80.211.45.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Aruba S.p.A. - Cloud Services DC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Brute-force attempt banned	2020-05-26 16:42:09
attack	Invalid user banner from 80.211.45.85 port 33238	2020-05-26 03:27:55
attackspambots	May 24 14:28:54 eventyay sshd[14332]: Failed password for root from 80.211.45.85 port 48756 ssh2 May 24 14:33:21 eventyay sshd[14448]: Failed password for root from 80.211.45.85 port 54108 ssh2 May 24 14:37:51 eventyay sshd[14560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 ...	2020-05-24 21:49:41
attack	Invalid user rtp from 80.211.45.85 port 54090	2020-05-23 13:22:54
attack	$f2bV_matches	2020-05-11 22:44:09
attackspam	May 2 09:51:45 ny01 sshd[10829]: Failed password for root from 80.211.45.85 port 33282 ssh2 May 2 09:54:35 ny01 sshd[11187]: Failed password for root from 80.211.45.85 port 48170 ssh2	2020-05-03 02:00:36
attack	May 1 07:02:10 web8 sshd\[13231\]: Invalid user ubuntu from 80.211.45.85 May 1 07:02:10 web8 sshd\[13231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 May 1 07:02:13 web8 sshd\[13231\]: Failed password for invalid user ubuntu from 80.211.45.85 port 49758 ssh2 May 1 07:07:36 web8 sshd\[16090\]: Invalid user tms from 80.211.45.85 May 1 07:07:36 web8 sshd\[16090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85	2020-05-01 15:18:04
attack	Apr 24 12:04:10 ip-172-31-62-245 sshd\[28816\]: Invalid user kinerk from 80.211.45.85\ Apr 24 12:04:12 ip-172-31-62-245 sshd\[28816\]: Failed password for invalid user kinerk from 80.211.45.85 port 33622 ssh2\ Apr 24 12:06:45 ip-172-31-62-245 sshd\[28835\]: Invalid user boomi from 80.211.45.85\ Apr 24 12:06:46 ip-172-31-62-245 sshd\[28835\]: Failed password for invalid user boomi from 80.211.45.85 port 44982 ssh2\ Apr 24 12:09:17 ip-172-31-62-245 sshd\[28946\]: Invalid user ts3sleep from 80.211.45.85\	2020-04-24 21:30:25
attack	2020-04-21T16:45:56.797558amanda2.illicoweb.com sshd\[10873\]: Invalid user admin3 from 80.211.45.85 port 44272 2020-04-21T16:45:56.800958amanda2.illicoweb.com sshd\[10873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 2020-04-21T16:45:59.057334amanda2.illicoweb.com sshd\[10873\]: Failed password for invalid user admin3 from 80.211.45.85 port 44272 ssh2 2020-04-21T16:53:49.015722amanda2.illicoweb.com sshd\[11392\]: Invalid user ftpuser1 from 80.211.45.85 port 38454 2020-04-21T16:53:49.018103amanda2.illicoweb.com sshd\[11392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 ...	2020-04-22 00:02:34
attackbots	$f2bV_matches	2020-04-20 20:48:38
attackspam	Apr 19 22:40:45 legacy sshd[19432]: Failed password for root from 80.211.45.85 port 42882 ssh2 Apr 19 22:46:17 legacy sshd[19878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Apr 19 22:46:19 legacy sshd[19878]: Failed password for invalid user oracle from 80.211.45.85 port 33090 ssh2 ...	2020-04-20 07:52:58
attackspambots	Apr 19 06:39:02 vlre-nyc-1 sshd\[16531\]: Invalid user ftpuser1 from 80.211.45.85 Apr 19 06:39:02 vlre-nyc-1 sshd\[16531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Apr 19 06:39:04 vlre-nyc-1 sshd\[16531\]: Failed password for invalid user ftpuser1 from 80.211.45.85 port 37632 ssh2 Apr 19 06:44:25 vlre-nyc-1 sshd\[16731\]: Invalid user postgres from 80.211.45.85 Apr 19 06:44:25 vlre-nyc-1 sshd\[16731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 ...	2020-04-19 15:27:25
attackspambots	2020-04-16T04:31:58.471213abusebot-4.cloudsearch.cf sshd[32531]: Invalid user rui from 80.211.45.85 port 56400 2020-04-16T04:31:58.478832abusebot-4.cloudsearch.cf sshd[32531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 2020-04-16T04:31:58.471213abusebot-4.cloudsearch.cf sshd[32531]: Invalid user rui from 80.211.45.85 port 56400 2020-04-16T04:32:00.777544abusebot-4.cloudsearch.cf sshd[32531]: Failed password for invalid user rui from 80.211.45.85 port 56400 ssh2 2020-04-16T04:36:47.804223abusebot-4.cloudsearch.cf sshd[363]: Invalid user client from 80.211.45.85 port 34804 2020-04-16T04:36:47.812894abusebot-4.cloudsearch.cf sshd[363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 2020-04-16T04:36:47.804223abusebot-4.cloudsearch.cf sshd[363]: Invalid user client from 80.211.45.85 port 34804 2020-04-16T04:36:49.785582abusebot-4.cloudsearch.cf sshd[363]: Failed password for inval ...	2020-04-16 18:11:33
