85.93.46.131 Threat Intelligence and Host Information

Sep 10, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 85.93.46.131 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 40/100

Host and Network Information

  • Tags: bruteforce, cyber security, digital ocean, ioc, malicious, Nextray, phishing, telnet

  • View other sources: Spamhaus VirusTotal

  • Country: Russia
  • Network:
  • Noticed: 31 times
  • Protocols Attacked: telnet
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Singapore, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Malware Detected on Host

Count: 1908 6f9df0f668172a5a35c1bbd09ee293db0609650303af5c92457dd3d78dc39121 9fb9399edbfb48eb0e0e2ca9eacbe579ae5457df320b8461dee5f283f02185f9 d322fd74cc18b8735955f8fa1624635a412c63923a6b8b7aea9237b1d3593afc a5237d311cd41225e8d51f212d799d33d709591bbaa98eb38b7b643a26270f53 cd23485ed889fc9b4fb06be838ee0007323addee0db0c1aae25e86ffefe4f935 15872e5cdb05f163bb4bacb08573af64681ff54864d01d96c00e31fb7aec0ccc 112b26636a6414c7fb6b968434549a2923bfb4dc6c2218029d6c5039fcae707a 0b6e03e466cbe7049a811c45ac89171e7bd79871df6db943e6c9a8b694046c1e 7dffcb4c4a460100d4c49e173fbf70eba4a7306747dc2d6570f4371b978fa87b 6b6ae9cd1c7155655e718d14fba168ef4129f38de01d17116476fdfe53d8dde8

Map

Whois Information

  • inetnum: 85.93.46.0 - 85.93.46.255
  • netname: KIROV-xDSL-STATIC
  • descr: Static xDSL customers
  • country: ru
  • admin-c: MAB88-RIPE
  • tech-c: MAB88-RIPE
  • status: ASSIGNED PA
  • mnt-by: CAIT-MNT
  • created: 2006-02-08T12:07:23Z
  • last-modified: 2011-01-28T07:46:42Z
  • person: Michail Bilkevich
  • address: 20 Moskovskaya st., Kirov, Russia, 610000
  • address: JSC “RosTelecom”, Kirov branch
  • phone: +7-8332-702981
  • nic-hdl: MAB88-RIPE
  • created: 2006-05-22T08:55:17Z
  • last-modified: 2020-08-19T06:47:18Z
  • mnt-by: CAIT-MNT
  • route: 85.93.46.0/24
  • descr: JSC RosTelecom, Kirov branch
  • origin: AS25436
  • mnt-by: CAIT-MNT
  • created: 2012-10-09T09:42:45Z
  • last-modified: 2012-10-09T09:48:04Z

Links to attack logs

****** ****** ****** dosing-telnet-bruteforce-ip-list-2022-09-05

Share on: