46.197.136.112 Threat Intelligence and Host Information

Share on:
Aug 26, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 46.197.136.112 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 27/100

Host and Network Information

  • Tags: Malicious IP, Nextray, blacklist, botnet, bruteforce, cyber security, digital ocean, ioc, malicious, mirai, mssql, nmap, phishing, port-scan, scan, smb, tcp, vultr

  • View other sources: Spamhaus VirusTotal

  • Country: Turkey
  • Network: AS47524 turksat uydu haberlesme ve kablo tv isletme a s
  • Noticed: 1 times
  • Protcols Attacked: mssql
  • Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Singapore, Turkey, Ukraine, United Kingdom, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

100 1000 10000 10001 1012 102 1022 1024 10243 1025 10250 1026 1027 104 10443 1050 10554 1099 11 110 11000 111 1110 11112 1119 11210 11211 113 11300 11371 1153 119 12000 1234 1250 1290 1311 1337 1344 135 1355 13579 139 1400 14147 14265 143 1433 1471 15 1500 1521 1588 1599 16010 16030 1604 1649 1650 16992 16993 17 17000 1741 175 179 180 1801 18081 1820 18245 1833 1883 19 19071 1911 1925 1962 1990 2000 20000 2001 2002 2012 2021 20256 2049 2052 2053 20547 2056 2059 2060 2063 2064 2066 2067 2068 2077 2079 2080 2081 2082 2083 2086 2087 2095 2096 21 2111 2121 21379 2150 2154 2181 22 2201 2202 221 2211 2220 2222 22222 2225 2233 225 23 23023 2332 23424 2345 2351 2352 2375 2376 2379 24 2455 2480 25 25001 2549 2553 2556 25565 2560 2561 2562 2563 2569 2572 2598 26 2602 2628 263 264 2650 27015 27017 2761 2762 28015 28017 2806 2985 3000 30002 30003 3001 3005 3048 3049 3050 3056 3057 3059 3061 3062 3068 3071 3075 3076 3077 3078 3082 3083 3084 3087 3089 3091 3093 3100 3101 3102 3103 3105 3106 3109 311 3111 3116 3118 3119 3121 3128 3129 31337 3221 32400 3260 3268 3269 32764 3301 3306 33060 3310 3388 3389 340 3400 3402 3404 3405 3407 3409 3479 35000 3521 3522 3523 3524 3541 3542 3548 3550 3551 3554 3556 3559 3561 3563 3569 3570 37 37215 3749 3780 3790 3791 3793 38 389 3922 3951 3953 3954 4000 4002 4010 4022 4040 4042 4043 4063 4064 4100 4117 4118 41800 4190 4200 4242 4243 427 43 4321 44158 443 4430 4433 444 4443 4444 4445 445 447 448 44818 450 4545 4550 4567 4643 4646 465 4664 4700 4747 4782 4786 4840 4848 4899 491 4911 49153 5000 50000 5001 5002 5004 5005 50050 5006 5007 50070 5009 5010 50100 502 5025 5050 5080 51 51106 5122 51235 515 5150 5172 5190 5201 5269 5280 52869 53 5321 5357 5400 54138 5432 5435 5446 5454 5500 55000 554 5542 55442 55443 5555 55553 55554 5560 5568 5569 5591 5596 5597 5599 5601 5602 5603 5607 5609 5673 5800 5801 5822 5858 587 5900 5901 5908 5910 5938 5984 5985 5986 60001 60010 6002 6003 60030 6004 6005 6036 6080 6102 6161 61613 61616 62078 6308 631 636 6379 6443 6464 6561 6565 6580 6588 6602 6605 6633 6653 666 6664 6666 6667 6668 6697 675 6998 70 7000 7001 7002 7003 7071 7081 7090 7170 7171 7218 7443 7444 7445 7474 7500 7510 7537 7547 7548 7634 7654 7657 7676 771 772 7776 7778 7779 7788 7887 789 79 7979 7989 80 800 8001 8004 8005 8006 8008 8009 8010 8011 8012 8016 8019 8023 8026 8028 8030 8031 8032 8033 8038 8039 8040 8041 8044 8045 8050 8052 8055 8057 8060 8066 8069 808 8080 8083 8085 8086 8087 8088 8090 8091 8096 8097 8098 8099 81 8100 8101 8102 8103 8104 8107 8109 8112 8118 8123 8126 8139 8140 8143 8181 8190 82 8200 8222 8248 8249 8252 8282 8291 83 8333 8334 84 8403 8405 8406 8408 8410 8411 8412 8413 8414 8416 8417 8420 8422 8423 8425 8427 8428 843 8430 8442 8443 8444 8448 8554 8575 8585 8590 86 8621 8623 8637 8649 8663 8666 8688 8728 8766 8784 8787 88 880 8800 8801 8802 8803 8805 8806 8808 8813 8814 8820 8821 8822 8824 8825 8826 8828 8832 8834 8836 8841 8842 8843 8845 8855 8856 8859 8860 8861 8862 8867 8868 8869 8870 8872 8873 8875 8876 8879 8880 8887 8888 8889 8890 8891 89 8935 8969 8991 8993 8999 9000 9001 9002 9005 9006 9007 9009 9013 9016 9019 902 9022 9023 9028 9032 9033 9034 9036 9037 9040 9041 9042 9043 9044 9045 9046 9048 9049 9050 9051 9070 9080 9084 9088 9089 9090 9091 9092 9096 9097 9099 9100 9102 9103 9104 9105 9107 9109 9119 9136 9151 9160 9191 9199 92 9200 9201 9207 9209 9210 9215 9216 9218 9219 9222 9295 9299 9300 9306 9308 9309 9310 9311 9389 9418 9433 9443 95 9500 9527 9530 9595 96 97 9743 9761 98 9800 9861 9898 9899 99 993 9944 995 9950 9981 9988 999 9990 9992 9994 9997 9999

Map

Whois Information

  • inetnum: 46.197.64.0 - 46.197.255.255
  • netname: TURKSAT-NET
  • descr: Turksat Services
  • country: TR
  • admin-c: II7254-RIPE
  • tech-c: II7254-RIPE
  • status: ASSIGNED PA
  • mnt-by: MNT-AS47524
  • mnt-lower: MNT-AS47524
  • mnt-routes: MNT-AS47524
  • created: 2011-09-20T09:59:02Z
  • last-modified: 2013-10-08T07:52:35Z
  • person: TURKSAT Internet ve Interaktif Hizmetler Direktorlugu
  • address: Konya Yolu 40. Km. Golbasi Ankara/TURKEY
  • phone: +90 312 615 3000
  • nic-hdl: II7254-RIPE
  • mnt-by: MNT-AS47524
  • created: 2013-10-08T06:52:59Z
  • last-modified: 2023-01-04T18:02:18Z
  • route: 46.197.136.0/24
  • descr: Turksat Internet Services
  • origin: AS47524
  • mnt-by: MNT-AS47524
  • created: 2016-11-21T06:59:40Z
  • last-modified: 2016-11-21T06:59:40Z

Links to attack logs

nmap-scanning-list-2023-05-26 vultrparis-mssql-bruteforce-ip-list-2023-08-15 dosing-mssql-bruteforce-ip-list-2023-07-19 dobengaluru-mssql-bruteforce-ip-list-2023-05-04 dofrank-mssql-bruteforce-ip-list-2023-04-30 vultrwarsaw-mssql-bruteforce-ip-list-2023-08-24 dolondon-mssql-bruteforce-ip-list-2023-05-05 dofrank-mssql-bruteforce-ip-list-2023-02-14 dolondon-mssql-bruteforce-ip-list-2023-07-03

Usernames utilised by this host:

sa,