37.140.192.158 Threat Intelligence and Host Information

Jul 24, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 37.140.192.158 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing, scam

  • JARM: 29d29d00029d29d00042d42d0000005d86ccb1a0567e012264097a0315d7a7

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: blocklist_net_ua, hphosts_psh

  • Country: Russia
  • Network:
  • Noticed: 31 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Malware Detected on Host

Count: 13 1e2537ca5ab5408fc6871b1b201174d05c2b48487a7625b8e1988973f579141d 77e96c481d38d9f33f351a74af0148a5fd3c284cae06b736d8bdf261fb1909f7 6bdd99b74044f91d068586adf445258811ca5ce4cc5f52eeeb210867e3ff389e 52612233549f163889f9bef8d0b8adbf7fc3001482ade1e5571cb62f246e67b8 c117aa51400815de60ed1a40ced03ee2575c12acc3d4acd32d3fda8741424651 981edd6417b20d54052432ade2f9bdc1a7364034c500a648dbcb5495bbe484f0 c62e9c169c301c4ad1311d30a188b6e15f584a11bf15f2ed6a8b0002f32a3610 5b1541ffbc944d5f829e5c63987040587a4cf3a4899c64fef69bf8eb27ac9676 bcb833331420de3cffcd1fe19953eeb5543ee1e2055c6b38de2a8fed4f69a9c8 61c51f23cee878109b2e786c70a309d129d58edce9d5ed5caa7664b06de37bce

Open Ports Detected

111 143 1500 21 22 25 3306 3310 443 465 53 587 80 993 995

Map

Links to attack logs

****** ****** ******

Share on: