JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.239.239.57

85.239.239.57 was found in our database!

This IP was reported 252 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS40021
Hostname(s)	vmi3340136.contaboserver.net
Domain Name	contabo.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.239.239.57

Whois 85.239.239.57

IP Abuse Reports for 85.239.239.57:

This IP address has been reported a total of 252 times from 147 distinct sources. 85.239.239.57 was first reported on June 1st 2026, and the most recent report was 53 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bigscoots.com	2026-06-02 11:13:52 (2 days ago)	(sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the ... show more (sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 2 06:12:34 14669 sshd[10860]: Invalid user admin from 85.239.239.57 port 55950 Jun 2 06:12:37 14669 sshd[10860]: Failed password for invalid user admin from 85.239.239.57 port 55950 ssh2 Jun 2 06:13:07 14669 sshd[11233]: Invalid user orangepi from 85.239.239.57 port 56980 Jun 2 06:13:09 14669 sshd[11233]: Failed password for invalid user orangepi from 85.239.239.57 port 56980 ssh2 Jun 2 06:13:40 14669 sshd[11394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.239.57 user=root show less	Brute-Force SSH
🇬🇧 thetomtaylor.co.uk	2026-06-02 11:07:02 (2 days ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇦🇱 router.al	2026-06-02 11:03:07 (2 days ago)	06/02/2026-11:03:07.700749 85.239.239.57 Protocol: 6 ET WEB_SERVER /bin/sh In URI Possible Shell Com ... show more 06/02/2026-11:03:07.700749 85.239.239.57 Protocol: 6 ET WEB_SERVER /bin/sh In URI Possible Shell Command Execution Attempt show less	Hacking
🇦🇺 greenhost.com.au	2026-06-02 11:00:05 (2 days ago)	Automated report: 67 attacks in 24h targeting cwp2 via SSH. SSH/brute_force: 54 on cwp2; SSH/invalid ... show more Automated report: 67 attacks in 24h targeting cwp2 via SSH. SSH/brute_force: 54 on cwp2; SSH/invalid_user: 20 on cwp2 show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-02 10:55:06 (2 days ago)	(sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the ... show more (sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 2 05:53:56 15726 sshd[27171]: Invalid user admin from 85.239.239.57 port 50836 Jun 2 05:53:58 15726 sshd[27171]: Failed password for invalid user admin from 85.239.239.57 port 50836 ssh2 Jun 2 05:54:28 15726 sshd[27476]: Invalid user orangepi from 85.239.239.57 port 55802 Jun 2 05:54:30 15726 sshd[27476]: Failed password for invalid user orangepi from 85.239.239.57 port 55802 ssh2 Jun 2 05:55:01 15726 sshd[27544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.239.57 user=root show less	Brute-Force SSH
🇳🇱 bitosis	2026-06-02 10:40:50 (2 days ago)	2026-06-02T12:39:47.661395+02:00 jumphost sshd-session[26186]: Invalid user admin from 85.239.239.57 ... show more 2026-06-02T12:39:47.661395+02:00 jumphost sshd-session[26186]: Invalid user admin from 85.239.239.57 port 52682 2026-06-02T12:40:18.749422+02:00 jumphost sshd-session[26188]: Invalid user orangepi from 85.239.239.57 port 51614 2026-06-02T12:40:49.796659+02:00 jumphost sshd-session[26201]: User root from 85.239.239.57 not allowed because none of user's groups are listed in AllowGroups ... show less	Brute-Force SSH
🇫🇷 zulzeen	2026-06-02 10:34:29 (2 days ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (SSH Attack)	SSH Brute-Force
🇳🇱 pearbright	2026-06-02 10:23:15 (2 days ago)	[Tue Jun 02 10:23:14.502259 2026] [core:error] [pid 429144:tid 429144] [client 85.239.239.57:33274] ... show more [Tue Jun 02 10:23:14.502259 2026] [core:error] [pid 429144:tid 429144] [client 85.239.239.57:33274] AH10244: invalid URI path (/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh) [Tue Jun 02 10:23:14.802825 2026] [core:error] [pid 429317:tid 429317] [client 85.239.239.57:33284] AH10244: invalid URI path (/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh) ... show less	Web App Attack
🇺🇸 bigscoots.com	2026-06-02 10:21:31 (2 days ago)	(sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the ... show more (sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 2 05:20:14 18020 sshd[14250]: Invalid user admin from 85.239.239.57 port 40396 Jun 2 05:20:17 18020 sshd[14250]: Failed password for invalid user admin from 85.239.239.57 port 40396 ssh2 Jun 2 05:20:47 18020 sshd[14405]: Invalid user orangepi from 85.239.239.57 port 56336 Jun 2 05:20:49 18020 sshd[14405]: Failed password for invalid user orangepi from 85.239.239.57 port 56336 ssh2 Jun 2 05:21:20 18020 sshd[14760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.239.57 user=root show less	Brute-Force SSH
🇯🇵 knock	2026-06-02 10:18:44 (2 days ago)	Knock-Knock honeypot brute-force: Telnet (1 total hits)	Brute-Force
🇺🇸 xmission.com	2026-06-02 10:11:10 (2 days ago)	Blocked by UFW (TCP on 2222) Source port: 43173 TTL: 59 Packet length: 40 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 2222) Source port: 43173 TTL: 59 Packet length: 40 TOS: 0x00 This report (for 85.239.239.57) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇭🇰 pengpeng	2026-06-02 10:08:56 (2 days ago)	monitor: on ser162528253480 \| port: 2222 \| ttl: 54 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on ser162528253480 \| port: 2222 \| ttl: 54 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 GoodOldTOS	2026-06-02 10:07:40 (2 days ago)	Connection to Telnet honeypot	Hacking
🇺🇸 MPL	2026-06-02 10:03:34 (2 days ago)	tcp port scan (10 or more attempts)	Port Scan
🇺🇸 bigscoots.com	2026-06-02 10:01:50 (2 days ago)	(sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the ... show more (sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 2 05:00:25 14260 sshd[31733]: Invalid user admin from 85.239.239.57 port 52452 Jun 2 05:00:28 14260 sshd[31733]: Failed password for invalid user admin from 85.239.239.57 port 52452 ssh2 Jun 2 05:00:58 14260 sshd[31868]: Invalid user orangepi from 85.239.239.57 port 32806 Jun 2 05:01:00 14260 sshd[31868]: Failed password for invalid user orangepi from 85.239.239.57 port 32806 ssh2 Jun 2 05:01:30 14260 sshd[32217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.239.57 user=root show less	Brute-Force SSH

Showing 166 to 180 of 252 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 186.96.193.30

🇮🇳 122.168.194.41

🇭🇰 103.230.240.59

🇱🇾 102.209.0.130

🇨🇳 14.103.103.211

🇷🇴 213.233.108.156

🇮🇳 202.62.88.25

🇪🇹 196.189.236.216

🇺🇸 170.106.167.142

🇭🇰 152.32.129.236

🇺🇸 107.167.34.125

🇷🇴 80.94.92.171

🇺🇸 212.85.28.210

🇨🇭 186.190.215.90

🇯🇵 152.32.146.202

🇧🇩 114.130.85.36

🇱🇹 45.227.254.170

🇻🇳 45.122.242.218

🇺🇸 44.50.58.123

🇸🇾 5.0.79.253