73.168.243

🇺🇸 162.216.149.213

🇺🇸 146.88.241.164

🇺🇸 138.197.200.236

🇨🇳 120.48.135.189

🇨🇳 115.190.167.119

🇨🇳 101.89.141.184

🇫🇷 91.196.152.181

🇩🇪 91.92.240.42

🇸🇪 46.59.90.49

🇰🇷 14.45.214.230

🇹🇼 1.168.223.98

🇰🇷 218.51.148.194