37.140.192.145 Threat Intelligence and Host Information

Jun 19, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 37.140.192.145 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 42/100

Host and Network Information

Mitre ATT&CK IDs: T1199 - Trusted Relationship, T1498 - Network Denial of Service, T1598 - Phishing for Information
Tags: aplicaciones, cuando, despus, eliminar lumma, google chrome, haga, javascript, lumma, macos, malware, microsoft edge, mozilla firefox, paso, please, tenga, trojan, troyano, urls, ventanas mac, windows
View other sources: Spamhaus VirusTotal

Country: Russia
Network: AS197695 domain names registrar reg.ru ltd
Noticed: 1 times
Protocols Attacked: Anonymous Proxy
Passive DNS Results: www.iosfera.ru iosfera.ru www.expertiza.tl www.osetiya.com osetiya.com owa.progbazar.com www.xn----7sbitowujr.xn–p1ai xn—-7sbitowujr.xn–p1ai masters.beauty pufgun.com www.pufgun.ru www.pufgun.com ellada-resort.ru www.ellada-resort.ru xn—-gtbdbazcc4aqmgdlg6b6i.xn–p1ai www.xn----gtbdbazcc4aqmgdlg6b6i.xn–p1ai diary.zeexa.ru www.diary.zeexa.ru www.pamyt.zeexa.ru pamyt.zeexa.ru zeexa.ru www.zeexa.ru agroniks.ru www.mkk-topzaim.ru nuvim.holding.bz www.nuvim.holding.bz www.keinstyle.ru keinstyle.ru keinstyle.by owa.keinstyle.by www.keinstyle.by 0kna.com www.0kna.com vehicle.zeexa.ru www.vehicle.zeexa.ru nivus.zeexa.ru www.nivus.zeexa.ru example.zeexa.ru www.example.zeexa.ru www.soyuzllc.ru soyuzllc.ru chinacat.ru www.chinacat.ru www.kvatra.site www.rostovdad.ru rostovdad.ru photozas.ru www.photozas.ru www.hochuchai.ru hochuchai.ru pufgun.ru oberon-alpha.com ps-met.com dzinbox.ru www.dzinbox.ru www.holding.bz holding.bz lux-m52.ru magma-cleaning-nn.ru www.lux-m52.ru www.magma-cleaning-nn.ru ladovet.ru www.kenigfil.ru kvatra.site necessitysmo.org free.rockclient.space chel.banniichan.ru www.chel.banniichan.ru www.ufa.banniichan.ru ufa.banniichan.ru www.dent-stars.ru dent-stars.ru xn—–6kcabbjq3an7bkro.xn–p1ai www.xn-----6kcabbjq3an7bkro.xn–p1ai donsvyaz.site workee.zeexa.io www.workee.zeexa.io greg-autoworks.ru www.greg-autoworks.ru www.btzone.ru btzone.ru kamstyle-motors.ru www.kamstyle-motors.ru www.m.holding.bz m.holding.bz www.riobet144.ru riobet144.ru www.backendpoint.sokolskikh.fun backendpoint.sokolskikh.fun www.itbroth.ru itbroth.ru www.po-impulse.ru po-impulse.ru xn—-9sbmzifchx.com www.pamyatplus.ru pamyatplus.ru leptismagna-zhbi.ru www.sokolskikh.fun madonarf.site www.divclient.space ekb-spa.ru optimum-doors.ru letoxolodnoe.ru www.letoxolodnoe.ru www.sheeptuts.ru sheeptuts.ru xn——bddfabsac4aeeaazj1bweibvtgrj2a76a.org divclient.space www.api.calculator.rultek-account.ru api.calculator.rultek-account.ru www.akustik-montazh.ru akustik-montazh.ru www.nartist.pro nartist.pro www.cat41.ru www.electrik-novosib.ru www.xn----7sbabmmudandccehvmhb0b2a4k8h.com xn—-7sbabmmudandccehvmhb0b2a4k8h.com ekb-spa.online www.advice.outstaff.moscow advice.outstaff.moscow jv-transfer.ru xn—-ptbfqfi.xn–p1ai www.xn----ptbfqfi.xn–p1ai zvyki.ru www.zvyki.ru www.shagma.shop shagma.shop osnpro.ru www.osnpro.ru www.mp52.ru mp52.ru cat41.ru pacific-eurasia.ru www.pacific-eurasia.ru www.vng-lab.ru vng-lab.ru www.seven.tech seven.tech www.new.vudmarkt.ru new.vudmarkt.ru