JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.239.239.57

85.239.239.57 was found in our database!

This IP was reported 240 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS40021
Hostname(s)	vmi3340136.contaboserver.net
Domain Name	contabo.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.239.239.57

Whois 85.239.239.57

IP Abuse Reports for 85.239.239.57:

This IP address has been reported a total of 240 times from 141 distinct sources. 85.239.239.57 was first reported on June 1st 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 lufi	2026-06-03 18:52:14 (15 hours ago)	2026-06-03T20:46:31.540671+02:00 lufischer04 sshd[1556457]: Invalid user admin from 85.239.239.57 po ... show more 2026-06-03T20:46:31.540671+02:00 lufischer04 sshd[1556457]: Invalid user admin from 85.239.239.57 port 40340 2026-06-03T20:47:02.626146+02:00 lufischer04 sshd[1557003]: Invalid user orangepi from 85.239.239.57 port 41816 2026-06-03T20:50:40.579556+02:00 lufischer04 sshd[1561207]: Invalid user test from 85.239.239.57 port 34514 2026-06-03T20:51:11.690435+02:00 lufischer04 sshd[1561720]: Invalid user user from 85.239.239.57 port 38100 2026-06-03T20:52:14.114295+02:00 lufischer04 sshd[1562829]: Invalid user admin from 85.239.239.57 port 60100 ... show less	Web Spam Brute-Force Hacking Web App Attack
🇮🇪 AutosOnShow	2026-06-03 18:46:05 (15 hours ago)	blocked for webapp attack \| path requested: /index.php \| seen at 2026-06-03 18:45:42.183 \|	Web App Attack
Anonymous	2026-06-03 18:44:45 (15 hours ago)	SSH brute force attempt. User: admin, Pass: [REDACTED]	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-03 18:36:21 (15 hours ago)	(sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the ... show more (sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 3 13:34:52 15851 sshd[18122]: Invalid user admin from 85.239.239.57 port 52308 Jun 3 13:34:54 15851 sshd[18122]: Failed password for invalid user admin from 85.239.239.57 port 52308 ssh2 Jun 3 13:35:25 15851 sshd[18589]: Invalid user orangepi from 85.239.239.57 port 39656 Jun 3 13:35:26 15851 sshd[18589]: Failed password for invalid user orangepi from 85.239.239.57 port 39656 ssh2 Jun 3 13:35:57 15851 sshd[18751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.239.57 user=root show less	Brute-Force SSH
🇵🇱 WinnieHoneypots	2026-06-03 18:33:44 (15 hours ago)	Idiot tries going above server root: /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/ ... show more Idiot tries going above server root: /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh show less	Web App Attack Hacking
Anonymous	2026-06-03 18:30:02 (15 hours ago)	\| A web attack returned code 200 (success).	Web App Attack Hacking SQL Injection
Anonymous	2026-06-03 18:20:11 (15 hours ago)	fail2ban: Sensitive web probes detected	Web App Attack
🇮🇪 AutosOnShow	2026-06-03 18:12:04 (15 hours ago)	blocked for webapp attack \| path requested: / \| seen at 2026-06-03 18:11:45.474 \|	Web App Attack
🇺🇸 bigscoots.com	2026-06-03 18:09:16 (15 hours ago)	(sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the ... show more (sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 3 13:07:49 14236 sshd[9391]: Invalid user admin from 85.239.239.57 port 45996 Jun 3 13:07:52 14236 sshd[9391]: Failed password for invalid user admin from 85.239.239.57 port 45996 ssh2 Jun 3 13:08:22 14236 sshd[9752]: Invalid user orangepi from 85.239.239.57 port 36468 Jun 3 13:08:24 14236 sshd[9752]: Failed password for invalid user orangepi from 85.239.239.57 port 36468 ssh2 Jun 3 13:08:54 14236 sshd[9907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.239.57 user=root show less	Brute-Force SSH
🇺🇸 xxkodedxx	2026-06-03 17:57:01 (16 hours ago)	[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost) Trigger: 1× edge-block in 10 ... show more [Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost) Trigger: 1× edge-block in 10m window. Origin: US / AS40021 Contabo Inc. Active: 17:56:36 UTC Volume: 3 HTTP req Probed: /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh, /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh, /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input Status mix: 400×2 444×1 Vhost fishing: 67.217.240.72 UA: "libredtail-http" Auto-banned 30d. zorvexus-banner. show less	Bad Web Bot Web App Attack
🇬🇧 gbzret4d	2026-06-03 17:39:53 (16 hours ago)	Honeypot [uk-production01]: HTTP/1.1 request on 2375 GET /containers/json User-Agent: libredtail-ht ... show more Honeypot [uk-production01]: HTTP/1.1 request on 2375 GET /containers/json User-Agent: libredtail-http Accept: /; 2375 [1] TCP show less	Hacking Bad Web Bot
🇳🇱 myip.foo	2026-06-03 17:18:46 (16 hours ago)	[myip.foo] 85.239.239.57 - - [03/Jun/2026:17:18:45 +0000] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.% ... show more [myip.foo] 85.239.239.57 - - [03/Jun/2026:17:18:45 +0000] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 150 "-" "-" show less	Hacking Exploited Host Web App Attack
🇮🇪 AutosOnShow	2026-06-03 17:16:05 (16 hours ago)	blocked for webapp attack \| path requested: /index.php \| seen at 2026-06-03 17:15:40.990 \|	Web App Attack
🇸🇬 anotherwatcher	2026-06-03 17:04:44 (16 hours ago)	bad bot	Bad Web Bot
🇺🇸 bigscoots.com	2026-06-03 16:45:35 (17 hours ago)	(sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the ... show more (sshd) Failed SSH login from 85.239.239.57 (US/United States/vmi3340136.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 3 11:44:27 15533 sshd[14067]: Invalid user admin from 85.239.239.57 port 42058 Jun 3 11:44:29 15533 sshd[14067]: Failed password for invalid user admin from 85.239.239.57 port 42058 ssh2 Jun 3 11:45:00 15533 sshd[14222]: Invalid user orangepi from 85.239.239.57 port 33180 Jun 3 11:45:02 15533 sshd[14222]: Failed password for invalid user orangepi from 85.239.239.57 port 33180 ssh2 Jun 3 11:45:32 15533 sshd[14589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.239.57 user=root show less	Brute-Force SSH

Showing 46 to 60 of 240 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.193.232.168

🇪🇹 196.190.220.199

🇸🇪 193.180.125.77

🇦🇷 167.250.118.3

🇮🇳 152.52.244.106

🇨🇳 123.121.5.118

🇮🇶 65.20.237.109

🇺🇸 52.161.51.64

🇲🇾 49.124.146.41

🇻🇳 14.186.59.90

🇹🇷 5.11.162.163

🇨🇳 220.162.123.18

🇳🇱 172.225.253.137

🇫🇷 89.117.169.136

🇱🇹 62.60.130.31

🇺🇦 45.14.29.129

🇯🇵 20.89.130.19

🇺🇸 184.154.194.183

🇮🇳 182.95.223.90

🇮🇳 182.95.113.74