Back to IOCs

IOC Details

IP

Indicator

159.100.20.23

Tag

honeypot

Source

4

First seen

2026-05-09 10:47:16

Last seen

2026-05-30 11:01:13

Hits

347

Comment history

  • 2026-05-30

    Observed 1354 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.

  • 2026-05-29

    Observed 1131 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.

  • 2026-05-28

    Observed 232 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.

  • 2026-05-27

    Observed 251 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.

  • 2026-05-26

    Observed 242 times. Targeted ports: 3389. Country: Germany.

  • 2026-05-25

    Observed 319 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.

  • 2026-05-24

    Observed 396 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.

  • 2026-05-23

    Observed 289 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.

  • 2026-05-22

    Observed 391 times. Targeted ports: 3389. Country: Germany.

  • 2026-05-21

    Observed 335 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.

  • 2026-05-20

    Observed 383 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.

  • 2026-05-19

    Observed 377 times. Targeted ports: 3389. Country: Germany.

  • 2026-05-18

    Observed 393 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.

  • 2026-05-17

    Observed 417 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.

  • 2026-05-16

    Observed 441 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-15

    Observed 398 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-10

    Observed 1334 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.

  • 2026-05-09

    Observed 1726 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.

Actions

Open Indicator Page Search for this indicator View pDNS Records View all ip IOCs View all honeypot IOCs View all from 4

Related IOCs

ID Indicator Type Tag Source Last seen Actions
340563
91.191.209.94
IP malware 11 2026-05-30 11:58:43 IOC Record
322780
206.189.40.107
IP malware 11 2026-05-30 11:50:26 IOC Record
338150
134.199.140.194
IP malware 11 2026-05-30 11:32:22 IOC Record
443
40.66.42.246
IP malware 11 2026-05-30 11:23:26 IOC Record
289285
8.216.0.22
IP honeypot 4 2026-05-30 11:07:09 IOC Record