JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.230.215.67

85.230.215.67 was found in our database!

This IP was reported 237 times. Confidence of Abuse is 0%: ?

ISP	Telenor Sverige AB
Usage Type	Fixed Line ISP
ASN	AS8434
Hostname(s)	c-85-230-215-67.bbcust.telenor.se
Domain Name	telenor.se
Country	🇸🇪 Sweden
City	Uppsala, Uppsala

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.230.215.67

Whois 85.230.215.67

IP Abuse Reports for 85.230.215.67:

This IP address has been reported a total of 237 times from 102 distinct sources. 85.230.215.67 was first reported on November 29th 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FBI_CyberUnit	2025-12-29 02:40:14 (5 months ago)	Multiple failed SSH login attempts	Brute-Force SSH
🇺🇸 MPL	2025-12-28 08:49:51 (6 months ago)	tcp/2222 (2 or more attempts)	Port Scan
🇺🇸 Moby	2025-12-28 05:31:55 (6 months ago)	Sat Dec 27 23:31:10.534264 202585.230.215.67 - - [27/Dec/2025:23:31:21 -0600] "POST /hello.world?%AD ... show more Sat Dec 27 23:31:10.534264 202585.230.215.67 - - [27/Dec/2025:23:31:21 -0600] "POST /hello.world?%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input HTTP/1.1" 404 985 "-" "libredtail-http" "98.194.227.56" "98.194.227.56" Sat Dec 27 23:31:10.534264 202585.230.215.67 - - [27/Dec/2025:23:31:41 -0600] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 985 "-" "libredtail-http" "98.194.227.56" "98.194.227.56" Sat Dec 27 23:31:10.534264 202585.230.215.67 - - [27/Dec/2025:23:31:54 -0600] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 985 "-" "libredtail-http" "98.194.227.56" "98.194.227.56" ... show less	Web App Attack
🇩🇪 Admins@FBN	2025-12-27 23:50:09 (6 months ago)	FW-PortScan: Traffic Blocked srcport=55915 dstport=22	Port Scan Hacking SSH
🇦🇹 urnilxfgbez	2025-12-27 23:45:00 (6 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇬🇧 lewisgill.com	2025-12-27 22:07:55 (6 months ago)	Dec 27 22:04:58 lewisgillcom sshd[632556]: Invalid user orangepi from 85.230.215.67 port 58820 Dec 2 ... show more Dec 27 22:04:58 lewisgillcom sshd[632556]: Invalid user orangepi from 85.230.215.67 port 58820 Dec 27 22:04:58 lewisgillcom sshd[632556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.230.215.67 Dec 27 22:05:00 lewisgillcom sshd[632556]: Failed password for invalid user orangepi from 85.230.215.67 port 58820 ssh2 Dec 27 22:07:48 lewisgillcom sshd[633149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.230.215.67 user=root Dec 27 22:07:50 lewisgillcom sshd[633149]: Failed password for root from 85.230.215.67 port 33482 ssh2 ... show less	Hacking Brute-Force SSH
🇩🇪 nzxl	2025-12-27 18:18:24 (6 months ago)	2025-12-27T18:03:10.945560+00:00 nzxldotspace sshd[3525362]: Invalid user admin from 85.230.215.67 p ... show more 2025-12-27T18:03:10.945560+00:00 nzxldotspace sshd[3525362]: Invalid user admin from 85.230.215.67 port 40424 2025-12-27T18:05:01.888393+00:00 nzxldotspace sshd[3525675]: Invalid user orangepi from 85.230.215.67 port 60208 2025-12-27T18:18:22.792392+00:00 nzxldotspace sshd[3527843]: Invalid user test from 85.230.215.67 port 57032 ... show less	Brute-Force SSH
🇰🇷 ericshim.me	2025-12-27 14:14:44 (6 months ago)	Reported from fail2ban historical logs. (Detected at 2025-12-27 14:14:44)	Brute-Force SSH
🇩🇪 iNetWorker	2025-12-27 02:10:23 (6 months ago)	firewall-block, port(s): 2222/tcp	Port Scan
Anonymous	2025-12-26 22:36:36 (6 months ago)	ssh bruteforce	Brute-Force SSH
🇫🇷 sthoyer.de	2025-12-26 19:47:36 (6 months ago)	Dec 26 20:47:36 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Dec 26 20:47:36 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=85.230.215.67 DST=173.212.223.67 LEN=40 TOS=0x00 PREC=0x00 TTL=55 ID=35568 PROTO=TCP SPT=40914 DPT=22 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇵🇱 Wepted	2025-12-26 19:44:07 (6 months ago)	2025-12-26T21:36:58.522836+02:00 axisverse sshd-session[1725487]: Invalid user admin from 85.230.215 ... show more 2025-12-26T21:36:58.522836+02:00 axisverse sshd-session[1725487]: Invalid user admin from 85.230.215.67 port 45008 2025-12-26T21:37:50.568220+02:00 axisverse sshd-session[1726899]: Invalid user orangepi from 85.230.215.67 port 53346 2025-12-26T21:44:06.317529+02:00 axisverse sshd-session[1736732]: Invalid user test from 85.230.215.67 port 58320 ... show less	Brute-Force SSH
🇺🇸 RAP	2025-12-26 16:12:18 (6 months ago)	2025-12-26 16:12:18 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇺🇸 MPL	2025-12-26 04:33:37 (6 months ago)	tcp/22 (4 or more attempts)	Port Scan
🇬🇧 ISPLtd	2025-12-26 01:39:22 (6 months ago)	Dec 25 21:39:22 85.230.215.67 TCP SPT=51912 DPT=22 SYN ...	Port Scan SSH

Showing 1 to 15 of 237 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇿 154.242.49.104

🇨🇴 161.18.228.63

🇨🇴 143.105.99.196

🇱🇹 62.60.130.219

🇬🇧 35.203.211.239

🇯🇵 8.216.7.38

🇺🇸 216.180.246.182

🇧🇷 206.42.21.38

🇻🇳 165.154.105.128

🇵🇭 165.154.59.90

🇺🇸 162.216.150.128

🇺🇸 162.216.150.103

🇨🇳 123.244.0.0

🇮🇶 92.119.60.45

🇧🇬 79.124.56.238

🇺🇸 66.132.172.229

🇳🇱 45.148.10.134

🇩🇪 37.4.228.125

🇺🇸 35.237.38.223

🇺🇸 20.221.57.26