192.64.80.135 Threat Intelligence and Host Information

Share on:
Apr 20, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 50/100

Host and Network Information

  • Mitre ATT&CK IDs: T1110 - Brute Force
  • Tags: Bruteforce, Nextray, SSH, cowrie, cyber security, fail2ban, ioc, malicious, phishing, ssh
  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: haley_ssh

  • Country: United States of America
  • Network: AS19318 interserver inc
  • Noticed: 25 times
  • Protcols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: mybookwriter.com sivasmranlkorukygencolarresmis.epagetr.com guitarherocafebursagrkle.epagetr.com lonexc.co.uk www.lonexc.co.uk primeworldinc.com vegiedog.com guests-inc.hotelsearchusa.com hotel-blanchard.hotelsearchusa.com historic-suites.hotelsearchusa.com wijkverenigingdezeveneiken.dutchnic.com clark-welling-s.hotelsearchusa.com econo-lodge-pendleton.hotelsearchusa.com bel-air-inn.hotelsearchusa.com sun-god-motel.hotelsearchusa.com feirodecaladossojoobatistaimbi.epagebr.com www.templatebag.com templatebag.com www.tripprefer.com tripprefer.com www.plumbingoffice.com plumbingoffice.com holidayinbox.com www.holidayinbox.com www.flipunlimited.com flipunlimited.com www.detailreview.com detailreview.com certificationtoday.com www.certificationtoday.com www.buzzflux.com litigatorcapital.com www.litigatorcapital.com www.megamodeling.com helpingtool.com www.helpingtool.com www.spadegear.com spadegear.com www.aboutish.com aboutish.com www.dodgegear.com dodgegear.com brandup.com.pk www.hiseattle.com hiseattle.com sportylad.com www.sportylad.com www.archdrawing.com archdrawing.com buzzflux.com sparkcommunication.com.pk www.makemortgage.com makemortgage.com megamodeling.com makin-refrigeration-air-conditioning.aussienic.net onlineforextradingg.com www.firewallsales.com firewallsales.com www.softvitamins.com softvitamins.com www.petsquick.com petsquick.com bishop-pine-lodge.hotelsearchusa.com holiday-inn-reidsville.hotelsearchusa.com auto-parts-of-ft-scott-inc.usautos.repair champlain-inn-motel.hotelsearchusa.com days-inn-morganton.hotelsearchusa.com hollywoodnewslatest.com comfort-inn-ironwood.hotelsearchusa.com courtesy-inn-akron.hotelsearchusa.com mcconnell-inn.hotelsearchusa.com four-seasons-inn.hotelsearchusa.com kokomos.hotelsearchusa.com apple-avenue-motel.hotelsearchusa.com jameson-inn-cheraw.hotelsearchusa.com ameritania-hotel.hotelsearchusa.com cheri-lyn-motel.hotelsearchusa.com 3-star-motel.hotelsearchusa.com eden-pines-inn.hotelsearchusa.com mallory-hotel.hotelsearchusa.com bradford-motel.hotelsearchusa.com ozark-mountain-inn.hotelsearchusa.com can-am-motel.hotelsearchusa.com milford-motel.hotelsearchusa.com centralnewsbunbury.aussienic.net carriage-stop-motel.hotelsearchusa.com rwnoosaholidays.aussienic.net katzson-brothers-inc.hotelsearchusa.com wavemastersurfski.aussienic.net www.momsadvisor.com saint-louis-hotel.hotelsearchusa.com margaret-holland-inn.hotelsearchusa.com casa-loma-motel.hotelsearchusa.com www.webhoststate.com whm.webhoststate.com hampton-inn-rolla.hotelsearchusa.com abbey-inn-belmont.hotelsearchusa.com days-inn-cheraw.hotelsearchusa.com heritage-mountain-rentals.hotelsearchusa.com alpine-motel-muskegon.hotelsearchusa.com aragon-arms-hotel.hotelsearchusa.com hyannis-hotel.hotelsearchusa.com sheraton-college-park.hotelsearchusa.com country-hills-resort.hotelsearchusa.com bunnings-ashmore.aussienic.net 188020187896840.uspages.net mosaicdistrict.uspages.net shaziafoods.com www.shaziafoods.com momsadvisor.com erin-motel-restaurant.hotelsearchusa.com info.dailypakistaninews.com www.info.dailypakistaninews.com myseoblogs.com createxmlsitemap.com american-hearth-inn.hotelsearchusa.com frontier-motel-winnemucca.hotelsearchusa.com dollar-inn-tappahannock.hotelsearchusa.com arthur-murrays-motel.hotelsearchusa.com fasteerie.com-detail.com abbotsz.com-detail.com svlaar.dutchnic.com regency-encino.uspages.net graphisoftarchicad.technewton.com www.graphisoftarchicad.technewton.com www.archicadofficial.technewton.com archicadofficial.technewton.com college-inn-henderson.hotelsearchusa.com chakwalexpress.com www.technewton.com www.targetrecoverytransport.co.uk cameradepartment.tv yellca.com basketcasepicnics.com bunkhouse-inn.hotelsearchusa.com taxlawdictionary.com technewton.com nrar.us kindofpets.com deusexgaming.com targetrecoverytransport.co.uk newyorkstockphoto.com epagebr.com thebasketballshoes.com epagetr.com childandme.com uspages.net guardthedoor.com rx1.us webhoststate.com bestdolltoys.com bestprincesstoys.com bouseaz.com drapesofscarborough.com sonohockey.com quotespie.com toystype.com www.rizbizpro.com rizbizpro.com www.thronesblog.com thronesblog.com eatspei.com www.eatspei.com baileys-high-performance.usautos.repair www.data.homesmortgageloan.com data.homesmortgageloan.com www.homesmortgageloan.com sand-palace-motel.hotelsearchusa.com bluedodge.com www.buyiwatch.com buyiwatch.com heb-live-oak-lodge-rockport-fulton.texas-onlink.com jicboatrentals.com maldivesuprising.com opengatesfarm.com alamosightseeingtours.com touchdownsouth.com brasildepelotas.epagebr.com mealpointuk.com elkton-hotel.hotelsearchusa.com qadir.pk www.sparkactivations.com sparkactivations.com www.uktopuniversities.com uktopuniversities.com peacecargo.com www.peacecargo.com www.peacepk.peace.pk peace.pk www.mughalmachinery.com mughalmachinery.com mastour.com callcenter.mastour.com www.sallat-baraka.mastour.com www.callcenter.mastour.com sallat-baraka.mastour.com www.mastour.com homesmortgageloan.com villainsclothingwa.aussienic.net www.newstvchannel.com alawyerin.us www.topbumper.com topbumper.com www.com-detail.com com-detail.com www.hotelsearchusa.com hotelsearchusa.com texas-onlink.com www.texas-onlink.com usautos.repair www.yellpk.com yellpk.com dutchnic.com cargo.pk www.dutchnic.com enorwegian.net www.enorwegian.net mealpointca.com directorylista.com www.namewebhost.com namewebhost.com nailartoutlet.com www.nailartoutlet.com www.itelsol.com itelsol.com www.kaleemhajj.com kaleemhajj.com khaasbaat.org www.ecs.ilearnpakistan.org ecs.ilearnpakistan.org ilearnpakistan.org www.ilearnpakistan.org ib313.co.uk flashmans.com.pk peace.edu.pk dhudialpoint.com bnstrusts.org badarali.com www.badarali.com easyautogates.com www.easyautogates.com www.alqaim.com alqaim.com gallery.easyautogates.com www.gallery.easyautogates.com cpcalendars.gethousedecor.com cpcontacts.gethousedecor.com gethousedecor.com cpcontacts.dailypakistaninews.com dailypakistaninews.com cpcalendars.dailypakistaninews.com mpc-mags-and-tyres.aussienic.net ns2.webhoststate.com ns1.webhoststate.com stayin.us aussienic.net cpcalendars.peacedigital.tv cpcontacts.peacedigital.tv peacedigital.tv newstvchannel.com www.server.webhoststate.com server.webhoststate.com

