Back to IOCs

IOC Details

Indicator

85.217.149.11

Tag

honeypot

Source

First seen

2026-02-25 11:30:00

Last seen

2026-05-21 00:14:14

Hits

149

Comment history

2026-05-21
Observed 3 times. Targeted ports: 706. Country: Canada. Reputation: known attacker.
2026-05-20
Observed 6 times. Targeted ports: 318, 571. Country: Canada. Reputation: known attacker.
2026-05-19
Observed 15 times. Targeted ports: 2455. Country: Canada. Reputation: known attacker.
2026-05-18
Observed 9 times. Targeted ports: 115, 505, 853. Country: Canada.
2026-05-17
Observed 1 times. Targeted ports: 622. Country: Canada. Reputation: known attacker.
2026-05-16
Observed 40 times. Targeted ports: 1545, 1604, 1607, 1668, 1671. Country: Canada. Reputation: known attacker.
2026-05-15
Observed 3 times. Targeted ports: 344. Country: Bulgaria. Reputation: known attacker.
2026-05-14
Observed 3 times. Targeted ports: 1019. Country: Canada. Reputation: known attacker.
2026-05-13
Observed 36 times. Targeted ports: 1240, 1266, 1302, 1344, 1347. Country: Canada. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
2026-05-12
Observed 3 times. Targeted ports: 191. Country: Canada.
2026-05-11
Observed 3 times. Targeted ports: 366. Country: Canada. Reputation: known attacker.
2026-05-10
Observed 3 times. Targeted ports: 345. Country: Canada. Reputation: known attacker.
2026-05-09
Observed 15 times. Targeted ports: 2, 97, 227, 602, 998. Country: Canada. Reputation: known attacker.
2026-05-08
Observed 3 times. Targeted ports: 638. Country: Canada. Reputation: known attacker.
2026-05-07
Observed 3 times. Targeted ports: 521. Country: Canada. Reputation: known attacker.
2026-05-06
Observed 3 times. Targeted ports: 404. Country: Canada. Reputation: known attacker.
2026-05-05
Observed 6 times. Targeted ports: 212, 868. Country: Canada. Reputation: known attacker.
2026-05-04
Observed 6 times. Targeted ports: 792, 848. Country: Canada. Reputation: known attacker.
2026-05-03
Observed 3 times. Targeted ports: 328. Country: Canada.
2026-05-02
Observed 3 times. Targeted ports: 1019. Country: Canada. Reputation: known attacker.
2026-05-01
Observed 3 times. Targeted ports: 514. Country: Canada. Reputation: known attacker.
2026-04-30
Observed 6 times. Targeted ports: 49, 158. Country: Canada. Reputation: known attacker.
2026-04-29
Observed 166 times. Targeted ports: 1212, 1224, 1225, 1230, 1232, 1246, 1247, 1256, 1258, 1268, 1293, 1297, 1309, 1317, 1331, 1336, 1494, 1513, 1517, 1549, 1561, 1607, 1636, 1650, 1653, 1656, 1675, 1682. Country: Canada. Reputation: known attacker.
2026-04-28
Observed 38 times. Targeted ports: 1949, 1951, 1952, 1955, 1961. Country: Canada. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
2026-04-27
Observed 4 times. Targeted ports: 12101. Country: Canada. Reputation: known attacker. Alert categories: Misc Attack. Signatures: ET CINS Active Threat Intelligence Poor Reputation IP group 130.
2026-04-26
Observed 6 times. Targeted ports: 390, 684. Country: Canada. Reputation: known attacker.
2026-04-23
Observed 8 times. Targeted ports: 772, 9125. Country: Canada. Reputation: known attacker.
2026-04-22
Observed 3 times. Targeted ports: 180. Country: Canada. Reputation: known attacker.
2026-04-21
Observed 42 times. Targeted ports: 12312, 47200, 48779, 58391, 58395, 64270. Country: Canada. Reputation: known attacker.
2026-04-10
Observed 2 times. Targeted ports: 447. Country: Canada. Reputation: known attacker.
2026-03-26
Observed 9 times. Targeted ports: 1232. Country: Canada. Reputation: known attacker.
2026-03-25
Observed 11 times. Targeted ports: 161, 1809. Country: Canada. Reputation: known attacker.
2026-03-23
Observed 14 times. Targeted ports: 17658, 49146. Country: Canada. Reputation: known attacker.
2026-03-21
Observed 19 times. Targeted ports: 7190, 7750, 7751, 7757, 7758, 8859. Country: Bulgaria. Reputation: known attacker.
2026-03-19
Observed 15 times. Targeted ports: 30, 265, 305, 392, 409. Country: Canada. Reputation: known attacker.
2026-03-16
Observed 162 times. Targeted ports: 1029, 1587, 1588, 1605, 1606, 1607, 1608, 1628, 1629, 1632, 1633, 1653, 1654, 1655, 1656, 1657, 1658, 1687, 1688, 1757, 1773. Country: Bulgaria. Reputation: known attacker.
2026-03-15
Observed 3 times. Targeted ports: 50445. Country: Bulgaria. Reputation: known attacker.
2026-03-14
Observed 7 times. Targeted ports: 9436. Country: Bulgaria. Reputation: known attacker.
2026-03-13
Observed 133 times. Targeted ports: 6335, 11260, 11267, 13029, 15355, 26865, 27619, 29295, 29350, 29397, 29404, 37628, 37637, 45343, 45573, 45941, 45951, 45984, 46616. Country: Canada. Reputation: known attacker.
2026-03-12
Observed 52 times. Targeted ports: 3407, 4209, 11271, 11495, 12349, 15319, 15369, 16653, 16733, 17000, 17675, 18005, 18275. Country: Canada. Reputation: known attacker.
2026-03-09
Observed 3 times. Targeted ports: 48. Country: Canada. Reputation: known attacker.
2026-03-08
Observed 39 times. Targeted ports: 5504, 5508, 5696, 5730, 5825. Country: Bulgaria. Reputation: known attacker.
2026-03-05
Observed 12 times. Targeted ports: 61522, 62585, 65406. Country: Canada. Reputation: known attacker.
2026-03-04
Observed 23 times. Targeted ports: 1299, 1506, 1508. Country: Canada. Reputation: known attacker.

Actions

Open Indicator Page Search for this indicator View pDNS Records View all ip IOCs View all honeypot IOCs View all from 4

Related IOCs

ID	Indicator	Type	Tag	Source	Last seen	Actions
346519	205.237.44.235	IP	malware	11	2026-05-21 01:03:09	IOC Record
314982	135.125.106.42	IP	malware	11	2026-05-21 00:48:01	IOC Record
327999	87.251.64.176	IP	honeypot	4	2026-05-21 00:14:14	IOC Record
182843	85.217.140.42	IP	honeypot	4	2026-05-21 00:14:14	IOC Record
46475	147.185.132.135	IP	honeypot	4	2026-05-21 00:14:14	IOC Record