46.147.195.11 Threat Intelligence and Host Information

General

IP Address
46.147.195.11
IPv4 Address
Location
🇷🇺 Tula, Russia
RU
Network
AS52207
JSC ER-Telecom Holding
Threat Score
50/100
Medium Risk
Aggressive-DetectionBlocklistbruteforcebruteforceBruteforceBrute-ForceConnection-Reset
Attack Intelligence
MITRE ATT&CK Techniques
T1110 - Brute Force
Open Ports Detected
2221
Geographic Location
Country
Russia
City
Tula
Region
Tula Oblast
Coordinates
54.2021, 37.6179
Network Information
ASN
AS52207
Organization
JSC ER-Telecom Holding
Network
AS52207 JSC ER-Telecom Holding
WHOIS Information
inetnum
46.147.192.0 - 46.147.199.255
netname
ERTH-TULA-PPPOE-12-NET
descr
TM DOM.RU, Tula ISP
country
RU
admin-c
ERTH71-RIPE
org
ORG-CHTB2-RIPE
tech-c
ERTH71-RIPE
status
ASSIGNED PA
mnt-by
RAID-MNT
created
2011-01-25T09:11:43Z
last-modified
2016-01-11T11:46:43Z
organisation
ORG-CHTB2-RIPE
org-name
JSC “ER-Telecom Holding” Tula Branch
org-type
OTHER
address
Russian Federation
phone
+7 342 2462 367
fax-no
+7 342 2195 104
mnt-ref
RAID-MNT
role
Network Operation Center CJSC ER-Telecom Holding Tula branch
abuse-mailbox
abuse@domru.ru
nic-hdl
ERTH71-RIPE
route
46.147.192.0/22
origin
AS52207
Attack Logs
Date Target Location Protocol Link
2026-06-19 Toronto, Canada SSH View Log

  • Country: Russia
  • Network:
  • Noticed: 17 times
  • Protocols Attacked: portscan ssh
  • Countries Attacked: Australia, China, Finland, France, Germany, Poland, Russian Federation, United Kingdom of Great Britain and Northern Ireland, United States of America

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2020-14145 CVE-2021-28041 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728 CVE-2026-35385 CVE-2026-35386 CVE-2026-35387 CVE-2026-35388 CVE-2026-35414

Disclaimer
This page contains threat intelligence information for the IPv4 address 46.147.195.11 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.