The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.
Loki botnet controller located at 172.67.185.9 on port 80 (using HTTP POST):
hXXp://bbelectronics.xyz/five/fre.php
$ dig +short bbelectronics.xyz
172.67.185.9
Referencing malware binaries (MD5 hash):
3bf9a6c3b0bff78f377bc7565b8d8a31 — AV detection: 34 / 64 (53.12)
Other malicious domain names hosted on this IP address:
pxc.confrontingrenovations.pw 172.67.185.9
michaelhartmann.org 172.67.185.9
divine-bar-3d75.visual-candy.workers.dev 172.67.185.9
agathahipnoterapia.com.br 172.67.185.9
www.distribuidoraelcadillal.com 172.67.185.9
bbelectronics.xyz 172.67.185.9