www.filarmonia39.ru www.chupalovmagomed.ru chupalovmagomed.ru www.tehnoresurs.net tehnoresurs.net xn—82-5cdak1d7assj0j.xn–p1ai old.inruho.ru www.old.inruho.ru www.edu.ichernov.ru edu.ichernov.ru seventech.by www.xn--80ahniigdhl.xn–p1ai xn–80ahniigdhl.xn–p1ai www.labskidki.ru labskidki.ru socplat.com drgrandel.ru www.drgrandel.ru ableton.ru www.ableton.ru hd.mpt-nn.ru www.andrei-markovets.com www.service-web.online logistics-online.ru www.logistics-online.ru mnev4era.ru www.mnev4era.ru www.xn--80anesb3i.online srpp.org keintools.ru www.keintools.ru fs.mpt-nn.ru moscow-holiday.com sanos.tech www.eressea.ru eressea.ru www.epic.mith.ru epic.mith.ru www.child.mith.ru child.mith.ru www.caucas.mith.ru caucas.mith.ru nii-khir.ru www.nii-khir.ru gipertec.ru xn–80acbhx4d.xn–p1ai www.docs.outstaff.moscow docs.outstaff.moscow www.ichernov.ru ichernov.ru artspace.fun www.yanasos.ru yanasos.ru mirotvorinya.ru www.mirotvorinya.ru atomnok.ru www.atomnok.ru klitecodec.ru www.klitecodec.ru xn–90acridmfbd0b.com www.controlcenter.ru controlcenter.ru dementcity.com music-forums.com www.music-forums.com tiqum.ru www.sb.bldcs.ru sb.bldcs.ru goliaf-spb.com www.iptvplayer.ru iptvplayer.ru www.qualityproject.fun owa.qualityproject.fun terrorists-crimes-in-syria.org bartervito.holding.bz www.tennis-bot.ru tennis-bot.ru xn–90ahjtaitdh.xn–p1ai www.xn--90ahjtaitdh.xn–p1ai rultek.ru www.rultek.ru epishkin.site www.epishkin.site www.yollocenter.ru yollocenter.ru turbo-klin.ru www.turbo-klin.ru www.xn--80afbfrrd4aaiuo.xn–p1ai xn–80afbfrrd4aaiuo.xn–p1ai yurid-sovet.ru www.yurid-sovet.ru www.malino49.ru zagorodniedomastroim.ru www.zagorodniedomastroim.ru doma-v-moskve.ru www.doma-v-moskve.ru modulbanner.ru www.modulbanner.ru magma-cleaning.ru www.magma-cleaning.ru noagafonov.site www.xn----7sbaa5baano3bceuo6f.xn–p1ai xn—-7sbaa5baano3bceuo6f.xn–p1ai forwardconsult.ru www.forwardconsult.ru www.noginsk.studio mebeldvor-dv.ru www.mebeldvor-dv.ru tekhno-store.ru www.tekhno-store.ru xn—-gtbcooc1c3e.xn–p1ai www.xn----gtbcooc1c3e.xn–p1ai sale-champion.ru www.sale-champion.ru xn–h1admeh.xn–p1ai www.xn--h1admeh.xn–p1ai volt86.ru www.volt86.ru testpest.site www.ps-met.ru ps-met.ru www.easybuh.pro www.diplomat.tomsk.ru diplomat.tomsk.ru www.safi.trade www.volvos.ru volvos.ru www.tupper4you.ru tupper4you.ru proterm-shop.ru www.proterm-shop.ru www.kuhnismk.ru kuhnismk.ru www.zwergpinscher.spb.ru zwergpinscher.spb.ru pravilnoyepitaniye.ru www.pravilnoyepitaniye.ru www.bugoutlist.space bugoutlist.space www.xn----ztbbcghbc.xn–p1ai xn—-ztbbcghbc.xn–p1ai asiatrans.ru www.asiatrans.ru panel.skyals.ru www.panel.skyals.ru flyibw.com www.cleaningmaster.uz cleaningmaster.uz yamozgi.ru www.yamozgi.ru 3dtour-murom.online vasilievskiydvor-hotel.ru www.tatpartskzn.ru tatpartskzn.ru www.uralkanatservis.ru uralkanatservis.ru expressdengi24.online www.expressdengi24.online newvrindavan.ru www.newvrindavan.ru kot-sport.ru www.kot-sport.ru www.lenobldrov.ru lenobldrov.ru grechkalife.ru www.grechkalife.ru www.welory.ru welory.ru new.freshonly.ru www.new.freshonly.ru foodcostcom.ru www.foodcostcom.ru www.kdmmurom.ru www.selfid.space www.ipregnancy.ru ipregnancy.ru www.calculator.lk-rultek.ru calculator.lk-rultek.ru