64.222.163.248 Threat Intelligence and Host Information

Share on:

Jul 06, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 64.222.163.248 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 40/100

Host and Network Information

Tags: Malicious IP, Nextray, blacklist, botnet, bruteforce, cyber security, digital ocean, ioc, malicious, mirai, mssql, nmap, phishing, port-scan, scan, smb, tcp, vultr
View other sources: Spamhaus VirusTotal
Contained within other IP sets: turris_greylist
Country: United States
Network: AS13977 fairpoint communications inc.
Noticed: 1 times
Protcols Attacked: mssql
Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Singapore, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
Passive DNS Results: www.patchbays.com siteaxxess.com pcistudios.com timebetterspent.net tlacsharp.net pcmediadesigns.net stubbspainting.net laurelandgrove.com kamelwax.com rccustoms.net healthierlives.net chadscycleworks.com lcmhc.net gizmidi.org topnotchtire.com omearanewborn.com realestatenh.org ballarotile.com monadnockregionchimneysweep.com emergingconcepts.info modularhomesnh.com organicplantcare.com tommilabrothers.com preferredcomputersolutions.com latherswebdesign.com nhroofingsystems.com jclsepticservices.com nhvtwelldrilling.com gizmidi.com reliablerubbishremoval.com kathybeaman.net arrowpaintingllc.com fergusonroofingllc.com pcmediadesigns.com boleo.com fixmybody.net thebeamangroup.com fergusonroof.com ronmichaudphd.com topnotchtireandautorepair.com linuxbug.biz stubbspainting.com silverranch.us nelligancarpentry.com tlaorg.org tlacom.com gustavegroup.com boltonequipmentsales.com housesforsalenh.net monumentalconsulting.com jgwebsites.com loveturtles.com stephenpetersendesign.com eastern-video.com webdesign-webhosting-websites.com tlanet.net jaffreyairport.com midiup.org fraziersgarage.com franksseptic.com paulagfineart.com silverranchairpark.com ganioland.com knscomputers.com charlesworks.pl grapellispizza.com sitesuccordesign.com siteaxxess.info yourwebspace.info cybersanta.net rydernet.net monadnockwheelz.com landsurveyingboundarystaking.com shynecounselingservices.com mountainsidewebdesign.com deckworksnj.com hurricanerobin.com thulander.com cw-seo.com dobisky.com robinwesley.com mooocow.biz smartbroadcastingco.com videoproductiondvdtransfers.com walkerpewter.com footprintsproductionsinc.com name-services.biz robinworks.com hampshirecountychimneysweep.com greenhorizonlandscapingllc.com midiup.com ggcdesign.com siteaccess.info reachpublicity.com patchbays.com www.fergusonroofs.com cybersanta.ws restorehealthresource.com yellowpad.info www.jailstuff.com jailstuff.com access80.com access-80.com charlesworks.eu berniebeckman.com charlesworks.net whitepad.com avpnh.org thetransformer.us PERMANENTMERCHANDISINGUNITS.COM STATELINETRUCKSERVICE.COM PERMANENTDISPLAYS.BIZ charlesworks.ro GIZMIDI.NET MYHOMEREPAIRS.INFO CELTICSTRIPING.COM GETBULLDOG.COM petersandback.com www.ncsbs.org ncsbs.org

Open Ports Detected

443 80

CVEs Detected

CVE-2008-1446 CVE-2009-1535 CVE-2009-2521 CVE-2009-4444 CVE-2009-4445 CVE-2015-0204

Map

Whois Information

NetRange: 64.222.128.0 - 64.222.191.255
CIDR: 64.222.128.0/18
NetName: VZGNI-PUB-5
NetHandle: NET-64-222-128-0-1
Parent: NET64 (NET-64-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Consolidated Communications, Inc. (CC-4441)
RegDate: 2000-03-01
Updated: 2022-08-31
Ref: https://rdap.arin.net/registry/ip/64.222.128.0
OrgName: Consolidated Communications, Inc.
OrgId: CC-4441
Address: PO Box 589
City: Matton
StateProv: IL
PostalCode: 61938
Country: US
RegDate: 2022-07-05
Updated: 2023-03-17
Ref: https://rdap.arin.net/registry/entity/CC-4441
OrgTechHandle: JPR89-ARIN
OrgTechName: Prendergast, John
OrgTechPhone: +1-518-392-1211
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/JPR89-ARIN
OrgTechHandle: COOKM69-ARIN
OrgTechName: Cook, Martin
OrgTechPhone: +1-603-722-9888
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/COOKM69-ARIN
OrgTechHandle: PETER825-ARIN
OrgTechName: Peterson, Corey
OrgTechPhone: +1-603-528-7315
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/PETER825-ARIN
OrgAbuseHandle: CAA22-ARIN
OrgAbuseName: CCI ARIN Abuse
OrgAbusePhone: +1-800-553-7611
OrgAbuseEmail: [email protected]
OrgAbuseRef: https://rdap.arin.net/registry/entity/CAA22-ARIN
OrgTechHandle: MCKEN241-ARIN
OrgTechName: McKenney, Christopher
OrgTechPhone: +1-603-229-1493
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/MCKEN241-ARIN
OrgTechHandle: WEINR17-ARIN
OrgTechName: Weinrub, Jeremy
OrgTechPhone: +1-916-772-5000
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/WEINR17-ARIN
OrgTechHandle: BOUIN-ARIN
OrgTechName: Bouington, Michael
OrgTechPhone: +1-850-229-7293
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/BOUIN-ARIN
OrgTechHandle: JENKI512-ARIN
OrgTechName: Jenkins, Johnathan
OrgTechPhone: +1-603-707-8630
OrgTechEmail: [email protected]
OrgTechRef: https://rdap.arin.net/registry/entity/JENKI512-ARIN

Links to attack logs