156.146.55.185 Threat Intelligence and Host Information

Aug 23, 2025 ipinfopage

General

IP Address
156.146.55.185
IPv4 Address
Location
🇧🇬 Sofia, Bulgaria
BG
Network
AS212238
Datacamp Limited
Threat Score
40/100
Medium Risk
cybersecurityiocIOCmaliciousNextrayphishingTrash
Attack Intelligence
Open Ports Detected
1337
Geographic Location
Country
Bulgaria
City
Sofia
Region
Sofia-Capital
Coordinates
42.6951, 23.3250
Network Information
ASN
AS212238
Organization
Datacamp Limited
Network
AS212238 Datacamp Limited
WHOIS Information
NetRange
156.146.32.0 - 156.146.63.255
CIDR
156.146.32.0/19
NetName
RIPE
NetHandle
NET-156-146-32-0-1
Parent
NET156 (NET-156-0-0-0-0)
NetType
Early Registrations, Transferred to RIPE NCC
OriginAS
Organization
RIPE Network Coordination Centre (RIPE)
RegDate
Updated
2013-07-29
Ref
https://rdap.arin.net/registry/entity/RIPE
OrgName
RIPE Network Coordination Centre
OrgId
RIPE
Address
P.O. Box 10096
City
Amsterdam
StateProv
PostalCode
1001EB
Country
NL
OrgAbuseHandle
ABUSE3850-ARIN
OrgAbuseName
Abuse Contact
OrgAbusePhone
+31205354444
OrgAbuseEmail
abuse@ripe.net
OrgAbuseRef
https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle
RNO29-ARIN

  • Country: Bulgaria
  • Network:
  • Noticed: 47 times
  • Protocols Attacked: spam
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: nas-olivier06.direct.quickconnect.to ichmachmichnas.myqnapcloud.com 87-1-bg.cg-dialup.net 97-1-bg.cg-dialup.net

Malware Detected on Host

Count: 4 440338da3b5857e1ff499843f74e4bb8598e7014b5b7dc291106329e28b4638b 436e97f5699c8252cf4e39e5389e4684d8376329947402a37ef491c5b43f4a71 51850bf6ed486f7e0a446142a88ee604a4b6d1b5dda6e0b14a18c9ee69184d71 a91daea297437998ff1e9b98cca1cebaafdf947cc38d1a10da77ae639ba46df1

Disclaimer
This page contains threat intelligence information for the IPv4 address 156.146.55.185 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.