← Back to Dashboard

213.55.85.202 Threat Intelligence Report

Risk Level: CRITICAL — 606 abuse reports from 7 sources

Threat Intelligence Summary

IP address 213.55.85.202 has been flagged in 606 abuse reports across 7 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is aggregated threat, along with bruteforce, email abuse, malware c2, rdp bruteforce, repeat offender, reputation low, ssh bruteforce, unknown.

This IP is geolocated in Ethiopia (Harar) and belongs to the network Ethiopian Telecommunication Corporation (AS24757). Reports span from 2022-12-30 to 2026-04-17.

Assessment: With 606 abuse reports, 213.55.85.202 shows persistent malicious activity that has been flagged by multiple threat intelligence feeds. The IP has been observed conducting automated SSH login attempts against internet-facing servers, a technique commonly used to gain unauthorized access to systems.

Data aggregated from 7 independent threat intelligence sources.

Geolocation

Country Ethiopia
City Harar
Region Harari Region
ISP/ASN Ethiopian Telecommunication Corporation
Timezone Africa/Addis_Ababa

Threat Status

Overall Status Critical
Threat Score 100.0%
Report Count 606
Sources 7
First Seen 2022-12-30
Last Seen 2026-04-17
AI Analysis

Check IPs automatically with the WAYSCloud API

Free tier: 1,000 lookups/day. Get threat scores, geolocation, and abuse reports via REST API.

Explore the API →

See how we classify and verify threats →

Related Intelligence

Ethiopia Threat Intelligence → AS24757 Network Intelligence → See all top malicious IPs → View latest attacks →
Learn about these threats: