80.211.45.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Aruba S.p.A. - Cloud Services DC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Brute-force attempt banned	2020-05-26 16:42:09
attack	Invalid user banner from 80.211.45.85 port 33238	2020-05-26 03:27:55
attackspambots	May 24 14:28:54 eventyay sshd[14332]: Failed password for root from 80.211.45.85 port 48756 ssh2 May 24 14:33:21 eventyay sshd[14448]: Failed password for root from 80.211.45.85 port 54108 ssh2 May 24 14:37:51 eventyay sshd[14560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 ...	2020-05-24 21:49:41
attack	Invalid user rtp from 80.211.45.85 port 54090	2020-05-23 13:22:54
attack	$f2bV_matches	2020-05-11 22:44:09
attackspam	May 2 09:51:45 ny01 sshd[10829]: Failed password for root from 80.211.45.85 port 33282 ssh2 May 2 09:54:35 ny01 sshd[11187]: Failed password for root from 80.211.45.85 port 48170 ssh2	2020-05-03 02:00:36
attack	May 1 07:02:10 web8 sshd\[13231\]: Invalid user ubuntu from 80.211.45.85 May 1 07:02:10 web8 sshd\[13231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 May 1 07:02:13 web8 sshd\[13231\]: Failed password for invalid user ubuntu from 80.211.45.85 port 49758 ssh2 May 1 07:07:36 web8 sshd\[16090\]: Invalid user tms from 80.211.45.85 May 1 07:07:36 web8 sshd\[16090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85	2020-05-01 15:18:04
attack	Apr 24 12:04:10 ip-172-31-62-245 sshd\[28816\]: Invalid user kinerk from 80.211.45.85\ Apr 24 12:04:12 ip-172-31-62-245 sshd\[28816\]: Failed password for invalid user kinerk from 80.211.45.85 port 33622 ssh2\ Apr 24 12:06:45 ip-172-31-62-245 sshd\[28835\]: Invalid user boomi from 80.211.45.85\ Apr 24 12:06:46 ip-172-31-62-245 sshd\[28835\]: Failed password for invalid user boomi from 80.211.45.85 port 44982 ssh2\ Apr 24 12:09:17 ip-172-31-62-245 sshd\[28946\]: Invalid user ts3sleep from 80.211.45.85\	2020-04-24 21:30:25
attack	2020-04-21T16:45:56.797558amanda2.illicoweb.com sshd\[10873\]: Invalid user admin3 from 80.211.45.85 port 44272 2020-04-21T16:45:56.800958amanda2.illicoweb.com sshd\[10873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 2020-04-21T16:45:59.057334amanda2.illicoweb.com sshd\[10873\]: Failed password for invalid user admin3 from 80.211.45.85 port 44272 ssh2 2020-04-21T16:53:49.015722amanda2.illicoweb.com sshd\[11392\]: Invalid user ftpuser1 from 80.211.45.85 port 38454 2020-04-21T16:53:49.018103amanda2.illicoweb.com sshd\[11392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 ...	2020-04-22 00:02:34
attackbots	$f2bV_matches	2020-04-20 20:48:38
attackspam	Apr 19 22:40:45 legacy sshd[19432]: Failed password for root from 80.211.45.85 port 42882 ssh2 Apr 19 22:46:17 legacy sshd[19878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Apr 19 22:46:19 legacy sshd[19878]: Failed password for invalid user oracle from 80.211.45.85 port 33090 ssh2 ...	2020-04-20 07:52:58
attackspambots	Apr 19 06:39:02 vlre-nyc-1 sshd\[16531\]: Invalid user ftpuser1 from 80.211.45.85 Apr 19 06:39:02 vlre-nyc-1 sshd\[16531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Apr 19 06:39:04 vlre-nyc-1 sshd\[16531\]: Failed password for invalid user ftpuser1 from 80.211.45.85 port 37632 ssh2 Apr 19 06:44:25 vlre-nyc-1 sshd\[16731\]: Invalid user postgres from 80.211.45.85 Apr 19 06:44:25 vlre-nyc-1 sshd\[16731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 ...	2020-04-19 15:27:25
attackspambots	2020-04-16T04:31:58.471213abusebot-4.cloudsearch.cf sshd[32531]: Invalid user rui from 80.211.45.85 port 56400 2020-04-16T04:31:58.478832abusebot-4.cloudsearch.cf sshd[32531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 2020-04-16T04:31:58.471213abusebot-4.cloudsearch.cf sshd[32531]: Invalid user rui from 80.211.45.85 port 56400 2020-04-16T04:32:00.777544abusebot-4.cloudsearch.cf sshd[32531]: Failed password for invalid user rui from 80.211.45.85 port 56400 ssh2 2020-04-16T04:36:47.804223abusebot-4.cloudsearch.cf sshd[363]: Invalid user client from 80.211.45.85 port 34804 2020-04-16T04:36:47.812894abusebot-4.cloudsearch.cf sshd[363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 2020-04-16T04:36:47.804223abusebot-4.cloudsearch.cf sshd[363]: Invalid user client from 80.211.45.85 port 34804 2020-04-16T04:36:49.785582abusebot-4.cloudsearch.cf sshd[363]: Failed password for inval ...	2020-04-16 18:11:33
