JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.239.249.202

85.239.249.202 was found in our database!

This IP was reported 382 times. Confidence of Abuse is 31%: ?

31%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS40021
Hostname(s)	vmi3362271.contaboserver.net
Domain Name	contabo.com
Country	🇺🇸 United States of America
City	Orangeburg, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.239.249.202

Whois 85.239.249.202

IP Abuse Reports for 85.239.249.202:

This IP address has been reported a total of 382 times from 217 distinct sources. 85.239.249.202 was first reported on April 1st 2026, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 slartybartfast69420blazit	2026-06-25 20:46:04 (19 hours ago)	Fail2ban picked up 85.239.249.202 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-23 20:46:42 (2 days ago)	Fail2ban picked up 85.239.249.202 attacking nginx	Web App Attack
🇮🇳 evicky2002	2026-06-23 05:52:11 (3 days ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇫🇮 nNordic	2026-06-09 09:15:56 (2 weeks ago)	Connection attempt blocked by IDS/IPS from 85.239.249.202/32	Hacking
🇷🇺 Agrohim	2026-05-30 00:43:43 (3 weeks ago)	Gate Inet blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force
🇧🇷 ICS Labs	2026-05-20 12:51:30 (1 month ago)	ICS Labs identified 85.239.249.202 as a malicious indicator from threat intelligence.	Hacking
🇩🇪 ghostwarriors	2026-05-06 13:21:19 (1 month ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇨🇦 polycoda	2026-04-29 13:21:18 (1 month ago)	AutoBlock: 🎯 Vulnerability Scanner (Non Decay-Based)	Hacking Web App Attack
🇧🇷 Peregrine	2026-04-26 03:14:17 (2 months ago)	Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: - 85.239.249.202 - - [22/Apr/2026:21:41:24 -0300] " ... show more Fail2Ban ct101 Jail: tomcat-honeypot \| Evidence: - 85.239.249.202 - - [22/Apr/2026:21:41:24 -0300] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 18193 show less	Bad Web Bot
🇦🇹 urnilxfgbez	2026-04-24 22:45:00 (2 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 _ArminS_	2026-04-24 07:34:56 (2 months ago)	SP-Scan 33033:23 detected 2026.04.24 09:34:56 blocked until 2026.06.13 02:37:43	Port Scan
🇫🇮 nNordic	2026-04-24 06:59:45 (2 months ago)	Connection attempt blocked by IDS/IPS from 85.239.249.202/32	Hacking
🇺🇸 RAP	2026-04-24 06:26:07 (2 months ago)	2026-04-24 06:26:07 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇮🇹 LTM	2026-04-24 06:20:01 (2 months ago)	WebServer - Attempts to exploit	Hacking Brute-Force Web App Attack
🇺🇸 xmission.com	2026-04-24 06:11:50 (2 months ago)	Blocked by UFW (TCP on 23) Source port: 55394 TTL: 50 Packet length: 40 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 55394 TTL: 50 Packet length: 40 TOS: 0x08 This report (for 85.239.249.202) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force

Showing 1 to 15 of 382 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 178.219.98.130

🇮🇳 135.235.138.43

🇭🇰 123.58.209.112

🇨🇳 115.190.166.75

🇳🇱 45.148.10.147

🇸🇬 43.173.181.76

🇸🇬 43.173.180.238

🇸🇬 43.172.194.93

🇺🇸 18.119.209.50

🇺🇸 216.24.219.153

🇳🇱 195.178.110.232

🇺🇸 194.187.179.145

🇺🇸 192.178.115.90

🇰🇷 112.216.129.27

🇨🇳 42.177.70.61

🇧🇷 20.226.8.231

🇺🇸 20.127.244.67

🇻🇳 14.248.83.33

🇮🇳 4.213.38.49

🇯🇵 172.235.201.240