Name: Threat Intelligence: 85.198.19.239
Creator: UnwantedIP
License: https://creativecommons.org/licenses/by/4.0/

Threat LevelHIGH51/1001 rule type

1 incident on record · active attack detected · last seen 2d ago

PTR	85.198.19.239.asiatech.cloud
Org / ASN	AS60077 Asre Dadeha Asiatech
Country	🇮🇷 Iran
City	Tehran, Tehran
Timezone	Asia/Tehran

Attack Analysis

🇮🇷 Iran · Tehran · 60077 · IR ASIATECH NET

SSH: Login Attempt — Non-Existent User

This IP attempted to authenticate via SSH using a username that does not exist on the system. This is characteristic of automated credential-stuffing attacks cycling through common username wordlists (admin, root, ubuntu, pi, etc.).

Reports (1)

Date	Severity	Description
17 Jun 2026 - 10:11	high	SSH: Login attempt using non-existent user

Report for IP: 85.198.19.239

Attack Analysis

Reports (1)

Related IPs — Same /24 Block (85.198.19.0/24)