46.246.39.18 Threat Intelligence and Host Information

Share on:

General

This page contains threat intelligence information for the IPv4 address 46.246.39.18 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • JARM: 15d3fd16d29d29d00042d43d000000eed8083ffe0365e3dd86aa60eff5d3bb

  • View other sources: Spamhaus VirusTotal

  • Country: Sweden
  • Network: AS42708 glesys ab
  • Noticed: 1 times
  • Protcols Attacked: spam
  • Passive DNS Results: staging.bouppteckna.se

Malware Detected on Host

Count: 16 af375504ca558e9035a8bc319bbb592055bcd73bd20a6932203d252bfcae9530 beec48641e268819b654b29b10417e1c6d843c79211335bfed09b0c919f78209 e40c61053b74dc0f06d169322b5076716d210e1b5a2aadeb000349aa484344f3 a1e08a2da85817516a39d5f8b00f8df78c9b2aa18fc0f36395e5d6ff61319967 bd989528e2c4ca64c6dfa437d1ba34e3eea0877e540bef8e7fd8c96b3ec17126 de96419de2614c343d16babf74479fe37d72fee89f9f1170e92cc7682fa33727 1e9fc0459e2c8ec08c91fff1063a60933b7373cc8818bbaddcdf7ffdaa2f5da5 749cdaf3de5490da6a5c1900b415e1a10cba45d19593ca98378781d9488b6bee b8df91cbaa0c8b187b4ce4fe5392ba5bd120d384f9acccef61b83b07d466c3b5 6802c19079c21a985288ad3e2bae4881ca3314037711a1427f6b461598833143

Open Ports Detected

22 443 80

Map

Whois Information

  • inetnum: 46.246.0.0 - 46.246.127.255
  • geofeed: https://as42708.net/geofeed.csv
  • netname: SE-GLE-RIPE-20110127
  • country: SE
  • org: ORG-GISA2-RIPE
  • admin-c: GLE-RIPE
  • tech-c: GLE-RIPE
  • status: ALLOCATED PA
  • mnt-by: GLESYS-MNT
  • mnt-by: RIPE-NCC-HM-MNT
  • created: 2019-02-07T10:02:28Z
  • last-modified: 2023-07-03T07:21:12Z
  • organisation: ORG-GISA2-RIPE
  • org-name: GleSYS AB
  • country: SE
  • org-type: LIR
  • address: Badhusvagen 45
  • address: S-31122
  • address: Falkenberg
  • address: SWEDEN
  • phone: +4634649395
  • fax-no: +4634658445
  • abuse-c: GLE101-RIPE
  • mnt-ref: RIPE-NCC-HM-MNT
  • mnt-ref: GLESYS-MNT
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: GLESYS-MNT
  • created: 2007-11-06T11:11:44Z
  • last-modified: 2020-12-16T13:16:00Z
  • person: GleSYS Support
  • address: Box 134
  • address: 31122 Falkenberg
  • address: Sweden
  • phone: +46-346-738800
  • nic-hdl: GLE-RIPE
  • mnt-by: GLESYS-MNT
  • created: 2007-09-20T12:07:40Z
  • last-modified: 2010-05-28T04:24:21Z
  • route: 46.246.0.0/17
  • descr: Portlane Network
  • origin: AS42708
  • mnt-by: MNT-PORTLANE
  • created: 2011-01-27T13:42:49Z
  • last-modified: 2011-01-27T13:42:49Z

Links to attack logs

forum-spam-ip-list-2014-03-20