Back to IOCs

IOC Details

IP

Indicator

85.217.140.1

Tag

honeypot

Source

4

First seen

2026-02-23 19:23:54

Last seen

2026-05-27 18:20:18

Hits

191

Comment history

  • 2026-05-27

    Observed 36 times. Targeted ports: 4997, 18943, 19027, 58395, 63748. Country: France. Reputation: known attacker. Alert categories: Misc activity. Signatures: ET INFO SSH session in progress on Unusual Port.

  • 2026-05-26

    Observed 83 times. Targeted ports: 2606, 2609, 2618, 5755, 24662, 24670, 24687, 24694, 24719, 24735, 24782. Country: France. Reputation: known attacker.

  • 2026-05-25

    Observed 6 times. Targeted ports: 100, 788. Country: France. Reputation: known attacker.

  • 2026-05-24

    Observed 3 times. Targeted ports: 61. Country: France.

  • 2026-05-23

    Observed 10 times. Targeted ports: 12017, 34430, 57618. Country: France.

  • 2026-05-22

    Observed 3 times. Targeted ports: 171. Country: France.

  • 2026-05-21

    Observed 6 times. Targeted ports: 236, 395. Country: Bulgaria.

  • 2026-05-20

    Observed 9 times. Targeted ports: 677, 12836, 47663. Country: France.

  • 2026-05-19

    Observed 16 times. Targeted ports: 603, 959, 16858. Country: France. Reputation: known attacker.

  • 2026-05-18

    Observed 3 times. Targeted ports: 362. Country: France. Reputation: known attacker.

  • 2026-05-17

    Observed 3 times. Targeted ports: 289. Country: France.

  • 2026-05-16

    Observed 4 times. Targeted ports: 1018. Country: France.

  • 2026-05-15

    Observed 3 times. Targeted ports: 173. Country: Bulgaria. Reputation: known attacker.

  • 2026-05-14

    Observed 3 times. Targeted ports: 198. Country: France.

  • 2026-05-12

    Observed 68 times. Targeted ports: 1029, 1048, 1050, 1057, 1058, 1060, 1063, 1071, 1087. Country: France. Reputation: known attacker. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.

  • 2026-05-11

    Observed 6 times. Targeted ports: 121, 229. Country: France. Reputation: known attacker.

  • 2026-05-10

    Observed 3 times. Targeted ports: 223. Country: France. Reputation: known attacker.

  • 2026-05-09

    Observed 9 times. Targeted ports: 36, 234, 281. Country: France. Reputation: known attacker.

  • 2026-05-08

    Observed 41 times. Targeted ports: 411, 772, 3017, 3953, 6423, 10838, 16828, 28353, 54651. Country: France.

  • 2026-05-07

    Observed 3 times. Targeted ports: 853. Country: France. Reputation: known attacker.

  • 2026-05-06

    Observed 3 times. Targeted ports: 655. Country: France. Reputation: known attacker.

  • 2026-05-05

    Observed 3 times. Targeted ports: 27. Country: France.

  • 2026-05-04

    Observed 9 times. Targeted ports: 50, 159, 296. Country: France.

  • 2026-05-03

    Observed 3 times. Targeted ports: 784. Country: France.

  • 2026-05-02

    Observed 3 times. Targeted ports: 467. Country: France. Reputation: known attacker.

  • 2026-05-01

    Observed 3 times. Targeted ports: 193. Country: France. Reputation: known attacker.

  • 2026-04-30

    Observed 3 times. Targeted ports: 227. Country: France. Reputation: known attacker.

  • 2026-04-29

    Observed 8 times. Targeted ports: 365, 12155. Country: France. Reputation: known attacker.

  • 2026-04-28

    Observed 6 times. Targeted ports: 1345. Country: France. Reputation: known attacker.

  • 2026-04-27

    Observed 3 times. Targeted ports: 875. Country: France. Reputation: known attacker.

  • 2026-04-26

    Observed 8 times. Targeted ports: 759, 11320. Country: France. Reputation: known attacker.

  • 2026-04-23

    Observed 5 times. Targeted ports: 12250. Country: France. Reputation: known attacker.

  • 2026-04-22

    Observed 9 times. Targeted ports: 9010, 32986, 49390. Country: France. Reputation: known attacker.

  • 2026-04-21

    Observed 3 times. Targeted ports: 792. Country: France. Reputation: known attacker.

  • 2026-03-25

    Observed 13 times. Targeted ports: 38193, 53520. Country: France. Reputation: known attacker.

  • 2026-03-24

    Observed 6 times. Targeted ports: 1216. Country: France. Reputation: known attacker.

  • 2026-03-22

    Observed 20 times. Targeted ports: 24123, 53643, 53693. Country: France. Reputation: known attacker.

  • 2026-03-21

    Observed 6 times. Targeted ports: 6803. Country: Bulgaria. Reputation: known attacker.

  • 2026-03-20

    Observed 57 times. Targeted ports: 1247, 1249, 1253, 1429, 1430, 1431, 2682, 5039. Country: France. Reputation: known attacker.

  • 2026-03-18

    Observed 33 times. Targeted ports: 51, 176, 180, 306, 309, 580, 751, 761, 974, 10055, 10894. Country: France. Reputation: known attacker.

  • 2026-03-16

    Observed 1 times. Targeted ports: 36255. Country: Bulgaria. Reputation: known attacker.

  • 2026-03-15

    Observed 5 times. Targeted ports: 31608. Country: Bulgaria. Reputation: known attacker.

  • 2026-03-14

    Observed 15 times. Targeted ports: 6327, 6336. Country: Bulgaria. Reputation: known attacker.

  • 2026-03-13

    Observed 39 times. Targeted ports: 118, 166, 186, 291, 400, 423, 498, 534, 556, 562, 630, 652, 981. Country: France. Reputation: known attacker.

  • 2026-03-10

    Observed 62 times. Targeted ports: 8195, 8197, 8198, 8436, 8439, 8450, 8451, 8504. Country: France. Reputation: known attacker.

  • 2026-03-08

    Observed 71 times. Targeted ports: 4845, 5113, 5160, 5167, 5183, 5926, 5979, 5997, 5999, 6004. Country: Bulgaria. Reputation: known attacker.

  • 2026-03-05

    Observed 8 times. Targeted ports: 54603, 61698, 65225, 65415. Country: France. Reputation: known attacker.

Actions

Open Indicator Page Search for this indicator View pDNS Records View all ip IOCs View all honeypot IOCs View all from 4

Related IOCs

ID Indicator Type Tag Source Last seen Actions
199213
130.61.61.222
IP malware 11 2026-05-27 19:31:39 IOC Record
10228
185.44.67.95
IP honeypot 4 2026-05-27 19:22:34 IOC Record
80943
152.32.156.245
IP honeypot 4 2026-05-27 19:22:33 IOC Record
44424
91.230.168.152
IP honeypot 4 2026-05-27 19:22:33 IOC Record
29260
91.230.168.54
IP honeypot 4 2026-05-27 19:22:33 IOC Record