IOC Radar
IPMediumSignal 0/100

85.90.246.159

Location
GermanyGermany
Frankfurt am Main, HE
ASN
AS63949
Linode
First Seen
Jun 26, 2024
Last Seen
Jun 5, 2026
Jun 26
First Seen
717d ago
Jun 5
Last Seen
9d ago
2
Reports
source reports
0%
Confidence
medium
Found in 2 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryDEGermany
RegionFrankfurt am Main, HE
ASNAS63949
OrganizationLinode

Feed Intelligence Summary

2 reports0% confidence
2
Source reports
0%
Confidence score
Category tags
networkproxyresearched

Activity Timeline

1 total obs
Jun 5Jun 5

Threat Activity Heatmap

· Peak: 2026-06-05
Less
More
Mon
Wed
Fri
Jun
·
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
2
Reports
First seenJun 26, 2024
Last seenJun 5, 2026
GeolocationDE
CountryGermany
LocationFrankfurt am Main, HE
ASNAS63949
OrgLinode
Coords50.1188, 8.6843

VirusTotal

Not checked

WHOIS

description
Observed on T-Pot within last 24h; sensors=p0f; threshold?1; private IPs excluded. geo=DE; ports=992 Location=Sydney, Australia.
raw
inetnum: 85.90.244.0 - 85.90.247.255 netname: US-LINODE-20041112 country: DE org: ORG-LL72-RIPE admin-c: TA2589-RIPE abuse-c: LAS85-RIPE tech-c: TA2589-RIPE status: ALLOCATED PA remarks: Please send abuse reports to [email protected] remarks: This block is used for static customer allocations mnt-by: RIPE-NCC-HM-MNT mnt-by: linode-mnt mnt-lower: Linode-mnt mnt-domains: Linode-mnt mnt-routes: Linode-mnt created: 2015-03-31T15:02:46Z last-modified: 2022-12-07T14:27:11Z source: RIPE # Filtered organisation: ORG-LL72-RIPE org-name: Linode, LLC country: US org-type: LIR address: 249 Arch Street address: 19106 address: Philadelphia address: UNITED STATES phone: +16093807100 fax-no: +16093807200 admin-c: AF11785-RIPE admin-c: TA2589-RIPE tech-c: AF11785-RIPE abuse-c: LAS85-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: linode-mnt mnt-by: RIPE-NCC-HM-MNT mnt-by: linode-mnt created: 2009-11-02T13:42:45Z last-modified: 2020-12-16T13:00:31Z source: RIPE # Filtered person: Thomas Asaro address: 329 E. Jimmie Leeds Road, Suite A, Galloway, NJ 08205, USA phone: +16093807504 nic-hdl: TA2589-RIPE mnt-by: Linode-mnt created: 2009-11-02T17:17:56Z last-modified: 2014-11-20T18:51:15Z source: RIPE route: 85.90.244.0/22 origin: AS63949 descr: Akamai Technologies mnt-by: AKAM1-RIPE-MNT created: 2025-04-28T14:29:53Z last-modified: 2025-04-28T14:29:53Z source: RIPE
references
https://github.com/telekom-security/tpotce, https://chiraba.com:8443/hourly, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, C_C March-2025-04-03 13_46_36.669.csv, https://threats.kz, https://redpiranha.net

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 9 days ago
Appeared in 2 threat reports