IOC Radar
IPHighVerifiedSignal 37/100

31.130.118.138

Location
Russian FederationRussian Federation
Starominskaya, Krasnodar Krai
ASN
AS205922
LLC "Multiservice"
First Seen
Apr 16, 2026
Last Seen
May 26, 2026
Apr 16
First Seen
72d ago
May 26
Last Seen
32d ago
4
Reports
source reports
37%
Confidence
high
Found in 4 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
37%
Signal Score
37 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryRURussian Federation
RegionStarominskaya, Krasnodar Krai
ASNAS205922
OrganizationLLC "Multiservice"

Feed Intelligence Summary

4 reports37% confidence
4
Source reports
37%
Confidence score
Category tags
active scanbad reputationbotnetbotnet activityeurope/asiahackingindicatormalicious ipmirainetworkresearchedrurussiascanscannersmbtcp

Activity Timeline

1 total obs
May 26May 26

Threat Activity Heatmap

· Peak: 2026-05-26
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreLow Risk
37
SIGNAL
Signal Score
37%
Confidence
4
Reports
First seenApr 16, 2026
Last seenMay 26, 2026
Verified IOC
GeolocationRU
CountryRussian Federation
LocationStarominskaya, Krasnodar Krai
ASNAS205922
OrgLLC "Multiservice"
Coords46.5309, 39.0516

VirusTotal

Not checked

WHOIS

description
Scans hitting the server at TCP port 445 SMB. Same IP should not appear more than once in 96 hours in our lists S3#.
raw
inetnum: 31.130.112.0 - 31.130.119.255 netname: ORG-BL278-RIPE country: RU descr: Bitrek LLC org: ORG-BL278-RIPE sponsoring-org: ORG-MTL46-RIPE admin-c: DK8169-RIPE tech-c: DK8169-RIPE status: ASSIGNED PI mnt-by: BITREK-MNT mnt-by: RIPE-NCC-END-MNT created: 2025-07-07T07:23:06Z last-modified: 2025-07-07T19:10:48Z source: RIPE organisation: ORG-BL278-RIPE org-name: Bitrek LLC country: RU org-type: OTHER address: Krasnodar territory Yeisk Krasnaya str 59/1 admin-c: DK8169-RIPE abuse-c: ACRO5396-RIPE mnt-ref: BITREK-MNT mnt-by: BITREK-MNT created: 2017-03-21T09:57:14Z last-modified: 2022-12-01T17:08:03Z source: RIPE # Filtered person: Dmitiry Krutikhin address: Krasnodar territory Yeisk Krasnaya str 59/1 org: ORG-BL278-RIPE phone: +79284403428 nic-hdl: DK8169-RIPE mnt-by: BITREK-MNT created: 2017-03-21T09:50:49Z last-modified: 2025-07-07T19:25:51Z source: RIPE # Filtered route: 31.130.118.0/23 origin: AS205922 descr: Bitrek LLC mnt-by: BITREK-MNT created: 2025-07-20T19:08:19Z last-modified: 2025-07-20T19:11:48Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 2 months ago · Last seen 1 month ago
Appeared in 4 threat reports