Hi Abuse Team, We have detected abuse from the IP address 80.85.242.255, which according to openrdap.org is on your network. We would appreciate if you would investigate and take action as appropriate. Log lines are given below, but please ask if you require any further information. (If you are not the correct person to contact about this please accept our apologies - your e-mail address was extracted from the whois record by an automated process.) This mail was generated by Fail2Ban in a X-ARF format! You can find more information about x-arf at http://www.x-arf.org/specification.html. The recipient address of this report was provided by https://www.openrdap.org and extracted by us info@r00tbase.de. If you wish to change or report a non-working abuse contact address, please contact the appropriate RIR responsible for managing the underlying data. If you have have checked the underlaying data and they are correct, please contact us via email at info@r00tbase.de r00tbase.de is neither responsible nor liable for the content or accuracy of this message. Please help and make the internet noise and botnet free! You Can Check your IP Noise under https://www.abuseipdb.com/check/80.85.242.255
--- Reported-From: abuse@r00tbase.de Category: abuse Report-ID: 1708748275@r00tbase.de Report-Type: login-attack Service: sshd Version: 0.2 User-Agent: Fail2ban v0.9 Date: 1708748275 Source-Type: ip-address Source: 80.85.242.255 Port: 22 Schema-URL: http://www.x-arf.org/schema/abuse_login-attack_0.1.2.json Attachment: text/plain Occurances: 10 TLP: green
+Note: Local timezone is +0000 (UTC) 2024-02-24T04:11:55.898282+00:00 Linux07 sshd[2666801]: Invalid user ec2-user from 80.85.242.255 port 35658 2024-02-24T04:11:55.900528+00:00 Linux07 sshd[2666801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.85.242.255 2024-02-24T04:11:58.593357+00:00 Linux07 sshd[2666801]: Failed password for invalid user ec2-user from 80.85.242.255 port 35658 ssh2 2024-02-24T04:13:29.459823+00:00 Linux07 sshd[2670505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.85.242.255 user=root 2024-02-24T04:13:31.391650+00:00 Linux07 sshd[2670505]: Failed password for root from 80.85.242.255 port 40932 ssh2 2024-02-24T04:15:42.943660+00:00 Linux07 sshd[2676348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.85.242.255 user=root 2024-02-24T04:15:44.800339+00:00 Linux07 sshd[2676348]: Failed password for root from 80.85.242.255 port 56578 ssh2 2024-02-24T04:17:52.662610+00:00 Linux07 sshd[2682002]: Invalid user username from 80.85.242.255 port 40400 2024-02-24T04:17:52.664842+00:00 Linux07 sshd[2682002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.85.242.255 2024-02-24T04:17:55.037351+00:00 Linux07 sshd[2682002]: Failed password for invalid user username from 80.85.242.255 port 40400 ssh2
