← Back to feed

AS41745 Baykov Ilya Sergeevich

ASN Active medium
Why this campaign was detected
7 IPs from the same network (Baykov Ilya Sergeevich, AS41745) were active during overlapping time periods. Temporal correlation across a shared autonomous system suggests infrastructure controlled by the same entity.
Primary ASN
AS41745 · Baykov Ilya Sergeevich
Subnet
Country
🇩🇪 DE
Cloud Provider
Member Count
7 IPs
Below average
Total Events
5635
Below average by volume
Started / Ended
2026-02-22 22:14 — ongoing
Attack Types
ssh:bruteforce
MITRE ATT&CK Techniques
Reconnaissance
Initial Access
Credential Access
Discovery
Command and Control
Member Actors
IP Address Behavior Confidence Flags Events Agents Attack Types Hostname Last Seen
109.206.241.199 credential_harvester 69% 1677 3 ssh:bruteforce 2026-07-12 08:03 evidence →
185.65.202.199 credential_harvester 64% 2x OSINT 105 3 ssh:bruteforce 2026-07-13 15:48 evidence →
138.124.30.225 opportunistic_bruter 62% 1x OSINT 75 3 ssh:bruteforce 2026-07-15 01:41 evidence →
83.219.249.173 credential_harvester 59% 1x OSINT 2217 2 ssh:bruteforce 2026-07-12 09:57 evidence →
83.219.248.100 credential_harvester 59% 869 2 ssh:bruteforce 2026-07-14 23:34 evidence →
185.79.139.16 credential_harvester 45% 669 1 ssh:bruteforce 2026-07-12 09:35 evidence →
213.108.3.171 opportunistic_bruter 43% 1x OSINT 23 1 ssh:bruteforce 2026-07-12 00:35 evidence →
VPN Known VPN or proxy provider
DROP ASN on Spamhaus DROP list
Nx OSINT Corroborated by N external threat feeds