JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.217.140.49

85.217.140.49 was found in our database!

This IP was reported 6,974 times. Confidence of Abuse is 100%: ?

100%

ISP	NL MODAT
Usage Type	Commercial
ASN	AS209334
Hostname(s)	o348.scanner.modat.io
Domain Name	modat.io
Country	🇫🇷 France
City	Gravelines, Hauts-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.217.140.49

Whois 85.217.140.49

IP Abuse Reports for 85.217.140.49:

This IP address has been reported a total of 6,974 times from 369 distinct sources. 85.217.140.49 was first reported on March 4th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 gbzret4d	2026-05-27 19:02:17 (1 week ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 11201 [1], 7603 [1] TCP	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-27 16:18:33 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 8528 [1] TCP	Port Scan
🇩🇪 2048	2026-05-27 16:14:29 (1 week ago)	2026-05-27T18:13:59.184410+02:00 machodeer kernel: [2606356.543132] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-27T18:13:59.184410+02:00 machodeer kernel: [2606356.543132] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=50 ID=5590 PROTO=TCP SPT=52183 DPT=22149 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T18:14:14.597248+02:00 machodeer kernel: [2606371.955482] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=3117 PROTO=TCP SPT=42147 DPT=33642 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T18:14:28.190262+02:00 machodeer kernel: [2606385.549048] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=43585 PROTO=TCP SPT=33820 DPT=8747 WINDOW=65535 RES=0x00 SYN URGP=0 show less	Port Scan
🇩🇪 Mailguard-FRD	2026-05-27 15:38:10 (1 week ago)	May 27 17:38:10 [redacted] postfix/smtps/smtpd[257734]: lost connection after CONNECT from unknown[8 ... show more May 27 17:38:10 [redacted] postfix/smtps/smtpd[257734]: lost connection after CONNECT from unknown[85.217.140.49] ... show less	Email Spam Brute-Force
🇩🇪 Axel	2026-05-27 14:32:25 (1 week ago)	[2026-05-27 14:32:25 UTC] Honeypot ADB (Android Debug Bridge) connection attempt \| AXFRA HONEYPOT	IoT Targeted
🇩🇪 2048	2026-05-27 12:57:01 (1 week ago)	2026-05-27T14:53:47.180831+02:00 machodeer kernel: [2594344.546601] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-27T14:53:47.180831+02:00 machodeer kernel: [2594344.546601] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=40364 PROTO=TCP SPT=54867 DPT=6826 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T14:54:02.701066+02:00 machodeer kernel: [2594360.066680] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=50 ID=64573 PROTO=TCP SPT=45333 DPT=36557 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T14:57:00.576553+02:00 machodeer kernel: [2594537.941142] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=1402 PROTO=TCP SPT=41482 DPT=28021 WINDOW=65535 RES=0x00 SYN URGP=0 show less	Port Scan
🇩🇪 2048	2026-05-27 11:53:45 (1 week ago)	2026-05-27T13:52:55.901912+02:00 machodeer kernel: [2590693.264037] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-27T13:52:55.901912+02:00 machodeer kernel: [2590693.264037] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=47975 PROTO=TCP SPT=53913 DPT=46092 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T13:53:07.000980+02:00 machodeer kernel: [2590704.363124] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=49 ID=31875 PROTO=TCP SPT=34404 DPT=4868 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T13:53:44.402656+02:00 machodeer kernel: [2590741.764989] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=14625 PROTO=TCP SPT=57913 DPT=46294 WINDOW=65535 RES=0x00 SYN URGP=0 show less	Port Scan
🇩🇪 2048	2026-05-27 10:24:45 (1 week ago)	2026-05-27T12:24:04.811775+02:00 machodeer kernel: [2585362.168743] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-27T12:24:04.811775+02:00 machodeer kernel: [2585362.168743] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=48810 PROTO=TCP SPT=50314 DPT=31072 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T12:24:19.761170+02:00 machodeer kernel: [2585377.117779] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=12293 PROTO=TCP SPT=49156 DPT=23615 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T12:24:44.039356+02:00 machodeer kernel: [2585401.396448] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=49 ID=40472 PROTO=TCP SPT=57391 DPT=39114 WINDOW=65535 RES=0x00 SYN URGP=0 show less	Port Scan
🇩🇪 2048	2026-05-27 09:18:16 (1 week ago)	2026-05-27T11:16:51.055490+02:00 machodeer kernel: [2581328.416667] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-27T11:16:51.055490+02:00 machodeer kernel: [2581328.416667] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=55929 PROTO=TCP SPT=48575 DPT=65088 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T11:17:01.311918+02:00 machodeer kernel: [2581338.673074] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=35567 PROTO=TCP SPT=55697 DPT=58185 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T11:18:16.306194+02:00 machodeer kernel: [2581413.667218] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=21176 PROTO=TCP SPT=40140 DPT=12297 WINDOW=65535 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 shabi	2026-05-27 08:49:27 (1 week ago)	UFW Blocked [12607/TCP] Source: 85.217.140.49:39852 TTL: 52 Lenth: 52 TOS: 0x00	Port Scan
🇩🇪 D3RP4UL	2026-05-27 08:43:53 (1 week ago)	Unauthorized traffic (19 bytes of payload); 8081 [1] TCP	Port Scan
🇺🇸 Rocky Mountain Bioengineering Symposium	2026-05-27 08:27:48 (1 week ago)	2026-05-27T02:27:48.238900-06:00 KLAS-A sshd[30025]: Connection closed by 85.217.140.49 port 50228 [ ... show more 2026-05-27T02:27:48.238900-06:00 KLAS-A sshd[30025]: Connection closed by 85.217.140.49 port 50228 [preauth] ... show less	Brute-Force SSH
🇩🇪 2048	2026-05-27 08:16:31 (1 week ago)	2026-05-27T10:15:51.349513+02:00 machodeer kernel: [2577668.707687] [UFW BLOCK] IN=ens3 OUT= MAC=RED ... show more 2026-05-27T10:15:51.349513+02:00 machodeer kernel: [2577668.707687] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=50 ID=21423 PROTO=TCP SPT=53096 DPT=28381 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T10:16:02.766896+02:00 machodeer kernel: [2577680.125071] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=52 ID=49191 PROTO=TCP SPT=42400 DPT=38203 WINDOW=65535 RES=0x00 SYN URGP=0 2026-05-27T10:16:30.515716+02:00 machodeer kernel: [2577707.873788] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=85.217.140.49 DST=REDACTED LEN=52 TOS=0x00 PREC=0x00 TTL=50 ID=38553 PROTO=TCP SPT=35313 DPT=13174 WINDOW=65535 RES=0x00 SYN URGP=0 show less	Port Scan
🇷🇺 SeMPaI	2026-05-27 07:43:10 (1 week ago)	[[hidden by err]] Port scan detected from FR from 85.217.140.49 to ports 12836	Port Scan
🇺🇸 podril1ak2.ru	2026-05-27 07:25:28 (1 week ago)	Blocked by UFW on reporterUS [14757/tcp] \| SPT: 36827 \| TTL: 53 \| LEN: 52 \| TOS: 0x00 • Reported by: ... show more Blocked by UFW on reporterUS [14757/tcp] \| SPT: 36827 \| TTL: 53 \| LEN: 52 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 256 to 270 of 6974 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 181.234.29.66

🇮🇳 103.93.37.178

🇧🇷 43.157.142.101

🇨🇳 221.235.197.210

🇩🇪 213.209.159.228

🇧🇪 213.118.56.177

🇮🇩 202.155.143.247

🇷🇴 193.32.162.13

🇸🇬 167.172.89.248

🇸🇬 146.190.80.154

🇮🇳 122.168.198.68

🇨🇳 112.123.185.188

🇷🇸 109.207.45.29

🇩🇪 102.220.160.153

🇺🇸 74.82.47.3

🇩🇪 69.5.169.31

🇺🇸 46.253.131.156

🇮🇪 20.191.45.212

🇺🇸 3.82.104.190

🇵🇱 185.241.208.74