5.53.125.150 Threat Intelligence and Host Information

Dec 29, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 5.53.125.150 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • Country: Russia
  • Network: AS49505 ooo network of data-centers selectel
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Passive DNS Results: www.ikbkr.site ikbkr.site glpi.nupdate.click alexmenshikov.xyz www.alexmenshikov.xyz brokentree.top google-sanek.com google-analuzing.com google-boom.com untouchablename.com dns16-microsoft-healths.com mobilesuit.top rowlingimpala.top slimesugar.com softwareserviceupdater2.com softwareserviceupdater1.com mailking.elyaimanova.ru guzelrah.ru

Malware Detected on Host

Count: 74 a01e93bd89d98f4201f7354d719112b4157d26e6c24d61be5c8163ddd84c3c14 c9c9f390259a0914182585cfaeaf803652b0bb2aa40a1f34d171763131910bdb d2a952e12709a1130dbc69a02cf69757d0e684b7a4fff763a82a9c9d24d3650d 3af7000d3dddf4b0cc515fdfd3bc920c57f195609ffb4a8fb3ec578bb5532c8d ddeb6e84d72754d6bfe0ed0caf01a07b5d13d99eda5539cd1639511041bfbafb 507e45954d2ba7fcbb322ebd61fba51abfabd348d58a3a817e6f24f27deb7260 3bc4d734900bbdc6f093b905a78dea8b444208c9ee3d1685c7c5a232610b6cc8 72f8dea1154701663ef7d0d565627f1596ff0d10484962820483ecc246d481e4 5ffef94b58959163785aeba3ed1692abb5605f580ac392f696b28f3c8289702f b43738b8559c11d51a7c32acb3acdb10391587837f618e07352f579e60c277ac

Open Ports Detected

22

Map

Whois Information

  • inetnum: 5.53.125.0 - 5.53.125.255
  • netname: SELECTEL-NET
  • descr: Selectel Network
  • status: ASSIGNED PA
  • country: RU
  • geofeed: https://geofeed.selectel.ru/subnets.csv
  • admin-c: SA32710-RIPE
  • tech-c: SA32710-RIPE
  • mnt-by: MNT-SELECTEL
  • created: 2019-07-18T16:56:59Z
  • last-modified: 2023-06-01T07:53:39Z
  • role: SELECTEL-NOC
  • address: Russia, Saint-Petersburg, Cvetochnaya st. 21
  • admin-c: CMH-RIPE
  • admin-c: KS9134-RIPE
  • admin-c: TL5407-RIPE
  • admin-c: RVA179-RIPE
  • admin-c: EN5675-RIPE
  • admin-c: NS8369-RIPE
  • admin-c: AD16782-RIPE
  • tech-c: CMH-RIPE
  • tech-c: KS9134-RIPE
  • tech-c: TL5407-RIPE
  • tech-c: RVA179-RIPE
  • tech-c: EN5675-RIPE
  • tech-c: NS8369-RIPE
  • tech-c: AD16782-RIPE
  • nic-hdl: SA32710-RIPE
  • mnt-by: mnt-selectel
  • created: 2015-01-19T15:40:16Z
  • last-modified: 2022-02-01T12:36:04Z
  • route: 5.53.124.0/23
  • descr: Selectel Route Object
  • origin: AS49505
  • mnt-by: MNT-SELECTEL
  • created: 2019-07-18T16:56:59Z
  • last-modified: 2019-07-18T16:56:59Z

Links to attack logs

****** ****** ******

Share on: