188.246.226.126 Threat Intelligence and Host Information

Dec 02, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 188.246.226.126 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: Adbhoney, cisco, conpot, cowrie, dionaea, elasticpot, email, heralding, honeytrap, ipphoney, LAMP, mailoney, malicious, Redissentrypeer, sftp, sip, ssh, tanner

  • View other sources: Spamhaus VirusTotal

  • Country: Russia
  • Network:
  • Noticed: 8 times
  • Protocols Attacked: Anonymous Proxy

Open Ports Detected

11000 11075 11111 11112 11210 11211 11288 11300 11371 11434 11596 11680 11920 12000 12056 12107 12108 12112 12119 12124 12130 12131 12140 12145 12150 12160 12161 12162 12165 12170 12174 12175 12183 12184 12186 12187 12190 12195 12196 12200 12211 12213 12217 12218 12224 12225 12228 12230 12231 12234 12237 12244 12251 12255 12256 12259 12260 12261 12271 12275 12283 12284 12289 12290 12296 12304 12309 12311 12324 12325 12326 12328 12329 12330 12332 12349 12353 12356 12357 12360 12361 12366 12370 12371 12376 12377 12378 12392 12394 12395 12396 12400 12404 12407 12409 12412 12414 12415 12419 12421 12422 12425 12428 12431 12433 12434 12436 12439 12443 12448 12449 12452 12453 12456 12460 12461 12464 12465 12466 12467 12474 12477 12479 12483 12484 12496 12497 12499 12512 12532 12535 12538 12539 12546 12557 12561 12565 12567 12568 12569 12577 12578 12581 12590 12601 12980 13380 13579 14084 161 22 4150 80 8100

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2021-3618 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-44487 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2024-6387 CVE-2025-23419 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

  • inetnum: 188.246.226.0 - 188.246.226.255
  • netname: SELECTEL-NET
  • descr: Selectel
  • country: RU
  • geofeed: https://geofeed.selectel.ru/subnets.csv
  • admin-c: SA32710-RIPE
  • tech-c: SA32710-RIPE
  • status: ASSIGNED PA
  • mnt-by: MNT-SELECTEL
  • created: 2018-05-18T14:20:53Z
  • last-modified: 2023-06-01T09:53:33Z
  • role: SELECTEL-NOC
  • address: Russia, Saint-Petersburg, Cvetochnaya st. 21
  • admin-c: CMH-RIPE
  • admin-c: KS9134-RIPE
  • admin-c: TL5407-RIPE
  • admin-c: RVA179-RIPE
  • admin-c: EN5675-RIPE
  • admin-c: NS8369-RIPE
  • admin-c: AD16782-RIPE
  • admin-c: AN33480-RIPE
  • admin-c: KV3619-RIPE
  • tech-c: CMH-RIPE
  • tech-c: KS9134-RIPE
  • tech-c: TL5407-RIPE
  • tech-c: RVA179-RIPE
  • tech-c: EN5675-RIPE
  • tech-c: NS8369-RIPE
  • tech-c: AD16782-RIPE
  • tech-c: AN33480-RIPE
  • tech-c: AN33869-RIPE
  • tech-c: KV3619-RIPE
  • nic-hdl: SA32710-RIPE
  • mnt-by: mnt-selectel
  • created: 2015-01-19T15:40:16Z
  • last-modified: 2025-10-27T10:18:26Z
  • route: 188.246.226.0/24
  • descr: SELECTEL-NET
  • origin: AS49505
  • mnt-by: MNT-SELECTEL
  • created: 2018-11-12T21:19:02Z
  • last-modified: 2018-11-12T21:19:02Z

Links to attack logs

anonymous-proxy-ip-list-2025-12-01

Share on: