IOC Details

IP

Indicator

45.91.64.6

Tag

honeypot

Source

4

First seen

2026-02-25 08:51:56

Last seen

2026-06-28 21:12:02

Hits

328

Comment history

  • 2026-06-28

    Observed 6 times. Targeted ports: 8022. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-27

    Observed 13 times. Targeted ports: 1177, 2715. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-26

    Observed 6 times. Targeted ports: 1293. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-23

    Observed 6 times. Targeted ports: 9200. Country: Russia. Reputation: known attacker.

  • 2026-06-22

    Observed 2 times. Targeted ports: 1433. Country: Russia. Reputation: known attacker.

  • 2026-06-21

    Observed 4 times. Targeted ports: 5432, 5900. Country: Russia. Reputation: known attacker.

  • 2026-06-20

    Observed 6 times. Targeted ports: 1500. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-19

    Observed 10 times. Targeted ports: 389. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA Applayer Mismatch protocol both directions, SURICATA STREAM Packet with broken ack.

  • 2026-06-18

    Observed 12 times. Targeted ports: 5200, 8883. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-17

    Observed 7 times. Targeted ports: 9200. Country: Russia. Reputation: known attacker.

  • 2026-06-16

    Observed 6 times. Targeted ports: 2223. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-15

    Observed 6 times. Targeted ports: 4444. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-14

    Observed 6 times. Targeted ports: 16464. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-13

    Observed 9 times. Targeted ports: 443. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-12

    Observed 8 times. Targeted ports: 4444, 11211. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-11

    Observed 7 times. Targeted ports: 3388. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-10

    Observed 7 times. Targeted ports: 3000. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-09

    Observed 8 times. Targeted ports: 443. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-08

    Observed 2 times. Targeted ports: 120. Country: Russia.

  • 2026-06-07

    Observed 7 times. Targeted ports: 5901. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-06

    Observed 7 times. Targeted ports: 60000. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-05

    Observed 6 times. Targeted ports: 7070. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-04

    Observed 19 times. Targeted ports: 161, 3389, 8888. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA Applayer Mismatch protocol both directions, SURICATA STREAM Packet with broken ack.

  • 2026-06-03

    Observed 9 times. Targeted ports: 1198, 8080. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-02

    Observed 6 times. Targeted ports: 14567. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-06-01

    Observed 7 times. Targeted ports: 5672. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-31

    Observed 4 times. Targeted ports: 2083. Country: Russia. Reputation: known attacker.

  • 2026-05-30

    Observed 6 times. Targeted ports: 2083. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-29

    Observed 6 times. Targeted ports: 9955. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-28

    Observed 1 times. Targeted ports: 50050. Country: Russia. Reputation: known attacker.

  • 2026-05-27

    Observed 18 times. Targeted ports: 2375. Country: Russia.

  • 2026-05-26

    Observed 6 times. Targeted ports: 3434. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-25

    Observed 2 times. Targeted ports: 389. Country: Russia. Reputation: known attacker.

  • 2026-05-24

    Observed 10 times. Targeted ports: 25. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-23

    Observed 10 times. Targeted ports: 137, 10001. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-22

    Observed 14 times. Targeted ports: 9042. Country: Russia. Reputation: known attacker.

  • 2026-05-21

    Observed 9 times. Targeted ports: 9091. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-20

    Observed 2 times. Targeted ports: 137. Country: Russia. Reputation: known attacker.

  • 2026-05-19

    Observed 7 times. Targeted ports: 5412. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-18

    Observed 6 times. Targeted ports: 1701. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-17

    Observed 1 times. Targeted ports: 8080. Country: Russia. Reputation: known attacker.

  • 2026-05-16

    Observed 7 times. Targeted ports: 7070. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-15

    Observed 7 times. Targeted ports: 8161. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-14

    Observed 6 times. Targeted ports: 2087. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-13

    Observed 15 times. Targeted ports: 1701, 10001. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-12

    Observed 1 times. Targeted ports: 1723. Country: Russia. Reputation: known attacker.

  • 2026-05-11

    Observed 14 times. Targeted ports: 1723, 42069. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-10

    Observed 7 times. Targeted ports: 14567. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-09

    Observed 2 times. Targeted ports: 5060. Country: Russia. Reputation: known attacker.

  • 2026-05-08

    Observed 8 times. Targeted ports: 1433. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-07

    Observed 6 times. Targeted ports: 6650. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-06

    Observed 7 times. Targeted ports: 6379. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-05

    Observed 2 times. Targeted ports: 5000. Country: Russia. Reputation: known attacker.

  • 2026-05-04

    Observed 6 times. Targeted ports: 9955. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-03

    Observed 7 times. Targeted ports: 4444. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-02

    Observed 2 times. Targeted ports: 5412. Country: Russia. Reputation: known attacker.

  • 2026-05-01

    Observed 6 times. Targeted ports: 5601. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-04-30

    Observed 6 times. Targeted ports: 3434. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-04-29

    Observed 7 times. Targeted ports: 3306. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-04-28

    Observed 2 times. Targeted ports: 50. Country: Russia. Reputation: known attacker.

  • 2026-04-27

    Observed 7 times. Targeted ports: 3307. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-04-26

    Observed 6 times. Targeted ports: 9955. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-04-22

    Observed 6 times. Targeted ports: 1604. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-04-21

    Observed 7 times. Targeted ports: 6969. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-03-28

    Observed 9 times. Targeted ports: 9200. Country: Russia. Reputation: known attacker.

  • 2026-03-27

    Observed 17 times. Targeted ports: 3000. Country: Russia. Reputation: known attacker.

  • 2026-03-25

    Observed 3 times. Targeted ports: 9200. Country: Russia. Reputation: known attacker.

  • 2026-03-24

    Observed 90 times. Targeted ports: 3306. Country: Russia. Reputation: known attacker. Usernames: root.

  • 2026-03-14

    Observed 2 times. Targeted ports: 636. Country: Russia. Reputation: known attacker.

  • 2026-03-11

    Observed 2 times. Targeted ports: 10000. Country: Russia. Reputation: known attacker.

  • 2026-03-08

    Observed 2 times. Targeted ports: 3306. Country: Russia. Reputation: known attacker.

  • 2026-03-04

    Observed 50 times. Targeted ports: 3000, 3306. Country: Russia. Reputation: known attacker.

Related IOCs

ID Indicator Type Tag Source Last seen Actions
341124
65.0.236.193
IP malware 11 2026-06-28 23:32:23 IOC Record
380034
8.137.8.33
IP malware 11 2026-06-28 23:20:52 IOC Record
292404
66.132.172.254
IP honeypot 4 2026-06-28 23:16:15 IOC Record
56116
137.184.226.118
IP honeypot 4 2026-06-28 23:16:15 IOC Record
382351
90.50.254.111
IP honeypot 4 2026-06-28 23:16:14 IOC Record