← Back to feed
AS41745 Baykov Ilya Sergeevich
ASN Active mediumWhy this campaign was detected
7 IPs from the same network (Baykov Ilya Sergeevich, AS41745) were active during overlapping time periods. Temporal correlation across a shared autonomous system suggests infrastructure controlled by the same entity.
Primary ASN
AS41745 · Baykov Ilya Sergeevich
Subnet
—
Country
🇩🇪 DE
Cloud Provider
—
Member Count
7 IPs
Below average
Total Events
5635
Below average by volume
Started / Ended
2026-02-22 22:14 — ongoing
Attack Types
MITRE ATT&CK Techniques
Initial Access
Discovery
Command and Control
Member Actors
| IP Address | Behavior | Confidence | Flags | Events | Agents | Attack Types | Hostname | Last Seen | |
|---|---|---|---|---|---|---|---|---|---|
| 109.206.241.199 | credential_harvester | 69% | 1677 | 3 | ssh:bruteforce | — | 2026-07-12 08:03 | evidence → | |
| 185.65.202.199 | credential_harvester | 64% | 2x OSINT | 105 | 3 | ssh:bruteforce | — | 2026-07-13 15:48 | evidence → |
| 138.124.30.225 | opportunistic_bruter | 62% | 1x OSINT | 75 | 3 | ssh:bruteforce | — | 2026-07-15 01:41 | evidence → |
| 83.219.249.173 | credential_harvester | 59% | 1x OSINT | 2217 | 2 | ssh:bruteforce | — | 2026-07-12 09:57 | evidence → |
| 83.219.248.100 | credential_harvester | 59% | 869 | 2 | ssh:bruteforce | — | 2026-07-14 23:34 | evidence → | |
| 185.79.139.16 | credential_harvester | 45% | 669 | 1 | ssh:bruteforce | — | 2026-07-12 09:35 | evidence → | |
| 213.108.3.171 | opportunistic_bruter | 43% | 1x OSINT | 23 | 1 | ssh:bruteforce | — | 2026-07-12 00:35 | evidence → |
VPN Known VPN or proxy provider
DROP ASN on Spamhaus DROP list
Nx OSINT Corroborated by N external threat feeds