attack	SSH Brute Force	2020-04-14 03:19:03
attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-04-06 18:58:33
attackbots	sshd jail - ssh hack attempt	2020-04-04 05:04:51
attackspambots	SSH bruteforce (Triggered fail2ban)	2020-03-25 15:44:40
attack	Mar 18 15:16:42 h2779839 sshd[12718]: Invalid user liqingxuan from 80.211.45.85 port 35484 Mar 18 15:16:42 h2779839 sshd[12718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Mar 18 15:16:42 h2779839 sshd[12718]: Invalid user liqingxuan from 80.211.45.85 port 35484 Mar 18 15:16:44 h2779839 sshd[12718]: Failed password for invalid user liqingxuan from 80.211.45.85 port 35484 ssh2 Mar 18 15:21:28 h2779839 sshd[12781]: Invalid user tor from 80.211.45.85 port 55708 Mar 18 15:21:28 h2779839 sshd[12781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Mar 18 15:21:28 h2779839 sshd[12781]: Invalid user tor from 80.211.45.85 port 55708 Mar 18 15:21:30 h2779839 sshd[12781]: Failed password for invalid user tor from 80.211.45.85 port 55708 ssh2 Mar 18 15:26:03 h2779839 sshd[12824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 user=pr ...	2020-03-19 00:12:39
attack	Mar 10 10:13:22 ns382633 sshd\[7702\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 user=root Mar 10 10:13:24 ns382633 sshd\[7702\]: Failed password for root from 80.211.45.85 port 49718 ssh2 Mar 10 10:23:29 ns382633 sshd\[9481\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 user=root Mar 10 10:23:31 ns382633 sshd\[9481\]: Failed password for root from 80.211.45.85 port 36674 ssh2 Mar 10 10:27:40 ns382633 sshd\[10338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 user=root	2020-03-10 18:24:31
attackspambots	Feb 20 19:05:54 ift sshd\[46636\]: Invalid user alex from 80.211.45.85Feb 20 19:05:56 ift sshd\[46636\]: Failed password for invalid user alex from 80.211.45.85 port 57446 ssh2Feb 20 19:09:15 ift sshd\[47157\]: Invalid user wangyw from 80.211.45.85Feb 20 19:09:18 ift sshd\[47157\]: Failed password for invalid user wangyw from 80.211.45.85 port 58470 ssh2Feb 20 19:12:37 ift sshd\[47830\]: Invalid user minecraft from 80.211.45.85 ...	2020-02-21 01:40:43
attackbots	Feb 9 14:36:18 tuxlinux sshd[43653]: Invalid user lcf from 80.211.45.85 port 59802 Feb 9 14:36:18 tuxlinux sshd[43653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Feb 9 14:36:18 tuxlinux sshd[43653]: Invalid user lcf from 80.211.45.85 port 59802 Feb 9 14:36:18 tuxlinux sshd[43653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Feb 9 14:36:18 tuxlinux sshd[43653]: Invalid user lcf from 80.211.45.85 port 59802 Feb 9 14:36:18 tuxlinux sshd[43653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Feb 9 14:36:20 tuxlinux sshd[43653]: Failed password for invalid user lcf from 80.211.45.85 port 59802 ssh2 ...	2020-02-09 23:14:11
attackbots	Unauthorized connection attempt detected from IP address 80.211.45.85 to port 2220 [J]	2020-01-25 20:30:07
attackbots	Invalid user nikhil from 80.211.45.85 port 41312	2020-01-19 00:14:20
attackspam	Unauthorized connection attempt detected from IP address 80.211.45.85 to port 2220 [J]	2020-01-18 03:07:52
attackspam	Unauthorized connection attempt detected from IP address 80.211.45.85 to port 2220 [J]	2020-01-07 19:03:53
attack	[Aegis] @ 2019-12-24 22:35:58 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-25 05:36:20
attack	Dec 21 13:02:05 srv01 sshd[7741]: Invalid user kim from 80.211.45.85 port 60196 Dec 21 13:02:05 srv01 sshd[7741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Dec 21 13:02:05 srv01 sshd[7741]: Invalid user kim from 80.211.45.85 port 60196 Dec 21 13:02:07 srv01 sshd[7741]: Failed password for invalid user kim from 80.211.45.85 port 60196 ssh2 Dec 21 13:07:17 srv01 sshd[8053]: Invalid user admin from 80.211.45.85 port 37166 ...	2019-12-21 20:58:52
attack	Dec 19 05:41:28 sachi sshd\[30881\]: Invalid user guest from 80.211.45.85 Dec 19 05:41:28 sachi sshd\[30881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Dec 19 05:41:30 sachi sshd\[30881\]: Failed password for invalid user guest from 80.211.45.85 port 60844 ssh2 Dec 19 05:46:43 sachi sshd\[31363\]: Invalid user yoyo from 80.211.45.85 Dec 19 05:46:43 sachi sshd\[31363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85	2019-12-19 23:55:26