rocknauto.ru www.rocknauto.ru boxschool.ru ellamartino.com www.ellamartino.com www.rockclient.space www.xn---74-5cdaba1ad1gzc8bf2i.xn–p1ai xn—74-5cdaba1ad1gzc8bf2i.xn–p1ai arigato.mith.ru www.arigato.mith.ru www.museum.mith.ru museum.mith.ru www.mith.ru mith.ru www.designphoto.shop designphoto.shop www.orehinuts.ru orehinuts.ru www.tennisnet.ru www.bel-etual.com www.mebelfornail.ru mebelfornail.ru www.cntrl.space xn–e1aqdig.space chemtrading-rf.online pro-tk.online r-s-spec.online dhfhbxcvc.com www.pragmatic-agency.ru pragmatic-agency.ru www.peykefir.ru peykefir.ru www.lemsugar.com lemsugar.com xn–51-6kcdv1caz.xn–p1ai www.xn--51-6kcdv1caz.xn–p1ai www.ellamartino.ru ellamartino.ru ano-system.ru www.ano-system.ru cntrl.space yevgenyshashkov.com www.yevgenyshashkov.com www.catorus.ru catorus.ru xn–80aaahnoirtfn4b1me.xn–p1ai www.xn--80aaahnoirtfn4b1me.xn–p1ai www.bogan.ru outstaff.moscow www.outstaff.moscow www.okovsison.ru okovsison.ru www.english-rules.ru english-rules.ru www.xn--g1ajbhkpdf.xn–p1ai eva-cos.ru www.eva-cos.ru www.super-bonus.ga super-bonus.ga tru-virtu.online dianaslife.online client-catcher.online andri-vk.online simanova-tilda.online schooldom-sherbina.online marina-emirates.online 125english.online vkusnoitochka-meny.ru www.vkusnoitochka-meny.ru selfid.space do-2.online skdodo.online selfid.online skdodo.com www.yrist.online yrist.online ufa3000.ru www.ufa3000.ru www.xn---86-qddbsapokcix6ab3c.xn–p1ai xn—86-qddbsapokcix6ab3c.xn–p1ai www.gamebux.ru gamebux.ru client-catcher.ru www.client-catcher.ru pietra-papillon.ru www.pietra-papillon.ru xn—-jtbn1axe.xn–p1ai www.xn----jtbn1axe.xn–p1ai fclnr.ru www.fclnr.ru kdmmurom.ru guru-nft.io www.xn--80aenbgjkkehc7bbi3l.xn–p1ai saynihao.ru www.saynihao.ru www.sanivort.ru sanivort.ru www.wc-nasos.ru wc-nasos.ru www.you-parts.ru you-parts.ru techinds.online ipprt.online rspinsk.online fortnitecase.online www.we-womens.com nunchi-drink.shop nunchidrink.shop nunchi-drink.online nunchi-drink.com shopping-trip.ru www.shopping-trip.ru meta-zone-1.ru www.techinds.ru techinds.ru www.checkselection.ru checkselection.ru kyocera.tech koven.store koven.space bogachi.shop koven.shop croto.online shablonisaitov.online horseslud.online skwlab.online revo-drive.online koven.online koven.life xn–80axs.com www.avto77shop.ru avto77shop.ru seospace.online meta-zone-1.online leff-line.online mama-aromata.online metazone1.com prosite46-demo.online oymykonsport.online filarmonia39.ru www.kosaru.ru kosaru.ru autozakaz-dv.ru www.autozakaz-dv.ru mountains-project.ru www.mountains-project.ru www.kremlin.holding.bz kremlin.holding.bz elenn.ru www.elenn.ru mojnoli.ru www.mojnoli.ru www.project.ams-pro.ru project.ams-pro.ru www.catalog.ams-pro.ru catalog.ams-pro.ru www.res-mar.pro res-mar.pro statesborowebdesigns.com www.statesborowebdesigns.com kallasovas.online od02.online www.bldcs.ru bldcs.ru www.womans-planet.ru womans-planet.ru orion77777.com econometrics.store asiarussia.site econometrics.shop xn–80anesb3i.online artproconcept.online alenasorokina.online dariaprolove.online hack-travel-smartdev.online loscoclean.online econometrics.academy we-womens.com tandbride.com csgomarketauth.com api.calculator.rultek.ru

