Showing current intelligence for this indicator.

IP Information for 85.217.149.2

Location Beauharnois, 🇨🇦 Canada
ASN AS209334 — MODAT-01, NL
BGP Prefix 85.217.149.0/24
Registry ripencc
IP Address 85.217.149.2

IOC Matches

ID Type Tag Source Last seen Comments
181792 IP honeypot 4 2026-05-21 10:24:33
  • 2026-05-21: Observed 1 times. Targeted ports: 544. Country: Bulgaria.
  • 2026-05-20: Observed 3 times. Targeted ports: 158. Country: Canada. Reputation: known attacker.
  • 2026-05-18: Observed 3 times. Targeted ports: 268. Country: Canada.
  • 2026-05-17: Observed 3 times. Targeted ports: 569. Country: Canada.
  • 2026-05-16: Observed 3 times. Targeted ports: 152. Country: Canada.
  • 2026-05-15: Observed 3 times. Targeted ports: 793. Country: Bulgaria. Reputation: known attacker.
  • 2026-05-14: Observed 3 times. Targeted ports: 404. Country: Canada.
  • 2026-05-13: Observed 3 times. Targeted ports: 589. Country: Canada. Reputation: known attacker.
  • 2026-05-12: Observed 3 times. Targeted ports: 1012. Country: Canada.
  • 2026-05-11: Observed 6 times. Targeted ports: 761, 817. Country: Canada. Reputation: known attacker.
  • 2026-05-10: Observed 3 times. Targeted ports: 501. Country: Canada. Reputation: known attacker.
  • 2026-05-09: Observed 6 times. Targeted ports: 219, 670. Country: Canada. Reputation: known attacker.
  • 2026-05-08: Observed 32 times. Targeted ports: 880, 10228, 10345, 13880, 28045, 63267, 63336. Country: Canada. Reputation: known attacker.
  • 2026-05-07: Observed 4 times. Targeted ports: 11512. Country: Canada. Alert categories: Misc Attack. Signatures: ET CINS Active Threat Intelligence Poor Reputation IP group 129.
  • 2026-05-06: Observed 3 times. Targeted ports: 745. Country: Canada.
  • 2026-05-05: Observed 4 times. Targeted ports: 193. Country: Canada. Reputation: known attacker.
  • 2026-05-04: Observed 3 times. Targeted ports: 513. Country: Canada. Reputation: known attacker.
  • 2026-05-03: Observed 10 times. Targeted ports: 544, 756, 12915. Country: Canada. Alert categories: Misc Attack. Signatures: ET CINS Active Threat Intelligence Poor Reputation IP group 126.
  • 2026-05-02: Observed 3 times. Targeted ports: 220. Country: Canada. Reputation: known attacker.
  • 2026-05-01: Observed 9 times. Targeted ports: 361, 484, 971. Country: Canada. Reputation: known attacker.
  • 2026-04-30: Observed 3 times. Targeted ports: 683. Country: Canada. Reputation: known attacker.
  • 2026-04-29: Observed 5 times. Targeted ports: 12333. Country: Canada. Reputation: known attacker.
  • 2026-04-28: Observed 6 times. Targeted ports: 354, 941. Country: Canada. Reputation: known attacker.
  • 2026-04-27: Observed 11 times. Targeted ports: 12311, 12332. Country: Canada. Reputation: known attacker.
  • 2026-04-26: Observed 30 times. Targeted ports: 17758, 34056, 35700, 47200. Country: Canada. Reputation: known attacker.
  • 2026-04-23: Observed 3 times. Targeted ports: 561. Country: Canada. Reputation: known attacker.
  • 2026-04-22: Observed 19 times. Targeted ports: 590, 801, 931, 28886, 49159, 53750. Country: Canada. Reputation: known attacker.
  • 2026-04-21: Observed 8 times. Targeted ports: 1011, 10066. Country: Canada. Reputation: known attacker.
  • 2026-04-10: Observed 3 times. Targeted ports: 434. Country: Canada. Reputation: known attacker.
  • 2026-03-27: Observed 7 times. Targeted ports: 1079. Country: Canada. Reputation: known attacker.
  • 2026-03-22: Observed 168 times. Targeted ports: 4847, 4861, 4862, 4863, 4865, 4867, 4868, 4869, 4871, 5056, 5057, 5058, 5059, 5241, 5817, 5818, 5820, 5821, 5822, 5823, 18980, 58013, 58118, 58130. Country: Canada. Reputation: known attacker.
  • 2026-03-21: Observed 3 times. Targeted ports: 161. Country: Bulgaria. Reputation: known attacker.
  • 2026-03-20: Observed 88 times. Targeted ports: 2257, 2258, 2259, 2260, 2267, 2269, 2285, 2286, 2287, 2290, 6803, 7628. Country: Canada. Reputation: known attacker.
  • 2026-03-19: Observed 9 times. Targeted ports: 58, 986, 1002. Country: Canada. Reputation: known attacker.
  • 2026-03-18: Observed 129 times. Targeted ports: 2972, 3003, 3084, 3130, 3131, 3156, 3169, 3170, 3171, 3248, 3249, 3250, 3479, 3526, 3527, 3575, 3635, 3643. Country: Canada. Reputation: known attacker.
  • 2026-03-16: Observed 115 times. Targeted ports: 1732, 1738, 1763, 1777, 1784, 1787, 1900, 1918, 1920, 1926, 1927, 1952, 1964, 1985. Country: Bulgaria. Reputation: known attacker.
  • 2026-03-15: Observed 6 times. Targeted ports: 53982. Country: Bulgaria. Reputation: known attacker.
  • 2026-03-14: Observed 58 times. Targeted ports: 28099, 31048, 31401, 32362, 32500, 32608, 35051. Country: Bulgaria. Reputation: known attacker.
  • 2026-03-12: Observed 127 times. Targeted ports: 3023, 3024, 3025, 3127, 3128, 3129, 3130, 3131, 3246, 3247, 3248, 3249, 3250, 3575, 3579, 3593, 3595, 3597. Country: Canada. Reputation: known attacker.
  • 2026-03-09: Observed 9 times. Targeted ports: 60, 85, 635. Country: Canada. Reputation: known attacker.
  • 2026-03-08: Observed 48 times. Targeted ports: 4775, 4776, 4777, 4844, 4847, 4872. Country: Bulgaria. Reputation: known attacker.
  • 2026-03-06: Observed 83 times. Targeted ports: 2332, 2336, 2352, 2356, 2376, 2384, 2387, 2392, 2395, 2398, 2431. Country: Canada. Reputation: known attacker.
  • 2026-03-05: Observed 9 times. Targeted ports: 55623, 65527. Country: Canada. Reputation: known attacker.

URLs on this IP

No URLs found for this IP.

Passive DNS

No pDNS records found for 85.217.149.2.

Search History

ID Source Last seen
59909 web 2026-05-21 13:18:51
55292 web 2026-05-04 19:16:35

Whois

No Whois record yet. The worker will fetch it when this IP is in the queue.