Back to IOCs

IOC Details

IP

Indicator

109.94.87.173

Tag

honeypot

Source

4

First seen

2026-02-25 10:14:52

Last seen

2026-05-13 01:16:23

Hits

42

Comment history

  • 2026-05-13

    Observed 7 times. Targeted ports: 9401. Country: Russia.

  • 2026-05-12

    Observed 6 times. Targeted ports: 6160. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-10

    Observed 1 times. Targeted ports: 9401. Country: Russia. Reputation: known attacker.

  • 2026-05-06

    Observed 6 times. Targeted ports: 9401. Country: Russia.

  • 2026-05-05

    Observed 5 times. Targeted ports: 9401. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-05-02

    Observed 4 times. Targeted ports: 9401. Country: Russia.

  • 2026-04-30

    Observed 6 times. Targeted ports: 9401. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-04-29

    Observed 7 times. Targeted ports: 9401. Country: Russia.

  • 2026-04-28

    Observed 6 times. Targeted ports: 9401. Country: Russia.

  • 2026-04-27

    Observed 6 times. Targeted ports: 6160. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-04-21

    Observed 5 times. Targeted ports: 6160. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-03-26

    Observed 6 times. Targeted ports: 9401. Country: Russia. Reputation: known attacker.

  • 2026-03-24

    Observed 7 times. Targeted ports: 9401. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.

  • 2026-03-23

    Observed 6 times. Targeted ports: 9401. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-03-22

    Observed 6 times. Targeted ports: 9401. Country: Russia. Reputation: known attacker.

  • 2026-03-21

    Observed 6 times. Targeted ports: 9401. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-03-18

    Observed 2 times. Targeted ports: 9393. Country: Russia. Reputation: known attacker.

  • 2026-03-16

    Observed 7 times. Targeted ports: 9401. Country: Russia.

  • 2026-03-15

    Observed 6 times. Targeted ports: 9401. Country: Russia. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-03-12

    Observed 6 times. Targeted ports: 9401. Country: Russia. Reputation: known attacker.

  • 2026-03-11

    Observed 7 times. Targeted ports: 9401. Country: Russia.

  • 2026-03-10

    Observed 7 times. Targeted ports: 9401. Country: Russia. Reputation: known attacker.

  • 2026-03-08

    Observed 6 times. Targeted ports: 6190. Country: Russia. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.

  • 2026-03-05

    Observed 4 times. Targeted ports: 6160. Country: Russia. Reputation: known attacker.

  • 2026-03-04

    Observed 7 times. Targeted ports: 9401. Country: Russia. Reputation: known attacker.

Actions

Open Indicator Page Search for this indicator View pDNS Records View all ip IOCs View all honeypot IOCs View all from 4

Related IOCs

ID Indicator Type Tag Source Last seen Actions
337742
204.76.203.15
IP honeypot 4 2026-05-13 07:38:38 IOC Record
328128
109.105.211.10
IP honeypot 4 2026-05-13 07:38:38 IOC Record
315205
87.251.64.157
IP honeypot 4 2026-05-13 07:38:38 IOC Record
292353
66.132.172.250
IP honeypot 4 2026-05-13 07:38:38 IOC Record
28472
91.231.89.114
IP honeypot 4 2026-05-13 07:38:38 IOC Record