Malware Detected on Host

Count: 8 34d2728f512eeb4f79f4fae915c9feb18db2717214957d03a5d7058986508e6f a4b08ccac13ad8d2432b31a23cb02463109137dcb493bfc985efe1bca2edec7d c0a37c9b8f52dc23a74f0477baac01fd164220bcbf5f2e8fcecbdee98d532958 e71d56dfcafdacaa0ec40a02047887db5287c3d8aa3318fe9e24805e322967b3 b60004cf3b319182c85d8feeae4d3fc9d9f7cec8dd7740b1f7731f1d21cb11a8 34d32726e259b6de158cd66a0d2dd7e10ea55497a06aa60c9ceff78667da40c0 dacadcb203ee07b3d94403264be3414fe6106d1ef28269668a6c2aa463aa5f6f 7873dddec4a46e7ad104de9b6bd68f590575b7680a1d20b9fe1329d1ad95348f

Open Ports Detected

111 143 21 22 25 3306 443 53 587 80 993 995

Map

Whois Information

inetnum: 37.140.192.0 - 37.140.195.255
netname: REGRU-NETWORK
descr: Reg.Ru Hosting
country: RU
admin-c: ARP-RIPE
tech-c: RGRU-RIPE
status: ASSIGNED PA
mnt-by: REGRU-MNT
mnt-domains: REGRU-MNT
mnt-routes: SKYMEDIA-MNT
mnt-routes: REGRU-MNT
created: 2012-04-27T12:50:37Z
last-modified: 2022-03-21T10:43:44Z
role: Reg.Ru Network Operations
address: Russia, Moscow, Vassily Petushkova st., house 3, Office 326
phone: +7 (495) 580-11-11
fax-no: +7 (495) 491-55-53
admin-c: ARP-RIPE
admin-c: MS55099-RIPE
tech-c: ARP-RIPE
tech-c: MS55099-RIPE
nic-hdl: RGRU-RIPE
mnt-by: REGRU-MNT
abuse-mailbox: abuse@reg.ru
created: 2011-03-30T12:49:27Z
last-modified: 2022-11-29T14:58:55Z
person: Pavel Arbuzov
address: house 3, Vassily Petushkov str., Moscow, Russia, 125476
phone: +74955140573
nic-hdl: ARP-RIPE
mnt-by: REGRU-MNT
created: 2011-02-24T13:00:30Z
last-modified: 2011-02-24T13:00:30Z
route: 37.140.192.0/24
descr: Reg.Ru
origin: AS197695
mnt-by: REGRU-MNT
created: 2013-12-31T08:59:59Z
last-modified: 2014-02-23T09:57:54Z

Links to attack logs

anonymous-proxy-ip-list-2024-02-01

Share on: