JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.167.55.45

85.167.55.45 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 0%: ?

ISP	Telenor Norge AS
Usage Type	Fixed Line ISP
ASN	AS2119
Hostname(s)	55a7372d.bb.online.no
Domain Name	telenor.no
Country	🇳🇴 Norway
City	Kristiansand, Agder

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.167.55.45

Whois 85.167.55.45

IP Abuse Reports for 85.167.55.45:

This IP address has been reported a total of 24 times from 20 distinct sources. 85.167.55.45 was first reported on March 14th 2026, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 SiyCah	2026-03-20 07:00:05 (2 months ago)	85.167.55.45 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time w ... show more 85.167.55.45 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time wasted: 16m 58s. Total bytes sent by tarpit: 60.00KiB. Report generated by Endlessh Report Generator v1.2.3 show less	Brute-Force Port Scan SSH Hacking
🇫🇷 SiyCah	2026-03-19 07:00:03 (2 months ago)	85.167.55.45 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time w ... show more 85.167.55.45 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time wasted: 16m 58s. Total bytes sent by tarpit: 60.00KiB. Report generated by Endlessh Report Generator v1.2.3 show less	Brute-Force Port Scan SSH Hacking
🇦🇹 urnilxfgbez	2026-03-17 23:45:00 (2 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇮 tjs	2026-03-17 23:05:00 (2 months ago)	web attack, shell attempt	Hacking Web App Attack
🇹🇷 Threat.live	2026-03-17 22:00:30 (2 months ago)	Brute Force, tcp/22	Brute-Force
🇺🇸 TPI-Abuse	2026-03-17 19:03:28 (2 months ago)	(mod_security) mod_security (id:218420) triggered by 85.167.55.45 (ti0033a400-4128.bb.online.no): 1 ... show more (mod_security) mod_security (id:218420) triggered by 85.167.55.45 (ti0033a400-4128.bb.online.no): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 17 15:03:19.974331 2026] [security2:error] [pid 31159:tid 31159] [client 85.167.55.45:60350] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i)php://(std(in\|out\|err)\|(in\|out)put\|fd\|memory\|temp\|filter)" at ARGS_NAMES:\\xadd allow_url_include=1 \\xadd auto_prepend_file=php://input. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/21_PHP_PHPGen.conf"] [line "22"] [id "218420"] [rev "2"] [msg "COMODO WAF: PHP Injection Attack: I/O Stream Found\|\|192.64.150.174:80\|F\|2"] [data "Matched Data: php://input found within ARGS_NAMES:\\x5cxadd allow_url_include=1 \\x5cxadd auto_prepend_file=php://input: \\xadd allow_url_include=1 \\xadd auto_prepend_file=php://input"] [severity "CRITICAL"] [tag "CWAF"] [tag "PHPGen"] [hostname "192.64.150.174"] [uri "/hello.world"] [unique_id "abmld24nEbXzmUZ6OpAc4gAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-03-17 17:13:51 (2 months ago)	Web App Attack	Brute-Force Web App Attack
🇪🇸 el-brujo	2026-03-17 16:59:07 (2 months ago)	03/17/2026-17:59:07.456907 85.167.55.45 Protocol: 6 ET SCAN Potential SSH Scan	Port Scan
🇧🇪 sauron-le-noir	2026-03-17 16:17:13 (2 months ago)	scan port : 23 from Norvège at Tue Mar 17 17:21:15 2026	Port Scan
🇩🇪 Freenex1911	2026-03-17 15:45:34 (2 months ago)	2026-03-17T16:44:46.266127+01:00 fusco sshd[3399778]: pam_unix(sshd:auth): authentication failure; l ... show more 2026-03-17T16:44:46.266127+01:00 fusco sshd[3399778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.167.55.45 2026-03-17T16:44:48.433723+01:00 fusco sshd[3399778]: Failed password for invalid user admin from 85.167.55.45 port 37356 ssh2 2026-03-17T16:45:33.369820+01:00 fusco sshd[3401312]: Invalid user orangepi from 85.167.55.45 port 42624 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-03-17 14:32:14 (2 months ago)	(sshd) Failed SSH login from 85.167.55.45 (NO/Norway/ti0033a400-4128.bb.online.no): 5 in the last 36 ... show more (sshd) Failed SSH login from 85.167.55.45 (NO/Norway/ti0033a400-4128.bb.online.no): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Mar 17 09:30:59 17509 sshd[20243]: Invalid user admin from 85.167.55.45 port 44372 Mar 17 09:31:01 17509 sshd[20243]: Failed password for invalid user admin from 85.167.55.45 port 44372 ssh2 Mar 17 09:31:34 17509 sshd[20345]: Invalid user orangepi from 85.167.55.45 port 51570 Mar 17 09:31:36 17509 sshd[20345]: Failed password for invalid user orangepi from 85.167.55.45 port 51570 ssh2 Mar 17 09:32:09 17509 sshd[20446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.167.55.45 user=root show less	Brute-Force SSH
🇦🇺 2000cn.com.au	2026-03-17 12:12:21 (2 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-cve-2021-41773	Web App Attack Hacking
🇳🇱 Savvii	2026-03-17 12:08:48 (2 months ago)	20 attempts against mh-ssh on soil	Brute-Force SSH
🇮🇹 GV	2026-03-17 11:53:50 (2 months ago)	Tentativo Attacco Forza Bruta	Brute-Force SSH
🇫🇷 security.rdmc.fr	2026-03-17 11:39:55 (2 months ago)	Port Scan Attack proto:TCP src:47216 dst:23	Port Scan

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.67.150.27

🇺🇸 154.92.23.249

🇺🇸 44.211.74.202

🇺🇸 34.174.183.66

🇰🇷 220.88.220.59

🇫🇷 194.163.139.224

🇧🇷 187.181.211.31

🇬🇧 89.37.172.139

🇫🇷 83.171.226.124

🇵🇱 45.144.48.159

🇬🇧 31.14.254.16

🇧🇷 20.226.80.51

🇩🇪 213.209.159.11

🇭🇰 154.92.17.30

🇨🇦 85.217.149.73

🇺🇸 18.190.15.50

🇩🇪 2001:9e8:5255:f800:533:ac7c:28f3:4767

🇺🇸 216.25.89.149

🇹🇼 198.235.24.123

🇺🇸 172.67.153.91