109.232.217.85 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 109.232.217.85 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: Turkey
• Network: AS42807 aerotek bilisim sanayi ve ticaret as
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: denge-documents.denge.aero dengemakina.denge.aero mgo.denge.aero dengemakinacomtr.denge.aero www.yeni.denge.aero www.teosdogalurunler.com www.sumerlerpetrol.com.tr dengehavacilik.com.tr dengemakina.com www.mgoyatirim.denge.aero www.dengehavacilik.denge.aero www.dengemakinacomtr.denge.aero www.dengemakina.denge.aero www.ambulift.denge.aero www.mgo.denge.aero www.containerdolly.denge.aero www.denge-documents.denge.aero www.passengerstair.denge.aero www.fatihkulucka.com www.oyuncukatalogu.com www.ketenpnomatik.com.tr www.atlasparkresidence.com bollucasaglikkabini.com kordontekelsarkuteri.com www.nelly.com.tr www.ply.com.tr ply.com.tr masignal.com huzeyfedemirtas.com kilodukkan.com www.ingilizcederslerim.com ingilizcederslerim.com www.yudenco.com yudenco.com zologs.com semihtekin.com.tr isiklitopmarketim.com lavinyatowel.com oyuncukatalogu.com passengerstair.com 3dbaskiatolyesi.com denge.aero tolgaklise.com marmarayapi.net aagusto.com containerdolly.com eylulpankartafis.com ubanmimarlik.com www.flymanparagliding.com flymanparagliding.com samiuzun.com designsono.com bkorkut.com dengemakina.com.tr ademyildirim.com.tr yapabilirsin.org gamzegunay.com otantikferforje.com rotagrafik.com ambulift.com denge-documents.com odsdanismanlik.com www.odsdanismanlik.com www.etapmarine.com www.kitapupp.com dng.aero mgoyatirim.com www.dotkirby.com algak.com tbi.com.tr www.tbi.com.tr telemobil.site nostaljibakkal.com fatihkulucka.com ensplatform.com.tr nelly.com.tr blog.dolichetekstil.com www.blog.dolichetekstil.com gezgoredu.com musaogullari.com.tr erkankaya.com gisearth.net.urbangis.net www.hasanhol.urbangis.net hasanhol.urbangis.net urbangis.net www.gisearth.net.urbangis.net atlasparkresidence.com nellytekstil.com cpcontacts.zeynepozden.com cpcalendars.zeynepozden.com zeynepozden.com teosdogalurunler.com cpcontacts.teosdogalurunler.com cpcalendars.teosdogalurunler.com cpcalendars.diyetingizemi.com cpcontacts.diyetingizemi.com pomeranianbooilanlari.com prestijgiyim.net cpcalendars.oxygenaccounting.com cpcontacts.oxygenaccounting.com oxygenaccounting.com ciltdostum.com cpcontacts.ankaradagezilecekyerler.com cpcalendars.ankaradagezilecekyerler.com ankaradagezilecekyerler.com diyetingizemi.com cpcalendars.sumerlerpetrol.com.tr cpcontacts.sumerlerpetrol.com.tr sumerlerpetrol.com.tr disruptivemindslab.com cpcontacts.disruptivemindslab.com cpcalendars.disruptivemindslab.com cpcalendars.adakitapevi.com cpcontacts.adakitapevi.com adakitapevi.com cpcontacts.xn–engl-oban-k-q9a4yw0aa63ena.com xn–engl-oban-k-q9a4yw0aa63ena.com cpcalendars.xn–engl-oban-k-q9a4yw0aa63ena.com bobulb.com www.edit.bobulb.com old.bobulb.com cpcontacts.bobulb.com www.old.bobulb.com cpcalendars.bobulb.com edit.bobulb.com bilimaydinlik.com cpcalendars.tolgaakkus.com cpcontacts.tolgaakkus.com tolgaakkus.com www.blog.hasanhol.com blog.hasanhol.com laroccabistro.com dotkirby.com cpcontacts.ketenpnomatik.com.tr cpcalendars.ketenpnomatik.com.tr works.teoslight.com www.works.teoslight.com www.child.teoslight.com child.teoslight.com www.old.teoslight.com old.teoslight.com cpcontacts.teoslight.com cpcalendars.teoslight.com teoslight.com cpcontacts.hasanhol.com cpcalendars.hasanhol.com hasanhol.com cpcalendars.1923.cafe 1923.cafe cpcontacts.1923.cafe www.1923.cafe.ketenpnomatik.com.tr 1923.cafe.ketenpnomatik.com.tr www.old.icterra.com old.icterra.com ketenpnomatik.com.tr kitapupp.com hasanhol.gisearth.net www.hasanhol.gisearth.net cpcontacts.gisearth.net gisearth.net cpcalendars.gisearth.net www.hasanhol.net.gisearth.net hasanhol.net.gisearth.net srvc84.turhost.com vipbrands.app bnotomasyon.com xn–forevertrkiye-3ob.com pikimiki.com kocaeliasansorleri.com icterra.com www.icterra.com fenerci.com etapmarine.com mgo.com.tr iceriks.com

Malware Detected on Host

Count: 1 d934c6cdb1e401fb756ee2fee94497d067279dc413c2d7fd52acef61c4c4dcf5

Open Ports Detected

110 143 2082 2083 2086 2087 21 443 465 53 587 80 993

Map

Whois Information

• inetnum: 109.232.217.0 - 109.232.217.255
• netname: TURHOST-NET
• descr: Aerotek Bilisim Taahhut Sanayi ve Ticaret Limited Sirketi
• country: TR
• admin-c: DEY101-RIPE
• tech-c: DEY101-RIPE
• status: ASSIGNED PA
• mnt-by: AEROTEK-MNT
• created: 2010-01-12T19:49:20Z
• last-modified: 2012-12-27T17:14:11Z
• person: Dogan Ender
• address: Carsi Yapi F Blok No.6 Sanayi Mh. Pk.41040 Izmit/Kocaeli
• phone: +90 (262) 324 55 55
• nic-hdl: DEY101-RIPE
• mnt-by: AEROTEK-MNT
• created: 2012-12-27T17:10:19Z
• last-modified: 2020-03-27T09:38:28Z
• route: 109.232.216.0/21
• descr: Aerotek LTD Network 2
• origin: AS42807
• mnt-by: AEROTEK-MNT
• created: 2009-12-24T08:53:06Z
• last-modified: 2009-12-24T08:53:06Z