Community


IP address: 64.20.61.146 Port:5655

Links used in this discussion
Thomas Wills, User (Posts: 2)
Nov 01, 2021 2:35:24 pm EDT
Support level: Free or trial
We have a few hosts trying to reach out to this IP address: 64.20.61.146 On port:5655

Is 64.20.61.146 an IP address that is used by remote utilities?
Pauline, Support (Posts: 2886)
Nov 01, 2021 2:43:20 pm EDT
Hello Thomas,

Thank you for your message.

Yes, 64.20.61.146 is an IP address of one of our servers located in the USA.

Please let us know if you have more questions.
Thomas Wills, User (Posts: 2)
Nov 01, 2021 2:48:57 pm EDT
Support level: Free or trial
This IP address show as compromised in Virus total.
https://www.virustotal.com/gui/ip-address/64.20.61.146/relations
Are you guys aware of this?
Pauline, Support (Posts: 2886)
Nov 01, 2021 3:17:34 pm EDT
Hello Thomas,

Thank you for bringing this to our attention.

This might have been a false positive, however, I'll immediately forward this our developers and will ask them to look into this. We will also contact the InterServer hosting and ask for their input on this. Sorry for the inconvenience.

I'll get back to you with an update on this shortly.
Pauline, Support (Posts: 2886)
Nov 02, 2021 10:01:38 am EDT
Hello Thomas,

Thank you for your patience.

I've checked on the issue with my coworkers and this is indeed a false positive. The fact that our legitimate software might be used by rogue users with illegitimate/malicious intentions and, therefore, connect through our servers. However, this does not affect our servers security even in the slightest way as the servers only relay encrypted data back and forth. This also does not affect other users who are connecting to their remote Host machines via the same servers and their security.
Here's also a SpamHouse report that shows that this IP address has no issues.

In addition please note that Remote Utilities is legitimate software for remote access and remote support. Any illegitimate/malicious use of the software (including its modification, reverse engineering, "cracking" etc.) is prohibited by our EULA. Besides, in many countries, such use of computer technology is a criminal offense punishable by law.
Last but not least, illegitimate/malicious usage is pretty common with other competitive remote access software as well, even the most popular ones. Here's also a related Wikipedia page that might provide some helpful information as well.

Hope that helps.

* Website time zone: America/New_York (UTC -5)