JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.239.249.222

85.239.249.222 was found in our database!

This IP was reported 622 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS40021
Hostname(s)	vmi3334587.contaboserver.net
Domain Name	contabo.com
Country	🇺🇸 United States of America
City	Orangeburg, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.239.249.222

Whois 85.239.249.222

IP Abuse Reports for 85.239.249.222:

This IP address has been reported a total of 622 times from 280 distinct sources. 85.239.249.222 was first reported on June 5th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-21 22:30:36 (1 day ago)	Fail2ban report Host: v22017064741750900.bestsrv.de Jail: sshd Service: SSH Port: 2222	Brute-Force SSH
🇫🇮 SecOpsTr1nket	2026-06-17 15:45:14 (5 days ago)	SSH brute force on port 2222. Banned by fail2ban after 3 attempts.	SSH Brute-Force
🇳🇱 Cyber SOC	2026-06-16 16:19:18 (6 days ago)	Peaksys - 2026-06-16 17:18:59 UTC+01	Port Scan
🇺🇸 chronos	2026-06-15 07:11:31 (1 week ago)	[AUTORAVALT][[15/06/2026 - 04:11:30 -03:00 UTC] Attack from [85.239.249.222][vmi3334587.contaboserve ... show more [AUTORAVALT][[15/06/2026 - 04:11:30 -03:00 UTC] Attack from [85.239.249.222][vmi3334587.contaboserver.net] Action: BLocKed FTP Brute-Force -> Running brute force credentials on the FTP server. Brute-Force -> Credential brute-force attacks on webpage logins and services like SSH, FTP, SIP, SMTP, RDP, etc. ] ... show less	FTP Brute-Force Brute-Force
🇺🇸 chronos	2026-06-15 06:19:12 (1 week ago)	[AUTORAVALT][[15/06/2026 - 03:19:11 -03:00 UTC] Attack from [85.239.249.222][vmi3334587.contaboserve ... show more [AUTORAVALT][[15/06/2026 - 03:19:11 -03:00 UTC] Attack from [85.239.249.222][vmi3334587.contaboserver.net] Action: BLocKed FTP Brute-Force -> Running brute force credentials on the FTP server. Brute-Force -> Credential brute-force attacks on webpage logins and services like SSH, FTP, SIP, SMTP, RDP, etc. ] ... show less	FTP Brute-Force Brute-Force
🇺🇸 bigscoots.com	2026-06-14 08:38:47 (1 week ago)	(sshd) Failed SSH login from 85.239.249.222 (US/United States/vmi3334587.contaboserver.net): 5 in th ... show more (sshd) Failed SSH login from 85.239.249.222 (US/United States/vmi3334587.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 14 03:37:22 13979 sshd[23329]: Invalid user admin from 85.239.249.222 port 34714 Jun 14 03:37:24 13979 sshd[23329]: Failed password for invalid user admin from 85.239.249.222 port 34714 ssh2 Jun 14 03:37:55 13979 sshd[23533]: Invalid user orangepi from 85.239.249.222 port 55820 Jun 14 03:37:56 13979 sshd[23533]: Failed password for invalid user orangepi from 85.239.249.222 port 55820 ssh2 Jun 14 03:38:27 13979 sshd[23905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.249.222 user=root show less	Brute-Force SSH
🇨🇭 Mario Bretscher	2026-06-14 08:31:25 (1 week ago)	2026-06-14T10:30:43.847834+02:00 janus sshd[350119]: Invalid user orangepi from 85.239.249.222 port ... show more 2026-06-14T10:30:43.847834+02:00 janus sshd[350119]: Invalid user orangepi from 85.239.249.222 port 47030 2026-06-14T10:30:43.858920+02:00 janus sshd[350119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.249.222 2026-06-14T10:30:45.595182+02:00 janus sshd[350119]: Failed password for invalid user orangepi from 85.239.249.222 port 47030 ssh2 2026-06-14T10:31:22.408320+02:00 janus sshd[350175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.249.222 user=root 2026-06-14T10:31:24.164967+02:00 janus sshd[350175]: Failed password for root from 85.239.249.222 port 45910 ssh2 ... show less	SSH
Anonymous	2026-06-14 07:31:08 (1 week ago)	Brute-Force reported by Fail2Ban	Brute-Force Web App Attack
🇧🇷 SOC-BR	2026-06-14 07:22:05 (1 week ago)	Attack detected by Fortinet - apache: Apache.HTTP.Server.cgi-bin.Path.Traversal - 2026-06-13 19:59:3 ... show more Attack detected by Fortinet - apache: Apache.HTTP.Server.cgi-bin.Path.Traversal - 2026-06-13 19:59:38 - Source Port 58436 show less	Port Scan Hacking
🇮🇹 ciccio diddo	2026-06-14 07:19:21 (1 week ago)	High Burst multiple 40X port:Tcp/80,443	Brute-Force Web App Attack
🇺🇸 MPL	2026-06-14 07:00:23 (1 week ago)	tcp/2222 (2 or more attempts)	Port Scan
🇫🇮 xela_uvas	2026-06-14 06:47:38 (1 week ago)	SSH attack	Brute-Force SSH
🇫🇮 PrivateGER	2026-06-14 06:13:02 (1 week ago)	2026-06-14T08:10:57.689599+02:00 coffeelake sshd[3793097]: Invalid user rollyvpn from 85.239.249.222 ... show more 2026-06-14T08:10:57.689599+02:00 coffeelake sshd[3793097]: Invalid user rollyvpn from 85.239.249.222 port 56546 2026-06-14T08:11:28.906215+02:00 coffeelake sshd[3794293]: Invalid user rohan from 85.239.249.222 port 36654 2026-06-14T08:12:00.034394+02:00 coffeelake sshd[3795354]: Invalid user rocco from 85.239.249.222 port 34308 2026-06-14T08:12:30.921043+02:00 coffeelake sshd[3796569]: Invalid user roberto from 85.239.249.222 port 37388 2026-06-14T08:13:02.022226+02:00 coffeelake sshd[3797459]: Invalid user ricardo from 85.239.249.222 port 50888 ... show less	Brute-Force SSH
🇺🇸 RAP	2026-06-14 05:58:03 (1 week ago)	2026-06-14 05:58:03 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇺🇸 bigscoots.com	2026-06-14 05:48:45 (1 week ago)	(sshd) Failed SSH login from 85.239.249.222 (US/United States/vmi3334587.contaboserver.net): 5 in th ... show more (sshd) Failed SSH login from 85.239.249.222 (US/United States/vmi3334587.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 14 00:47:35 15845 sshd[19416]: Invalid user admin from 85.239.249.222 port 34288 Jun 14 00:47:37 15845 sshd[19416]: Failed password for invalid user admin from 85.239.249.222 port 34288 ssh2 Jun 14 00:48:08 15845 sshd[19803]: Invalid user orangepi from 85.239.249.222 port 39900 Jun 14 00:48:09 15845 sshd[19803]: Failed password for invalid user orangepi from 85.239.249.222 port 39900 ssh2 Jun 14 00:48:40 15845 sshd[19968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.249.222 user=root show less	Brute-Force SSH

Showing 1 to 15 of 622 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇹 196.191.142.67

🇧🇷 187.51.212.130

🇬🇧 185.247.137.215

🇨🇳 183.129.249.4

🇳🇱 167.99.39.228

🇨🇳 120.204.162.32

🇨🇳 115.190.185.14

🇨🇳 111.0.81.84

🇲🇲 103.121.231.136

🇰🇪 102.210.148.92

🇺🇸 91.230.168.142

🇬🇧 86.19.20.223

🇧🇬 79.124.62.134

🇩🇪 69.5.169.2

🇺🇸 66.132.186.200

🇨🇳 58.210.182.18

🇳🇱 51.158.249.16

🇨🇳 36.143.165.45

🇪🇸 5.182.83.231

🇳🇱 217.60.195.138