Showing current intelligence for this indicator.

IP Information for 159.100.20.23

Location Europe, 🇩🇪 Germany
ASN AS214036 — ULTAHOST-AS, US
BGP Prefix 159.100.20.0/24
Registry ripencc
IP Address 159.100.20.23

IOC Matches

ID Type Tag Source Last seen Comments
334609 IP honeypot 4 2026-05-30 12:07:41
  • 2026-05-30: Observed 1415 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.
  • 2026-05-29: Observed 1131 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.
  • 2026-05-28: Observed 232 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-05-27: Observed 251 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-05-26: Observed 242 times. Targeted ports: 3389. Country: Germany.
  • 2026-05-25: Observed 319 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-05-24: Observed 396 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.
  • 2026-05-23: Observed 289 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.
  • 2026-05-22: Observed 391 times. Targeted ports: 3389. Country: Germany.
  • 2026-05-21: Observed 335 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-05-20: Observed 383 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.
  • 2026-05-19: Observed 377 times. Targeted ports: 3389. Country: Germany.
  • 2026-05-18: Observed 393 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-05-17: Observed 417 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM spurious retransmission.
  • 2026-05-16: Observed 441 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.
  • 2026-05-15: Observed 398 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack.
  • 2026-05-10: Observed 1334 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.
  • 2026-05-09: Observed 1726 times. Targeted ports: 3389. Country: Germany. Alert categories: Generic Protocol Command Decode. Signatures: SURICATA STREAM Packet with broken ack, SURICATA STREAM spurious retransmission.

URLs on this IP

No URLs found for this IP.

Passive DNS

No pDNS records found for 159.100.20.23.

Search History

ID Source Last seen
62185 web 2026-05-30 12:52:12
56733 web 2026-05-11 08:53:51

Whois

No Whois record yet. The worker will fetch it when this IP is in the queue.