Comments on same subnet:

IP	Type	Details	Datetime
80.211.45.81	spamattack	hacking files like	2021-01-04 15:28:21
80.211.45.81	attackbotsspam	Oct 5 21:33:41 v22019058497090703 sshd[18593]: Failed password for root from 80.211.45.81 port 40062 ssh2 Oct 5 21:37:43 v22019058497090703 sshd[18890]: Failed password for root from 80.211.45.81 port 51852 ssh2 Oct 5 21:41:46 v22019058497090703 sshd[19287]: Failed password for root from 80.211.45.81 port 35414 ssh2 ...	2019-10-06 03:48:36
80.211.45.81	attackbots	Sep 29 08:18:43 h2177944 sshd\[11882\]: Invalid user linux from 80.211.45.81 port 39040 Sep 29 08:18:43 h2177944 sshd\[11882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.81 Sep 29 08:18:45 h2177944 sshd\[11882\]: Failed password for invalid user linux from 80.211.45.81 port 39040 ssh2 Sep 29 08:22:33 h2177944 sshd\[12019\]: Invalid user chucky from 80.211.45.81 port 50318 ...	2019-09-29 14:29:28
80.211.45.81	attackspambots	DATE:2019-09-28 14:29:27,IP:80.211.45.81,MATCHES:10,PORT:ssh	2019-09-29 02:29:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.211.45.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60162
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.211.45.85.			IN	A

;; AUTHORITY SECTION:
.			381	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121900 1800 900 604800 86400

;; Query time: 141 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 19 23:55:17 CST 2019
;; MSG SIZE  rcvd: 116

Host info

85.45.211.80.in-addr.arpa domain name pointer host85-45-211-80.serverdedicati.aruba.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.45.211.80.in-addr.arpa	name = host85-45-211-80.serverdedicati.aruba.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
43.255.172.51	attack	Automatic report - Port Scan Attack	2020-08-13 07:21:33
5.62.20.22	attack	(From grigsby.latashia@googlemail.com) Greetings, I was just on your website and filled out your feedback form. The contact page on your site sends you messages like this to your email account which is the reason you are reading my message at this moment correct? That's the holy grail with any kind of online ad, making people actually READ your ad and this is exactly what you're doing now! If you have an advertisement you would like to blast out to thousands of websites via their contact forms in the U.S. or anywhere in the world let me know, I can even target particular niches and my costs are very low. Reply here: stephanyrishigq53@gmail.com cease these ad messages https://bit.ly/3eOn4NP	2020-08-13 07:06:00
222.186.42.7	attackbotsspam	SSH brute-force attempt	2020-08-13 07:30:31
142.93.66.165	attackspambots	142.93.66.165 - - [12/Aug/2020:22:32:34 +0100] "POST /wp-login.php HTTP/1.1" 200 2080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [12/Aug/2020:22:32:35 +0100] "POST /wp-login.php HTTP/1.1" 200 2059 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.66.165 - - [12/Aug/2020:22:32:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2062 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-13 07:02:58
192.210.192.165	attackspam	[ssh] SSH attack	2020-08-13 06:54:51
60.167.191.86	attackbots	Aug 13 05:47:26 webhost01 sshd[27683]: Failed password for root from 60.167.191.86 port 40960 ssh2 ...	2020-08-13 06:58:03
91.229.112.15	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-13 07:05:07
218.92.0.246	attackspam	2020-08-12T23:27:19.229011shield sshd\[32658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.246 user=root 2020-08-12T23:27:21.414335shield sshd\[32658\]: Failed password for root from 218.92.0.246 port 25051 ssh2 2020-08-12T23:27:25.258159shield sshd\[32658\]: Failed password for root from 218.92.0.246 port 25051 ssh2 2020-08-12T23:27:28.645317shield sshd\[32658\]: Failed password for root from 218.92.0.246 port 25051 ssh2 2020-08-12T23:27:32.113082shield sshd\[32658\]: Failed password for root from 218.92.0.246 port 25051 ssh2	2020-08-13 07:31:26
45.167.10.87	attack		2020-08-13 07:00:27
106.12.208.211	attack	2020-08-12T22:52:51.737432vps773228.ovh.net sshd[27555]: Failed password for root from 106.12.208.211 port 50426 ssh2 2020-08-12T22:57:24.141161vps773228.ovh.net sshd[27627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.208.211 user=root 2020-08-12T22:57:26.136956vps773228.ovh.net sshd[27627]: Failed password for root from 106.12.208.211 port 59196 ssh2 2020-08-12T23:01:53.417314vps773228.ovh.net sshd[27697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.208.211 user=root 2020-08-12T23:01:55.674098vps773228.ovh.net sshd[27697]: Failed password for root from 106.12.208.211 port 39740 ssh2 ...	2020-08-13 07:21:01
179.43.160.238	attackspambots	Unauthorized connection attempt from IP address 179.43.160.238 on port 3389	2020-08-13 07:27:01
186.233.94.46	attackbots	Port probing on unauthorized port 1433	2020-08-13 07:01:43
222.186.30.167	attackspambots	Aug 13 01:23:02 vps647732 sshd[9284]: Failed password for root from 222.186.30.167 port 23500 ssh2 Aug 13 01:23:05 vps647732 sshd[9284]: Failed password for root from 222.186.30.167 port 23500 ssh2 ...	2020-08-13 07:28:21
91.121.183.9	attackbots	91.121.183.9 - - [13/Aug/2020:00:15:33 +0100] "POST /wp-login.php HTTP/1.1" 200 5523 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 91.121.183.9 - - [13/Aug/2020:00:18:12 +0100] "POST /wp-login.php HTTP/1.1" 200 5523 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 91.121.183.9 - - [13/Aug/2020:00:19:55 +0100] "POST /wp-login.php HTTP/1.1" 200 5530 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-08-13 07:23:12
195.43.7.203	attackbotsspam	Unauthorized connection attempt from IP address 195.43.7.203 on Port 445(SMB)	2020-08-13 07:09:47

Recently Reported IPs

123.148.208.153	81.171.107.119	180.247.78.202	210.242.65.171
106.114.81.110	54.39.23.82	103.93.90.234	141.61.162.130
91.207.106.18	203.40.212.55	165.227.203.208	5.160.123.70
117.50.35.2	15.206.188.161	41.228.161.240	207.244.118.202
200.54.96.59	187.60.44.74	113.199.249.52	119.95.220.127