162.214.156.4 Threat Intelligence and Host Information

Aug 25, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 162.214.156.4 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

Malware Detected on Host

Count: 15 62d90beacc06605c2eb80a420dc460d2b579e477569c93eef82a162218f41c6c cf3a4fa1bcd8f8d67d6ec5a93a5c847f6f737714c384361b4772c5b2c18809f2 a046bf8eb8281c1c3b4825f6db7c765b00b96e2263943047feb8cdde6428c31d 7cc92d3cae741767aeaf02b127eb2b1773245c613b397a3d70a37f49890fa622 3ec0515ca8b85fc062f84849575d9b6e445649eb19dc1474b1af5d38808aa780 3f6596feeee0bacfe4c11ca511fb79197b091a4e793267c32026a8d13261948c a32ff2e0d6e6ab0555f6dc931689a9c814443492c26094351bd1e7b57963bbed 3cfad6f571c4bc054110d791a863a5e00ef9690f3ce7628bfd05a0b1d4122fac 94c2d23cab010190b53abc9fe47b0c5dcace16d421f1a80297bc2cdd40b60023 01fe14282bd2d7ffc8badfb2cab7de0a23bd5c666da97a47bdec0b5eb9999c7b

Open Ports Detected

110 143 2082 2083 2086 2087 2095 2096 21 26 3306 443 465 53 587 80 995

CVEs Detected

CVE-2020-12783 CVE-2020-28007 CVE-2020-28008 CVE-2020-28009 CVE-2020-28010 CVE-2020-28011 CVE-2020-28012 CVE-2020-28013 CVE-2020-28014 CVE-2020-28015 CVE-2020-28016 CVE-2020-28017 CVE-2020-28018 CVE-2020-28019 CVE-2020-28021 CVE-2020-28022 CVE-2020-28023 CVE-2020-28024 CVE-2020-28025 CVE-2020-28026 CVE-2020-8015 CVE-2021-27216 CVE-2022-37451 CVE-2022-37452

Map

Whois Information

  • NetRange: 162.214.0.0 - 162.215.255.255
  • CIDR: 162.214.0.0/15
  • NetName: UNIFIEDLAYER-NETWORK-15
  • NetHandle: NET-162-214-0-0-1
  • Parent: NET162 (NET-162-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS46606
  • Organization: Unified Layer (BLUEH-2)
  • RegDate: 2013-05-22
  • Updated: 2013-12-19
  • Comment: This space is statically assigned.
  • Comment:
  • Comment: —–BEGIN CERTIFICATE—–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—–END CERTIFICATE—–
  • Ref: https://rdap.arin.net/registry/ip/162.214.0.0
  • OrgName: Unified Layer
  • OrgId: BLUEH-2
  • Address: 1958 South 950 East
  • City: Provo
  • StateProv: UT
  • PostalCode: 84606
  • Country: US
  • RegDate: 2006-08-08
  • Updated: 2020-01-31
  • Ref: https://rdap.arin.net/registry/entity/BLUEH-2
  • OrgTechHandle: ENO74-ARIN
  • OrgTechName: EIG Network Operations
  • OrgTechPhone: +1-781-852-3200
  • OrgTechEmail: eig-net-team@endurance.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/ENO74-ARIN
  • OrgAbuseHandle: NOC2320-ARIN
  • OrgAbuseName: Network Operations Center
  • OrgAbusePhone: +1-801-765-9400
  • OrgAbuseEmail: abuse@bluehost.com
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/NOC2320-ARIN
  • OrgNOCHandle: ENO74-ARIN
  • OrgNOCName: EIG Network Operations
  • OrgNOCPhone: +1-781-852-3200
  • OrgNOCEmail: eig-net-team@endurance.com
  • OrgNOCRef: https://rdap.arin.net/registry/entity/ENO74-ARIN
  • network:Class-Name:network
  • network:ID: NETBLK-UL.162.214.0.0/15
  • network:Auth-Area: 162.214.0.0/15
  • network:Network-Name: UL-162.214.0.0/15
  • network:IP-Network: 162.214.0.0/15
  • network:Organization: Unified Layer
  • network:Tech-Contact: netops@unifiedlayer.com
  • network:Admin-Contact: netops@unifiedlayer.com
  • network:Abuse-Contact: abuse@unifiedlayer.com
  • network:Created: 20121119
  • network:Updated: 20121119
  • network:Updated-By: netops@unifiedlayer.com
Share on: