94.138.208.158 Threat Intelligence and Host Information
Share on:General
This page contains threat intelligence information for the IPv4 address 94.138.208.158 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.
Possibly Malicious Host 🟢 25/100
Host and Network Information
-
Tags: cyber security, ioc, malicious, Nextray, phishing
- View other sources: Spamhaus VirusTotal
-
Contained within other IP sets: ipblacklistcloud_recent_30d
- Country: Turkey
- Network: AS49126 ihs telekomunikasyon ltd
- Noticed: 1 times
- Protcols Attacked: SSH
- Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
- Passive DNS Results: saxdorsttropez.com vandutchusa.com fogo.com.tr saxdorturkey.com watmindturkey.com saxdorflorida.com protonambalaj.com saxdorftlauderdale.com fogoevents.com yelkenokulu.com nadirusta.net www.nautiqueyachting.com toksailing.com nimbusflorida.com satilikazimut.com www.bekinsaat.com bekinsaat.com bioscienceturkiye.com barisfruit.com www.barisfruit.com www.viyaapart.com viyaapart.com teknebul.com www.vandutchclub.com vandutchclub.com yachts.in www.yachts.in www.sperorealestate.com sperorealestate.com www.speroholding.com speroholding.com kiyipark.com www.kiyipark.com www.savahukuk.istanbul savahukuk.istanbul partypatch.com.tr www.partypatch.com.tr www.silentlinegroup.com silentlinegroup.com ukinterior.az www.ukinterior.az www.iphonetamir.net iphonetamir.net nautiquerealestate.com www.nautiquerealestate.com www.kecokido.com kecokido.com www.istegelsin.az www.nautiquegroup.com nautiquegroup.com moydadir.az www.moydadir.az www.iphonekayseri.com iphonekayseri.com ipadteknikservis.net www.ipadteknikservis.net www.ipadtamir.net ipadtamir.net www.iphoneantalya.com ipadyetkiliservis.com www.ipadyetkiliservis.com enaozelegitim.com www.enaozelegitim.com erardagholding.com www.erardagholding.com ipadteknikservisi.com www.ipadteknikservisi.com www.galatakitap.net galatakitap.net www.deluxsloepen.com deluxsloepen.com www.bilecikmedikal.com bilecikmedikal.com www.bekinsaat.com.tr bekinsaat.com.tr www.st-danismanlik.com st-danismanlik.com istegelsin.az iphoneantalya.com
Malware Detected on Host
Count: 1 e43dce83d4eba1d4882a27a76b0c4e6ddb4221c58e16adbadd930ed556300aa5
Open Ports Detected
Map
Whois Information
- inetnum: 94.138.208.0 - 94.138.211.255
- netname: IHS-NET
- descr: IHS-VDS-NET-2
- country: TR
- admin-c: IN1807-RIPE
- tech-c: IN1807-RIPE
- status: ASSIGNED PA
- mnt-by: MNT-CES
- created: 2013-01-10T21:58:53Z
- last-modified: 2020-06-29T13:38:56Z
- role: IHS NOC
- address: Kosuyolu Mah. Dinlenc sok. Murtezaoglu Is Merk. No.10
- address: Kadikoy - Istanbul - Turkey
- phone: +902165460056
- abuse-mailbox: [email protected]
- admin-c: EK5689-RIPE
- tech-c: EK5689-RIPE
- nic-hdl: IN1807-RIPE
- mnt-by: MNT-CES
- created: 2020-06-29T11:12:23Z
- last-modified: 2020-06-29T13:28:18Z
- route: 94.138.208.0/22
- descr: IHS-VPS-NET2
- origin: AS49126
- mnt-by: MNT-CES
- created: 2013-01-10T22:00:52Z
- last-modified: 2013-01-10T22:00:52Z