64.225.78.7 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 64.225.78.7 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: Netherlands
• Network:
• Noticed: 1 times
• Protocols Attacked: ssh
• Passive DNS Results: meow.binaryfeline.com blog.johnstorey.org wiki-tailscale.binaryfeline.com schroeder.xg4a4z42fk.live 64-225-78-7.cprapid.com www.64-225-78-7.cprapid.com www.r5g85ehyu6.live www.ryf03yaskz.live 0ren6lu24r.live xg4a4z42fk.live ag2o24njvk.live sebo3r7874.live x7mg7fhu6x.live cg0sfrv8u2.live mxpbl4nyxp.live 0srbmxgtft.live 42kovf942v.live r5g85ehyu6.live s2tr13oxod.live tuls5fxv1g.live ryf03yaskz.live 9ttumvsd8u.live 6a08xe2txq.live 8zrur0wfvp.live rzyvco9cil.live kboczohlkt.live fup1yt19g0.live 4jorwuvw5z.live mx13.yourself232606.com

Open Ports Detected

22

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

• NetRange: 64.225.0.0 - 64.225.127.255
• CIDR: 64.225.0.0/17
• NetName: DIGITALOCEAN-64-225-0-0
• NetHandle: NET-64-225-0-0-1
• Parent: NET64 (NET-64-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: DigitalOcean, LLC (DO-13)
• RegDate: 2019-08-14
• Updated: 2020-04-03
• Comment: Routing and Peering Policy can be found at https://www.as14061.net
• Comment:
• Ref: https://rdap.arin.net/registry/ip/64.225.0.0
• OrgName: DigitalOcean, LLC
• OrgId: DO-13
• Address: 105 Edgeview Drive, Suite 425
• City: Broomfield
• StateProv: CO
• PostalCode: 80021
• Country: US
• RegDate: 2012-05-14
• Updated: 2025-04-11
• Ref: https://rdap.arin.net/registry/entity/DO-13
• OrgNOCHandle: NOC32014-ARIN
• OrgNOCName: Network Operations Center
• OrgNOCPhone: +1-646-827-4366
• OrgNOCEmail: noc@digitalocean.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgTechHandle: NOC32014-ARIN
• OrgTechName: Network Operations Center
• OrgTechPhone: +1-646-827-4366
• OrgTechEmail: noc@digitalocean.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgAbuseHandle: DIGIT19-ARIN
• OrgAbuseName: DigitalOcean Abuse
• OrgAbusePhone: +1-646-827-4366
• OrgAbuseEmail: abuse@digitalocean.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN

Links to attack logs

aws-ssh-bruteforce-ip-list-2021-05-02 ****** digitaloceanlondon-ssh-bruteforce-ip-list-2026-01-11 ****** ******