80.85.156.55 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 80.85.156.55 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 30/100

Host and Network Information

• View other sources: Spamhaus VirusTotal
• Contained within other IP sets: blocklist_net_ua, hphosts_fsa, hphosts_pha

• Country: Russia
• Network: AS44493 chelyabinsk-signal llc
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: braycotablewater.com baldwinjameslawyers.com alteco.su social.dfgroup.tech www.richardcolellp.com www.acr-capitals.com acr-capitals.com sbiotb.com ps.lmhack.in meeweel.pserver.ru www.meeweel.pserver.ru xn–80aijjkgebfljd.online myregistrobr.com gos-oplata.xyz porn-video.site kiber-ukraine.site mirapb.ru www.mirapb.ru www.paste.business paste.business zehtrmpharm.com www.zehtrmpharm.com foreignexchangeflow.com app.stockmax.us javjapan.tk www.bom.beauty bom.beauty it-progression.com www.it-progression.com fxfl.braycotablewater.org newhorizonbinc.com richardcolellp.com acr-cap.com www.acr-cap.com abrafinance.net parts.braycotablewater.org labs.braycotablewater.org braycotablewater.org bluebed.ru www.nationsfinance.sbs nationsfinance.sbs www.javlibrary.tk javlibrary.tk www.successserviceex.online successserviceex.online ericit.org www.ericit.org linknhanh.tk www.linknhanh.tk www.iceess-sdg.org iceess-sdg.org www.successservices.online successservices.online www.iceess-sdgs.org iceess-sdgs.org macros-caliber.ru www.macros-caliber.ru www.leadadmin.ru leadadmin.ru monitorarbitcoin.com www.monitorarbitcoin.com www.defense-onlineportal.us master-kit.ml www.master-kit.ml ceecee.ng www.swissfinbank.com swissfinbank.com www.alferahaji.ru alferahaji.ru www.haroldvintua.ru haroldvintua.ru www.sector911vt.ru sector911vt.ru www.statemorgan.com statemorgan.com microsoftoffice.agr.br sofiplc.com stockmax.us grandspirebank.us atelisco.com www.i-g-t.org i-g-t.org pinkdogplace.ga 720kfreetruckllc.com www.loveiq.online xn—-8sbavghk2ewa7b.xn–p1ai www.xn----8sbavghk2ewa7b.xn–p1ai xn—-8sbgj3awrl.xn–p1ai www.xn----8sbgj3awrl.xn–p1ai chopfood.ng premiumimperial.com sp-interlink.com www.sp-interlink.com www.veriops.xyz vashusto.pserver.ru www.vashusto.pserver.ru www.winxbet.ru winxbet.ru veriops.xyz www.nationspf.online nationspf.online m.balagol.vip www.m.balagol.vip balagol.vip www.balagol.vip chrishouse.ga www.ukrplc.com ukrplc.com aostbank.com www.aostbank.com nftvalidationpro.ml www.dekrdk.website dekrdk.website www.paieafricaine.online paieafricaine.online aidforchild.co www.aidforchild.co m.formool90.com www.m.formool90.com www.formool90.com xn—-7sbbadmffdxjyrpfhjbtumq3a.xn–p1ai www.xn----7sbbadmffdxjyrpfhjbtumq3a.xn–p1ai rabbittopliz.ga defense-onlineportal.us www.ffcubh.online ffcubh.online www.xn--80aerbkoiaqlhe7g.xn–p1ai xn–80aerbkoiaqlhe7g.xn–p1ai sbmugroup.click santanber.online www.santanber.online btc4all.club www.btc4all.club redrampgig.ga cupi-kopii.ru www.cupi-kopii.ru pandatopmove.ga fritschradman.us angelili.site pinkmessage.ga www.on1ine.ru on1ine.ru pinktopbomb.ga morepups.ml deepsexys.pw hegartyassociates.com www.bucharestcitymarathon.com bucharestcitymarathon.com muhomor-club.ru www.muhomor-club.ru freefordoll.ga newjoy.fun www.newjoy.fun trancoltd.com www.trancoltd.com loveiq.online sbmugroup.com www.sbmugroup.com appletopdolls.ru www.garantibbva.co.in garantibbva.co.in smartpinkpage.ga vk-lock.ru www.vk-lock.ru mix-90.site www.mix-90.site smm4speed.xyz www.smm4speed.xyz 4dvr.store sweetset.online percynft.xyz magbraslet.ru www.magbraslet.ru blakbet.com www.m.blakbet.com m.blakbet.com wilderfiredistrict.org www.wilderfiredistrict.org www.seker.sbs seker.sbs www.eveleensuperbe.fr eveleensuperbe.fr www.skachat-google-chrome.ru skachat-google-chrome.ru www.crazybestshop.ru crazybestshop.ru ilenergyraters.org www.ilenergyraters.org kanban.pserver.ru www.kanban.pserver.ru dappsnftvalidationpro.tk www.black-label.tk www.anti-rost.tk anti-rost.tk totalstar.co.uk www.totalstar.co.uk www.en-royaltrustoffshore.co en-royaltrustoffshore.co www.m.barcabet.site m.barcabet.site dappsvalidationpro.ml fazenda-38.ru www.fazenda-38.ru www.distance-teacher.ru distance-teacher.ru zlitecargoanddelivery.com www.facebook-posts.net facebook-posts.net abumathaminvest.online www.abumathaminvest.online us-milcorp.org www.us-milcorp.org fastlinkcourieranddelivery.com barcabet.site formool90.com www.eauserverpro.pserver.ru eauserverpro.pserver.ru villadanieli.fr www.villadanieli.fr www.asddasasd.pserver.ru asddasasd.pserver.ru www.psn-parts.ru psn-parts.ru www.ic1.fr ic1.fr alikarooms.tk www.msk-bur.ru msk-bur.ru sequolacap.com www.sequolacap.com woodtake.ru www.woodtake.ru pairxchangetrade.com www.lk-customers.pserver.ru lk-customers.pserver.ru www.orbitoffer.com orbitoffer.com dnp1.ru senderisme.info www.senderisme.info tihaya.org www.tihaya.org joyinfo.club www.joyinfo.club totgr.senderisme.info www.totgr.senderisme.info www.zssto.org zssto.org tcecbeta.club www.tcecbeta.club dekrdk.site www.dekrdk.site www.les-avto.tk les-avto.tk www.psd2--lntesasanpaolo.duckdns.org psd2–lntesasanpaolo.duckdns.org www.normativapsd2-intesasp.duckdns.org normativapsd2-intesasp.duckdns.org www.malshakov.ru ilabs.space www.ilabs.space www.dk.dfgroup.website dk.dfgroup.website shsure.online amsongon.online lntesasanpaolo-attivaora.duckdns.org www.lntesasanpaolo-attivaora.duckdns.org www.amzn--verify.duckdns.org amzn–verify.duckdns.org www.msgroute.com msgroute.com ali-express.fun takajarabota.ru www.takajarabota.ru black-label.tk golipay.com www.golipay.com otmena-sp.tk www.otmena-sp.tk zurichinternationalsplc.com dpscounsel.com sekercapital.com www.sekercapital.com www.gkh-war.tk gkh-war.tk ministerosalute.duckdns.org www.ministerosalute.duckdns.org cardocrew.site vk-connection.ru www.vk-connection.ru instags.xyz www.instags.xyz www.philliprichardsonllp.com philliprichardsonllp.com www.airaware-logistics.com airaware-logistics.com www.iyiz.xyz iyiz.xyz vk-infinity.ru www.vk-infinity.ru www.pheonixinvests.com pheonixinvests.com vk-starts.ru www.vk-starts.ru www.vkmylink.ru vkmylink.ru oath6.ru yatzstat.ru vkmyhost.ru www.vkmyhost.ru blog.ziezi.xyz www.blog.ziezi.xyz vk-myprofile.ru www.vk-myprofile.ru www.vk-timelapse.ru vk-timelapse.ru www.ziezi.xyz ziezi.xyz vk-gasoline.ru www.vk-gasoline.ru kokotka.ru www.kokotka.ru dapi.pserver.ru www.dapi.pserver.ru www.account-bitvavo.org account-bitvavo.org bitvavo-account.org www.bitvavo-account.org bitvavo-verify.com www.sted88.com sted88.com odit.xyz www.odit.xyz www.vezdehod138.ru vezdehod138.ru www.testlk.pserver.ru testlk.pserver.ru www.lk-company.pserver.ru lk-company.pserver.ru wallet-bitvavo.com ecomcoin.shop www.lift-63.ru lift-63.ru www.wallet-bitvavo.com ekaterina38school.ru www.ekaterina38school.ru jungetalente.ch www.jungetalente.ch dfgroup.tech www.dfgroup.tech dfgroup.website www.dfgroup.website www.commerce-coinbase.online commerce-coinbase.online www.bur-msk.ru bur-msk.ru www.sonda.top sonda.top www.gigov.pserver.ru gigov.pserver.ru lk.f-autoservice.ru lk.f-opel.ru www.24medium.news 24medium.news www.elonmusk.financial elonmusk.financial www.accapitalau.com accapitalau.com gazprom.biz www.gazprom.biz www.bjt-slv.ru bjt-slv.ru www.kantora.top kantora.top www.partner.macros-caliber.tk www.q0susluql.ru q0susluql.ru www.treeservicecincinnatiexperts.com treeservicecincinnatiexperts.com softom.su www.softom.su katyaketo.com www.katyaketo.com www.muslimritual.ru muslimritual.ru www.ritualser-vis.ru ritualser-vis.ru thaiediots.pserver.ru www.thaiediots.pserver.ru www.chistolaser.ru chistolaser.ru psn-tehnika.ru www.psn-tehnika.ru www.anilist.pserver.ru anilist.pserver.ru ecapitalmanagers.co www.ecapitalmanagers.co dl2asdas.pserver.ru www.dl2asdas.pserver.ru pay-verification-transaction-id-8ny234733736594645.pserver.ru www.pay-verification-transaction-id-8ny234733736594645.pserver.ru www.zpprb.org zpprb.org accapital-au.com media-medexpert.com.ua www.media-medexpert.com.ua www.spartan-test-apks.pserver.ru spartan-test-apks.pserver.ru worki-russia.ru www.worki-russia.ru www.gold-mramor.ru gold-mramor.ru person.vp57.pserver.ru www.person.vp57.pserver.ru monitorarbitcoin.org aurus.modnieprofili.ru ventkanalpro.ru www.ventkanalpro.ru www.modnieprofili.ru modnieprofili.ru files.lmhack.in www.lmhack.in models.lmhack.in catalog.lmhack.in keys.lmhack.in astero-capital.com hsbc.onlinegroup-ca.com www.hsbc.onlinegroup-ca.com gamsell.com www.gamsell.com profitways.ru www.profitways.ru www.noblesense.pserver.ru meditation.pserver.ru www.profseo.net profseo.net imanon666.pserver.ru nikitarovonovich.pserver.ru olmezov.info coffeecon.ru www.vk-titles.ru vk-titles.ru ad-pit-stop.online www.a.srkv.pserver.ru a.srkv.pserver.ru vk-statistic.ru www.vk-statistic.ru ourclass.ca www.ourclass.ca www.gamsell.ru gamsell.ru mypeopleandweaponscomua.top noblesense.pserver.ru mexicompra.com astero.capital www.astero.capital coordinacionfederal1.tk www.vk-rixos.ru vk-rixos.ru account-adw.ru www.account-adw.ru www.devmex.xyz thin-lady-goya.xyz www.thin-lady-goya.xyz devmex.xyz opinionde.xyz wepartnerwithyou.org best-loto.one xn—-7sbbalcicopb0e1adekr8e2i.xn–80adxhks www.xn----7sbbalcicopb0e1adekr8e2i.xn–80adxhks www.gruznsk.com gruznsk.com jeisonilustrado.xyz www.vk-further.ru vk-further.ru www.vk-tuesday.ru vk-tuesday.ru www.testlk1.pserver.ru testlk1.pserver.ru www.rawn.in rawn.in www.naolav.ru naolav.ru www.intrdez.com intrdez.com glebka.savin.1998.pserver.ru hongkongtradebank.com servbt.com www.servbt.com www.galantusperm.ru galantusperm.ru qivi-vhod.ru www.qivi-vhod.ru www.t-rd.ru t-rd.ru electroserp.ru vk-monday.ru vk-mounts.ru kovkspb.com www.kovkspb.com

Malware Detected on Host

Count: 15 6efdaf5345119a234bc682981b41037250cc0b17783c0ace7d594deb52ac1e33 c6fd81923f4ce4d21ea02d2dfbf6b2e90208d0a556a14836a43b2bc4bb6a23fb d123eae0d047292787c98bfd05c58da586923a664c09d8165763ed8ce44c7f92 2f88ba873d8a06bacb01571aaed0ee0b6346e512b75425c9b7574e2e7aaba4fd cc8c2699f41c6ab59cdec178c8ee2f882e55223a431c387d5114b736bcb7ffea 1cb23b7a79a675c6fe6da2c82fb80de2614c59be353eedb58a7be0ebee8f5f22 4664561786f7f4045ec107529c6455c166facb67d3f8986b6c9009499760c33b 72dbbbccfb93daa8865e62d1141cc3c5d6785ed8706135b270f36472aeb4c3af 8fb86835d2f89c6981d6848a67a288776e129f856b3d011f94f8c1c3cd9626bc 219b46199df89f2f5912d6214b195e477af94d663a214a5c46ab929308d18210

Open Ports Detected

110 21 22 25 443 465 587 80 993 995

CVEs Detected

CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-3618 CVE-2021-36368 CVE-2021-41617 CVE-2022-37451 CVE-2022-37452 CVE-2023-38408

Map

Whois Information

• inetnum: 80.85.156.0 - 80.85.159.255
• netname: CHELYABINSK-SIGNAL
• country: RU
• admin-c: MN11627-RIPE
• tech-c: MN11627-RIPE
• status: ASSIGNED PA
• mnt-by: ru-pdkllc-1-mnt
• created: 2016-10-12T10:26:13Z
• last-modified: 2023-06-08T11:21:31Z
• person: Michael Nechaev
• address: Lenina Prospekt 49-16
• address: 454091
• address: Chelyabinsk
• address: RUSSIAN FEDERATION
• phone: +7 351 2671366
• nic-hdl: MN11627-RIPE
• mnt-by: ru-pdkllc-1-mnt
• created: 2017-05-12T09:34:28Z
• last-modified: 2017-05-12T09:34:28Z
• route: 80.85.156.0/24
• origin: AS44493
• mnt-by: ru-pdkllc-1-mnt
• created: 2016-05-10T04:26:03Z
• last-modified: 2023-06-08T11:22:55Z