Malware Detected on Host

Count: 3 94ab671ef9f62c83e413fb71d8aeab2db806becf32ed0f094ee0836629ad940d feb6977d23c7519d98f5420b4d72707ee32a50b5ad5de28c898e1e0c998835c5 1c89ec980613205c9178e7022e836a5450915e8a98e6271f772414b9a77571ed

Open Ports Detected

110 143 2077 2082 2083 2087 2095 2096 21 22 3306 443 465 53 587 80 993

CVEs Detected

CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617

Map

Whois Information

  • NetRange: 192.64.80.0 - 192.64.87.255
  • CIDR: 192.64.80.0/21
  • NetName: INTERSERVER
  • NetHandle: NET-192-64-80-0-1
  • Parent: NET192 (NET-192-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS19318
  • Organization: Interserver, Inc (INTER-83)
  • RegDate: 2012-12-14
  • Updated: 2012-12-14
  • Comment: Please use [email protected] for all abuse reports.
  • Ref: https://rdap.arin.net/registry/ip/192.64.80.0
  • OrgName: Interserver, Inc
  • OrgId: INTER-83
  • Address: 110 Meadowlands Pkwy
  • Address: 1st Floor
  • City: Secaucus
  • StateProv: NJ
  • PostalCode: 07094
  • Country: US
  • RegDate: 2003-03-17
  • Updated: 2018-05-18
  • Comment: Please use https://www.interserver.net/contact-information.html for all abuse complaints.
  • Comment:
  • Comment: DMCA registered agent [email protected]
  • Comment:
  • Ref: https://rdap.arin.net/registry/entity/INTER-83
  • OrgTechHandle: NOC1390-ARIN
  • OrgTechName: Network Operations Center
  • OrgTechPhone: +1-201-605-1440
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/NOC1390-ARIN
  • OrgNOCHandle: NOC1390-ARIN
  • OrgNOCName: Network Operations Center
  • OrgNOCPhone: +1-201-605-1440
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/NOC1390-ARIN
  • OrgAbuseHandle: NOC1390-ARIN
  • OrgAbuseName: Network Operations Center
  • OrgAbusePhone: +1-201-605-1440
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/NOC1390-ARIN

Links to attack logs

bruteforce-ip-list-2020-06-28