attack	SSH Brute Force	2020-04-14 03:19:03
attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-04-06 18:58:33
attackbots	sshd jail - ssh hack attempt	2020-04-04 05:04:51
attackspambots	SSH bruteforce (Triggered fail2ban)	2020-03-25 15:44:40
attack	Mar 18 15:16:42 h2779839 sshd[12718]: Invalid user liqingxuan from 80.211.45.85 port 35484 Mar 18 15:16:42 h2779839 sshd[12718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Mar 18 15:16:42 h2779839 sshd[12718]: Invalid user liqingxuan from 80.211.45.85 port 35484 Mar 18 15:16:44 h2779839 sshd[12718]: Failed password for invalid user liqingxuan from 80.211.45.85 port 35484 ssh2 Mar 18 15:21:28 h2779839 sshd[12781]: Invalid user tor from 80.211.45.85 port 55708 Mar 18 15:21:28 h2779839 sshd[12781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Mar 18 15:21:28 h2779839 sshd[12781]: Invalid user tor from 80.211.45.85 port 55708 Mar 18 15:21:30 h2779839 sshd[12781]: Failed password for invalid user tor from 80.211.45.85 port 55708 ssh2 Mar 18 15:26:03 h2779839 sshd[12824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 user=pr ...	2020-03-19 00:12:39
attack	Mar 10 10:13:22 ns382633 sshd\[7702\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 user=root Mar 10 10:13:24 ns382633 sshd\[7702\]: Failed password for root from 80.211.45.85 port 49718 ssh2 Mar 10 10:23:29 ns382633 sshd\[9481\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 user=root Mar 10 10:23:31 ns382633 sshd\[9481\]: Failed password for root from 80.211.45.85 port 36674 ssh2 Mar 10 10:27:40 ns382633 sshd\[10338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 user=root	2020-03-10 18:24:31
attackspambots	Feb 20 19:05:54 ift sshd\[46636\]: Invalid user alex from 80.211.45.85Feb 20 19:05:56 ift sshd\[46636\]: Failed password for invalid user alex from 80.211.45.85 port 57446 ssh2Feb 20 19:09:15 ift sshd\[47157\]: Invalid user wangyw from 80.211.45.85Feb 20 19:09:18 ift sshd\[47157\]: Failed password for invalid user wangyw from 80.211.45.85 port 58470 ssh2Feb 20 19:12:37 ift sshd\[47830\]: Invalid user minecraft from 80.211.45.85 ...	2020-02-21 01:40:43
attackbots	Feb 9 14:36:18 tuxlinux sshd[43653]: Invalid user lcf from 80.211.45.85 port 59802 Feb 9 14:36:18 tuxlinux sshd[43653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Feb 9 14:36:18 tuxlinux sshd[43653]: Invalid user lcf from 80.211.45.85 port 59802 Feb 9 14:36:18 tuxlinux sshd[43653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Feb 9 14:36:18 tuxlinux sshd[43653]: Invalid user lcf from 80.211.45.85 port 59802 Feb 9 14:36:18 tuxlinux sshd[43653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Feb 9 14:36:20 tuxlinux sshd[43653]: Failed password for invalid user lcf from 80.211.45.85 port 59802 ssh2 ...	2020-02-09 23:14:11
attackbots	Unauthorized connection attempt detected from IP address 80.211.45.85 to port 2220 [J]	2020-01-25 20:30:07
attackbots	Invalid user nikhil from 80.211.45.85 port 41312	2020-01-19 00:14:20
attackspam	Unauthorized connection attempt detected from IP address 80.211.45.85 to port 2220 [J]	2020-01-18 03:07:52
attackspam	Unauthorized connection attempt detected from IP address 80.211.45.85 to port 2220 [J]	2020-01-07 19:03:53
attack	[Aegis] @ 2019-12-24 22:35:58 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-25 05:36:20
attack	Dec 21 13:02:05 srv01 sshd[7741]: Invalid user kim from 80.211.45.85 port 60196 Dec 21 13:02:05 srv01 sshd[7741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Dec 21 13:02:05 srv01 sshd[7741]: Invalid user kim from 80.211.45.85 port 60196 Dec 21 13:02:07 srv01 sshd[7741]: Failed password for invalid user kim from 80.211.45.85 port 60196 ssh2 Dec 21 13:07:17 srv01 sshd[8053]: Invalid user admin from 80.211.45.85 port 37166 ...	2019-12-21 20:58:52
attack	Dec 19 05:41:28 sachi sshd\[30881\]: Invalid user guest from 80.211.45.85 Dec 19 05:41:28 sachi sshd\[30881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 Dec 19 05:41:30 sachi sshd\[30881\]: Failed password for invalid user guest from 80.211.45.85 port 60844 ssh2 Dec 19 05:46:43 sachi sshd\[31363\]: Invalid user yoyo from 80.211.45.85 Dec 19 05:46:43 sachi sshd\[31363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85	2019-12-19 23:55:26

Comments on same subnet:

IP	Type	Details	Datetime
80.211.45.81	spamattack	hacking files like	2021-01-04 15:28:21
80.211.45.81	attackbotsspam	Oct 5 21:33:41 v22019058497090703 sshd[18593]: Failed password for root from 80.211.45.81 port 40062 ssh2 Oct 5 21:37:43 v22019058497090703 sshd[18890]: Failed password for root from 80.211.45.81 port 51852 ssh2 Oct 5 21:41:46 v22019058497090703 sshd[19287]: Failed password for root from 80.211.45.81 port 35414 ssh2 ...	2019-10-06 03:48:36
80.211.45.81	attackbots	Sep 29 08:18:43 h2177944 sshd\[11882\]: Invalid user linux from 80.211.45.81 port 39040 Sep 29 08:18:43 h2177944 sshd\[11882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.81 Sep 29 08:18:45 h2177944 sshd\[11882\]: Failed password for invalid user linux from 80.211.45.81 port 39040 ssh2 Sep 29 08:22:33 h2177944 sshd\[12019\]: Invalid user chucky from 80.211.45.81 port 50318 ...	2019-09-29 14:29:28
80.211.45.81	attackspambots	DATE:2019-09-28 14:29:27,IP:80.211.45.81,MATCHES:10,PORT:ssh	2019-09-29 02:29:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.211.45.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60162
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.211.45.85.			IN	A

;; AUTHORITY SECTION:
.			381	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121900 1800 900 604800 86400

;; Query time: 141 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 19 23:55:17 CST 2019
;; MSG SIZE  rcvd: 116

Host info

85.45.211.80.in-addr.arpa domain name pointer host85-45-211-80.serverdedicati.aruba.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.45.211.80.in-addr.arpa	name = host85-45-211-80.serverdedicati.aruba.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.32.95.22	attackbots	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-23 13:23:42
210.5.88.19	attackspambots	Oct 23 06:47:32 OPSO sshd\[16730\]: Invalid user xiaowu from 210.5.88.19 port 57119 Oct 23 06:47:32 OPSO sshd\[16730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.5.88.19 Oct 23 06:47:34 OPSO sshd\[16730\]: Failed password for invalid user xiaowu from 210.5.88.19 port 57119 ssh2 Oct 23 06:52:42 OPSO sshd\[17507\]: Invalid user unrevealed from 210.5.88.19 port 48232 Oct 23 06:52:42 OPSO sshd\[17507\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.5.88.19	2019-10-23 13:53:24
116.228.53.227	attackspam	Oct 23 05:52:57 xeon sshd[47437]: Failed password for root from 116.228.53.227 port 47834 ssh2	2019-10-23 13:58:43
58.21.204.140	attack	Telnet Server BruteForce Attack	2019-10-23 13:26:24
41.238.110.178	attackbots	SSH Bruteforce	2019-10-23 13:23:24
210.209.72.243	attack	Oct 23 05:14:25 hcbbdb sshd\[6824\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.209.72.243 user=root Oct 23 05:14:27 hcbbdb sshd\[6824\]: Failed password for root from 210.209.72.243 port 46558 ssh2 Oct 23 05:18:02 hcbbdb sshd\[7201\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.209.72.243 user=root Oct 23 05:18:03 hcbbdb sshd\[7201\]: Failed password for root from 210.209.72.243 port 54284 ssh2 Oct 23 05:21:32 hcbbdb sshd\[7593\]: Invalid user consultant from 210.209.72.243	2019-10-23 13:43:00
5.54.109.220	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/5.54.109.220/ GR - 1H : (52) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GR NAME ASN : ASN3329 IP : 5.54.109.220 CIDR : 5.54.96.0/19 PREFIX COUNT : 167 UNIQUE IP COUNT : 788480 ATTACKS DETECTED ASN3329 : 1H - 1 3H - 1 6H - 2 12H - 6 24H - 20 DateTime : 2019-10-23 05:55:52 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-23 14:05:35
106.13.140.110	attack	Oct 23 05:51:10 SilenceServices sshd[12950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.110 Oct 23 05:51:12 SilenceServices sshd[12950]: Failed password for invalid user 123 from 106.13.140.110 port 47564 ssh2 Oct 23 05:55:47 SilenceServices sshd[14112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.110	2019-10-23 14:10:31
104.238.110.156	attackbotsspam	Oct 23 06:59:32 h2177944 sshd\[21268\]: Invalid user abcs from 104.238.110.156 port 39128 Oct 23 06:59:32 h2177944 sshd\[21268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.238.110.156 Oct 23 06:59:34 h2177944 sshd\[21268\]: Failed password for invalid user abcs from 104.238.110.156 port 39128 ssh2 Oct 23 07:03:02 h2177944 sshd\[21881\]: Invalid user jc from 104.238.110.156 port 49786 Oct 23 07:03:02 h2177944 sshd\[21881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.238.110.156 ...	2019-10-23 13:45:18
119.123.58.194	attackspam	Brute force SMTP login attempts.	2019-10-23 13:56:20
45.55.213.169	attack	Oct 22 18:53:27 php1 sshd\[26321\]: Invalid user dracula from 45.55.213.169 Oct 22 18:53:27 php1 sshd\[26321\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.213.169 Oct 22 18:53:29 php1 sshd\[26321\]: Failed password for invalid user dracula from 45.55.213.169 port 61996 ssh2 Oct 22 18:57:17 php1 sshd\[26635\]: Invalid user dmc from 45.55.213.169 Oct 22 18:57:17 php1 sshd\[26635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.213.169	2019-10-23 13:51:20
206.189.177.150	attackbots	PBX: blocked for too many failed authentications; User-Agent: 3CXPhoneSystem	2019-10-23 13:59:28
59.25.197.162	attackspambots	Invalid user jeff from 59.25.197.162 port 60856	2019-10-23 13:44:00
46.229.173.68	attackbots	Fail2Ban Ban Triggered	2019-10-23 14:00:28
119.84.8.43	attackbots	Oct 22 19:34:15 hanapaa sshd\[19788\]: Invalid user 123456 from 119.84.8.43 Oct 22 19:34:15 hanapaa sshd\[19788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.84.8.43 Oct 22 19:34:17 hanapaa sshd\[19788\]: Failed password for invalid user 123456 from 119.84.8.43 port 54194 ssh2 Oct 22 19:39:51 hanapaa sshd\[20730\]: Invalid user cyyang from 119.84.8.43 Oct 22 19:39:51 hanapaa sshd\[20730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.84.8.43	2019-10-23 13:46:23

Recently Reported IPs

123.148.208.153	81.171.107.119	180.247.78.202	210.242.65.171
106.114.81.110	54.39.23.82	103.93.90.234	141.61.162.130
91.207.106.18	203.40.212.55	165.227.203.208	5.160.123.70
117.50.35.2	15.206.188.161	41.228.161.240	207.244.118.202
200.54.96.59	187.60.44.74	113.199.249.52	119.95.220.127