IP Address

185.11.61.151

IPv4 Public
RU RU
AS57523
Chang Way Technologies Co. Limited
3,569 Reports
This IP is under Observation Suspicious activity detected - monitor closely
10/10 Threat
62% Confidence
3,569 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 10% High Threat
RU
RU Location
Chang Way Technologies Co... ASN 57523
3,569 Reports
Honeypot Data Source

Critical Alert

IP 185.11.61.151 is a high-risk address assessed at threat level 10/10 that has generated 3,569 abuse reports from automated honeypot sensors, predominantly for SSH brute-force activity originating from Russia. Despite a moderate confidence score of 62%, the sheer volume of reports makes this IP a significant and credible threat to any exposed SSH services. Chang Way Technologies Co. Limited, operating autonomous system AS57523, is the identified network operator responsible for this address.

The detection data reveals a concentrated attack campaign focused on compromising SSH servers through credential-guessing techniques. All 3,569 reports were filed within January 2026 across 20 separate honeypot sensors, indicating synchronized or automated scanning activity. The reported threat categories split between general hacking attempts (14 reports) and SSH-specific attacks (13 reports in the most recent window), with honeypot event logs confirming repeated SSH brute-force sequences. The activity frequency score of 0/10 suggests the offensive operations have currently ceased or shifted targets, though the historical volume demonstrates persistent, aggressive behaviour.

SSH brute-force attacks represent a direct pathway to server compromise when defenders rely on weak or predictable credentials. Attackers cycling through common username-password combinations can gain initial access, then escalate privileges to execute arbitrary code, exfiltrate data or establish persistent backdoors. Even failed attempts consume server resources, enable reconnaissance of valid accounts and may trigger account lockouts that cause denial-of-service conditions for legitimate users.

Site operators should immediately block IP 185.11.61.151 at the firewall or network perimeter to eliminate contact with SSH services. Enforcing key-based authentication exclusively, disabling root login and changing the default SSH port substantially raise the barrier against automated credential attacks. Deploying intrusion detection tools such as fail2ban to automatically ban repeated failed-login sources provides layered protection. Monitoring authentication logs for activity patterns matching this IP's known behaviour will help identify any resurgence in targeting.

More threatening than 90% of monitored IPs

Threat Categories

Hacking 22
SSH 15

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Reputable Network

This IP is hosted on a network (ASN 57523) with generally good reputation. The ISP Chang Way Technologies Co. Limited maintains standard security practices.

The malicious activity may represent an isolated compromised system rather than systematic abuse.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 0/10 Inactive
Confidence Score 60% High Confidence

Confidence History

31. Jan 2026
62% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
SSH Honeypot 75%
Hacking Honeypot x4 75%
SSH Honeypot 75%
Hacking Honeypot x4 75%
Hacking SSH Honeypot x5 75%
SSH Honeypot 75%
Hacking SSH Honeypot x5 75%
Hacking Honeypot x4 75%
SSH Honeypot 75%
Hacking SSH Honeypot x5 75%
Hacking Honeypot x4 75%
SSH Honeypot 75%
SSH Hacking Honeypot x4 75%
Hacking Honeypot x5 75%
Hacking SSH Honeypot x5 75%
Hacking SSH Honeypot x4 75%
Hacking Honeypot 75%
SSH Honeypot 75%
Hacking Honeypot x4 75%
Hacking SSH Honeypot x4 75%
Hacking Honeypot 75%
SSH Honeypot 75%
Hacking Honeypot x4 75%
SSH Honeypot 75%
Hacking Honeypot x4 75%
Hacking Honeypot x11 75%
Hacking Honeypot x7 75%
Hacking Honeypot x11 75%
Hacking Honeypot x11 75%
Hacking Honeypot 75%
10 of 3569 shown

Technical Details

Basic Information

IP Address
185.11.61.151
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class B

Geolocation

Country
RU RU
ASN
AS57523
ISP
Chang Way Technologies Co. Limited

DNS Information

Reverse DNS
None
PTR Record
No
Connection Type
Static

Statistics

Total Reports
3,569
First Reported
15 Jan 2026
Last Reported
31 Jan 2026, 14:22

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS57523
Chang Way Technologies Co. Limited
HK HK

Network Threat Assessment

0/10
This network appears to be relatively clean with very low threat indicators.

Network Statistics

8
Total IPs Monitored
7,750
Total Reports
968.8
Reports per IP

Network Context

This IP address belongs to Chang Way Technologies Co. Limited (AS57523), which manages 8 IP addresses in our monitoring system. Out of these, 7,750 have been reported for suspicious activities, resulting in a network-wide threat level of 0/10.

Network status: This network appears to be well-maintained with low threat indicators.

Comparative Analysis

How this IP compares to others in our threat intelligence database

90 %

Global Threat Ranking

This IP is more threatening than 90% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,468 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 3,569 avg: 23 ++

Network Comparison

Compared against 8 IPs in ASN 57523

Threat Level 10/10 network avg: 6.0 ++
Total Reports 3,569 network avg: 561 ++
Network Chang Way Technologies Co. Limited has overall threat level 0/10

Geographic Comparison

Compared against 4,703 IPs in RU

Threat Level 10/10 country avg: 5.3 ++
Total Reports 3,569 country avg: 17 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,140 threat incidents tracked globally • Last 24h: 19,043 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,446 20.5%
  2. 02
    IN
    India IN
    29,023 15.5%
  3. 03
    CN
    China CN
    26,021 13.9%
  4. 04
    BR
    Brazil BR
    10,256 5.5%
  5. 05
    DE
    Germany DE
    7,142 3.8%
  6. 06
    SG
    Singapore SG
    6,476 3.5%
  7. 07
    ID
    Indonesia ID
    5,539 3%
  8. 08
    RU
    Russia RU THIS IP
    4,703 2.5%
  9. 09
    PK
    Pakistan PK
    4,654 2.5%
  10. 10
    NL
    Netherlands NL
    4,356 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same subnet range, likely same network segment.

3 Related IPs
9/10 Avg Threat
49% Avg Confidence
3 High Threat
High-risk network: Majority of related IPs are flagged
185.11.61.226 10/10
Confidence 63%
Reports 903
Location HK HK
1 Feb 2026
185.11.61.252 10/10
Confidence 60%
Reports 1,291
Location RU RU
6 Jan 2026
185.11.61.102 7/10
Confidence 25%
Reports 1
Location RU RU
14 Dec 2025

IPs from the same country with similar threat profiles.

15 Related IPs
8.7/10 Avg Threat
98% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
5.35.7.175 8/10
Confidence 99%
Reports 82
ISP JSC Selectel
16 May 2026
46.165.56.242 8/10
Confidence 99%
Reports 53
ISP Nizhnetagilskie...
8 Jun 2026
85.95.166.40 10/10
Confidence 99%
Reports 36
ISP Rostelecom
8 Jun 2026
176.211.42.202 10/10
Confidence 99%
Reports 31
ISP Rostelecom
8 Jun 2026
188.92.241.150 10/10
Confidence 99%
Reports 24
ISP JSC Avantel
8 Jun 2026
213.167.43.130 10/10
Confidence 99%
Reports 23
ISP Digit One LLC
20 May 2026
81.28.167.30 10/10
Confidence 98%
Reports 12
ISP Rostelecom
25 May 2026
91.205.128.170 8/10
Confidence 97%
Reports 98
ISP LTD Erline
22 Apr 2026
91.237.163.110 8/10
Confidence 97%
Reports 65
ISP Systematica LLC
3 Mar 2026
212.33.247.195 8/10
Confidence 97%
Reports 45
ISP JSC ER-Telecom ...
27 Feb 2026
37.139.53.129 8/10
Confidence 97%
Reports 40
ISP Petersburg Inte...
1 Jun 2026
94.180.238.116 8/10
Confidence 97%
Reports 39
ISP JSC ER-Telecom ...
14 May 2026
37.230.245.194 8/10
Confidence 97%
Reports 34
ISP PJSC MegaFon
27 Feb 2026
91.151.178.74 8/10
Confidence 97%
Reports 29
ISP Petersburg Inte...
2 Mar 2026
103.136.43.74 8/10
Confidence 97%
Reports 28
ISP Ip Server LLC
5 Mar 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.7/10 Avg Threat
62% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
167.86.74.173 7/10
Confidence 62%
Reports 3,271
Location DE DE
20 Jan 2026
62.149.25.72 10/10
Confidence 62%
Reports 3,180
Location UA UA
9 Mar 2026
125.163.139.181 10/10
Confidence 62%
Reports 3,148
Location ID ID
22 Jan 2026
193.22.146.182 8/10
Confidence 62%
Reports 2,704
Location DE DE
6 Feb 2026
185.243.5.75 10/10
Confidence 62%
Reports 2,500
Location HK HK
29 May 2026
138.197.71.145 10/10
Confidence 62%
Reports 2,121
Location US US
20 Jan 2026
142.202.191.102 10/10
Confidence 62%
Reports 2,118
Location US US
13 Feb 2026
64.188.91.243 10/10
Confidence 62%
Reports 2,084
Location US US
3 Mar 2026
172.81.63.125 10/10
Confidence 62%
Reports 1,846
Location US US
12 Feb 2026
185.132.187.58 10/10
Confidence 62%
Reports 1,484
Location BE BE
27 Jan 2026
212.56.40.202 10/10
Confidence 62%
Reports 1,228
Location US US
23 Jan 2026
159.223.239.42 10/10
Confidence 62%
Reports 1,188
Location NL NL
21 Jan 2026
95.214.54.147 10/10
Confidence 62%
Reports 1,133
Location PL PL
30 Jan 2026
206.189.98.110 10/10
Confidence 62%
Reports 1,096
Location NL NL
19 Jan 2026
78.31.250.12 10/10
Confidence 62%
Reports 1,049
Location NL NL
19 Jan 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "185.11.61.151",
    "threat_level": 10,
    "confidence_score": 62,
    "total_reports": 3569,
    "country_code": "RU",
    "isp_name": "Chang Way Technologies Co. Limited",
    "asn": "57523",
    "first_reported": "2026-01-15 13:21:26",
    "last_reported": "2026-01-31 14:22:21",
    "exported_at": "2026-06-09T08:49:23+02:00",
    "source": "https://reportedip.de/ip/185.11.61.151/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses