198.15.115.235 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 198.15.115.235 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 55/100

Host and Network Information

• Tags: cyber security, ioc, malicious, Nextray, phishing

• View other sources: Spamhaus VirusTotal

• Contained within other IP sets: cleanmx_phishing, cleanmx_viruses, hphosts_emd, hphosts_fsa, hphosts_psh

• Country: United States
• Network:
• Noticed: 29 times
• Protocols Attacked: SSH
• Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
• Passive DNS Results: www.sharehit.in sharehit.in www.mdurohatak.in mdurohatak.in sonichickenfood.com syssms.abcdigitalsolutions.co.tz www.syssms.abcdigitalsolutions.co.tz www.expressionadworld.in pop.expressionadworld.in expressionadworld.in mathradevitrust.org ftp.mycapfexam.com pop.mycapfexam.com www.mycapfexam.com smtp.mycapfexam.com academy.zealzoft.com www.academy.zealzoft.com kameda.hasanjamyl.com www.kameda.hasanjamyl.com pop.growshippharma.com ftp.growshippharma.com smtp.growshippharma.com www.growshippharma.com finbque.in www.gcpestsolutions.com gcpestsolutions.com www.gadgetsadvisor.cubiosity.com gadgetsadvisor.cubiosity.com smtp.freightship.in pop.freightship.in www.freightship.in ftp.freightship.in freightship.in expocreations.in www.burion.in theharmonyspace.com.au www.theharmonyspace.com.au www.rntmetals.com ftp.rntmetals.com smtp.rntmetals.com pop.rntmetals.com agrawalmetals.com www.evenlayindia.com archmaparchitects.com garnish-restaurant.com www.garnish-restaurant.com ftp.homoeorx.in www.homoeorx.in pop.homoeorx.in homoeorx.in smtp.homoeorx.in aaspiro.com www.client.xpressdnshost.com ftp.xpressdnshost.com xpressdnshost.com www.xpressdnshost.com client.xpressdnshost.com spannkraft.in lndlbreakfastcafe.com impliedweb.com commonmatrimony.com jesuscommonmatrimony.com jhadudaan.in www.jhadudaan.in bellaterrabuilder.com www.sistlas.com www.lenolivehealthcare.com synapticaxis.com www.ownpan.com www.imkcapital.com softbaytechnologies.com kapsserviceapartmentsnoida.com shwetambergiri.com www.medcox.in lpservicesgroup.com.py www.asasaenergy.com aokelectronic.com thequiethug.com gruposolucion.com www.edudirectorio.com porurtimes.com ftp.askgranderesidency.com smtp.askgranderesidency.com pop.askgranderesidency.com www.askgranderesidency.com pop.carwellabs.in ftp.carwellabs.in www.carwellabs.in carwellabs.in smtp.carwellabs.in ftp.lpgdf.org lpgdf.org www.lpgdf.org www.sunpakfibc.com smtp.sunpakfibc.com pop.sunpakfibc.com mail.burion.in eventom.co.in inauzwa.net metromilesconstruction.com srinteriorsdesign.com assisifamily.com srisatyadevalifescience.com kashinest.com edudirectorio.com newmindgt.com sscargocruiser.com www.srsc.in universalhousingloans.com buysaleshop.com shubhamfootwear.com its.ibidelhi.in gulfpowertc.com eniteelectronics.com policycompares.com quickswipeid.com bhaavobuilders.com arshadglobal.com exceptionalvaluationindia.com revolutionworkspace.com octamet.com www.octamet.com nehacable.com pawanturion.com packedgedxb.com mycapfexam.com centralimpex.com ithumsector127noida.com futureporta.com merehanumanji.com ownpan.com newindiarealestate.com infowingsolutions.com sapthabhringrajhairoil.com sunbeamsoftek.com synergyconsultant.org infowingsolution.com dharwadroomstay.com forezoo.com uaetechrepairs.com tacticalsuae.com sivasripremier.com mock-tests.com kxyfek.com paraglidinginkashmir.com hhahealthcare.com appstechservices.com blushstudious.com www.riverthoughts.com snmcagra.ac.in www.snmcagra.ac.in www.vlntex.vr24.in moonrudraksham.vr24.in www.buybuddy.vr24.in www.hsprint.vr24.in priyamsupeermarket.vr24.in www.moonrudraksham.vr24.in jsm.vr24.in tkg.vr24.in pop.vr24.in smtp.vr24.in newstartex.vr24.in hsprint.vr24.in buybuddy.vr24.in spscalescbe.vr24.in www.priyamsupeermarket.vr24.in www.spscalescbe.vr24.in vlntex.vr24.in www.jsm.vr24.in www.newstartex.vr24.in www.vinosarees.vr24.in www.tkg.vr24.in ftp.vr24.in vinosarees.vr24.in aureousvision.com cbiemail.com grandx.vr24.in www.grandx.vr24.in annacharcoal.com www.annacharcoal.com avonsolution.in honeytechmedical.com resortsyelagiri.com virisha.net www.mindvalley.co.in mindvalley.co.in makemypropertyagreements.com pop.lakeviewhomes.in lakeviewhomes.in smtp.lakeviewhomes.in www.lakeviewhomes.in engreadientjr.com www.zapddznz.org sngeexport.com investodeckinteriors.com growexindia.com transconsole.com sriramachandracharitabletrust.org pcredservices.com smtp.pcredservices.com pop.pcredservices.com www.pcredservices.com bluezantoursandrental.com cochin.seo-specialist.in www.cochin.seo-specialist.in www.cueenterprises.co.in cueenterprises.co.in www.wo.abcdigitalsolutions.co.tz wo.abcdigitalsolutions.co.tz bpresearchwork.com www.janahita.bjparvind.com janahita.bjparvind.com www.evm.listtriikmotors.com evm.listtriikmotors.com www.ashrafcodig.ashrafiaonline.com ashrafcodig.ashrafiaonline.com a3fmahall.com consultecgt.net proppick360.in www.proppick360.in growshippharma.com bullbakerymachines.com evenlayindia.com coolmart.co.in pop.coolmart.co.in smtp.coolmart.co.in www.coolmart.co.in ftp.coolmart.co.in www.telredgt.com villagenatureherbs.com askgranderesidency.com zpindoasian.com ftp.angumasala.com smtp.angumasala.com pop.angumasala.com www.angumasala.com www.101techengineers.com ftp.foodzyrestro.com pop.foodzyrestro.com smtp.foodzyrestro.com www.foodzyrestro.com smtp.alphaglobalshipping.com pop.alphaglobalshipping.com ftp.alphaglobalshipping.com alphaglobalshipping.com www.alphaglobalshipping.com www.cims2.burion.in cims2.burion.in biokenthealthcare.com perfectglobalindia.com cpgda.com www.swamivivekanandahss.com unitedmedicare.org.in ftp.globalitservices.co.in www.navinlaw.in navinlaw.in hawaii360log.com gbylogistics.com www.gbylogistics.com prestigecityhyderabad.in ftp.growen.in www.growen.in growen.in smtp.bluelineplastics.com ftp.bluelineplastics.com bluelineplastics.com pop.bluelineplastics.com www.bluelineplastics.com telredgt.com www.envotech.co.in envotech.co.in chiccreations.ae sme-digital-mashreq.com mumbai.seo-specialist.in larvaschool.com www.click-email.trinityhosting.in click-email.trinityhosting.in fionabridalmakeup.com www.technocil.htgoodies.shop technocil.htgoodies.shop www.newdesign.thesearchnews.in newdesign.thesearchnews.in construction.vsdinfra.com www.construction.vsdinfra.com webapp.tmrfacility.com www.webapp.tmrfacility.com shop.xpressdnshost.com www.shop.xpressdnshost.com www.quotes-on.howtoovercomechallenges.com quotes-on.howtoovercomechallenges.com www.pro.demo.burion.in pro.demo.burion.in www.csrfeatures.riverthoughts.com csrfeatures.riverthoughts.com indusseeds.com artbymayuri.com burion.in www.sigmaatechsolutions.com sigmaatechsolutions.com geraecoscrap.com smdstaekwondo.com versatileatmosphere.com www.craftone.in craftone.in www.anjila.com.np anjila.com.np sourceralloy.com smtp.sourceralloy.com pop.sourceralloy.com www.sourceralloy.com ftp.sourceralloy.com www.greenchargers.in greenchargers.in viishnutrading.com theiri.org kamaltex.in superplacement.com www.bubblin.in vikatakaviinfra.com zar-ffo.com smtp.school.burion.in school.burion.in www.school.burion.in thebest.vr24.in www.thebest.vr24.in zapddznz.org flynations.co.in www.flynations.co.in pos.agli.in quickhomerealestate.com sunpakfibc.com miraigroupindia.com naadiastrology.net www.printlychick.shop printlychick.shop pop.reliableagrogroup.in ftp.reliableagrogroup.in www.reliableagrogroup.in smtp.reliableagrogroup.in reliableagrogroup.in truorgeniqa.com www.cosmospehere.in cosmospehere.in vr24.in www.vr24.in trillionyusi.com foodzyrestro.com www.carrustrucks.in www.tridentplotspanipat.com tridentplotspanipat.com mybossforce.com www.arkurja.com pop.happyjourney.world www.happyjourney.world ftp.happyjourney.world smtp.happyjourney.world angumasala.com wglmarine.com www.adhomes.co.uk adhomes.co.uk www.de-ship.com srdandclothing.com humanitriy.com amber-linux.com www.amber-linux.com sobhadeveloperprojects.com www.sobhadeveloperprojects.com shapoorjipallonjigreaternoida.com www.shapoorjipallonjigreaternoida.com cherithapcpl.com www.m3msector105noida.in m3msector105noida.in m3mnoidaprojects.com www.m3mnoidaprojects.com clifftopresorts.in www.clifftopresorts.in srivallalarsocialwelfaretrust.com garmercorporation.com navacinvestments.com cgvvm.com royalwheeldrive.com willowwa.org srisaigroupinstitutions.com athm.in www.hyderabadnewlaunch.com hyderabadnewlaunch.com akshayamalar.com smtp.akshayamalar.com ftp.akshayamalar.com pop.akshayamalar.com www.akshayamalar.com www.steeldealertrichy.com ftp.steeldealertrichy.com jaret.in www.jaret.in www.newtosenviro.com www.seo.burion.in seo.burion.in curefix.in www.web-development.clearclap.com www.seo-company.clearclap.com clearclap.com seo-company.clearclap.com web-development.clearclap.com www.clearclap.com blog.clearclap.com immigration.clearclap.com www.blog.clearclap.com www.madurai.seo-specialist.in madurai.seo-specialist.in alphamusicschool.in www.hyderabad.seo-specialist.in hyderabad.seo-specialist.in trichy.seo-specialist.in www.trichy.seo-specialist.in coimbatore.seo-specialist.in www.coimbatore.seo-specialist.in ansemblebyshalu.com admitezy.com lakshayindia.com arkurja.com www.trading.xpressdnshost.com trading.xpressdnshost.com tumaini.inauzwa.net www.tumaini.inauzwa.net newguideofnepal.pradipbudhathoki.com.np www.news.pack.burion.in www.newguideofnepal.pradipbudhathoki.com.np news.pack.burion.in himayah.inauzwa.net www.himayah.inauzwa.net www.buguri.riverthoughts.com buguri.riverthoughts.com www.blog.xpressdnshost.com blog.xpressdnshost.com debminuelderbliss.com zytekindustries.com interbixmanagement.com ravipatimetals.com almasitours.com samtakkm.com esevaimaiyam.com suprikx.com arnitbizconsolidates.com raajdecorstudio.com www.sheelprocon.com mmarschool.com ftp.mmarschool.com www.mmarschool.com www.sanjeevaninteriors.com www.mukteshwartaxi.in mukteshwartaxi.in www.hotelkknainital.co.in hotelkknainital.co.in jusboy.co.in amizrita.com www.amizrita.com tejaswibiochem.com bhriguastroconsult.com www.bhriguastroconsult.com strabentech.com www.ruhiee.com www.bhavishsoftwaresolutions.com bhavishsoftwaresolutions.com madhakovil.com www.sales.agli.in sales.agli.in rntmetals.com sourcemajeuresoftware.com bawarchifoodexpress.com smtp.mathakovil.com ftp.mathakovil.com pop.mathakovil.com mathakovil.com www.mathakovil.com www.finance24service.com pop.finance24service.com finance24service.com smtp.finance24service.com ftp.finance24service.com kepspharma.com www.mitranbiopharma.com madinkwears.com www.minimedicalspvty.com minimedicalspvty.com diamoose.com www.3dotsinteriors.com diamondstmtsteel.com ftp.diamondstmtsteel.com www.diamondstmtsteel.com www.mazizitours.com magazine.lakkars.com www.magazine.lakkars.com www.allindiasaisamaj.org allindiasaisamaj.org pop.aavonitsolutions.com smtp.aavonitsolutions.com www.aavonitsolutions.com ftp.aavonitsolutions.com aavonitsolutions.com

Malware Detected on Host

Count: 1 b0a75f9f13db6418375c5e4ebb8eb946a8009c458f193304225ce4d9339d6aaa

Open Ports Detected

110 143 21 2222 25 443 465 53 587 993 995

Map

Whois Information

• NetRange: 198.15.64.0 - 198.15.127.255
• CIDR: 198.15.64.0/18
• NetName: SECURED-SERVERS
• NetHandle: NET-198-15-64-0-1
• Parent: NET198 (NET-198-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: SECURED SERVERS LLC (SSL-65)
• RegDate: 2012-07-20
• Updated: 2013-07-26
• Ref: https://rdap.arin.net/registry/ip/198.15.64.0
• OrgName: SECURED SERVERS LLC
• OrgId: SSL-65
• Address: 2353 W University Bldg A
• City: Tempe
• StateProv: AZ
• PostalCode: 85281
• Country: US
• RegDate: 2003-12-08
• Updated: 2025-07-07
• Ref: https://rdap.arin.net/registry/entity/SSL-65
• OrgTechHandle: MUSGR48-ARIN
• OrgTechName: Musgrave, Brian
• OrgTechPhone: +1-480-401-0309
• OrgTechEmail: brianmu@phoenixnap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/MUSGR48-ARIN
• OrgTechHandle: IPADM294-ARIN
• OrgTechName: IPADMIN
• OrgTechPhone: +1-480-422-2031
• OrgTechEmail: ipadmin@phoenixnap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/IPADM294-ARIN
• OrgAbuseHandle: ABUSE1536-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-480-422-2022
• OrgAbuseEmail: abuse@phoenixnap.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1536-ARIN
• OrgTechHandle: MONTE41-ARIN
• OrgTechName: Montebello, Adrian
• OrgTechPhone: +35679305305
• OrgTechEmail: adrianm@phoenixnap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/MONTE41-ARIN
• OrgTechHandle: PETRO182-ARIN
• OrgTechName: Petrovic, Dragan
• OrgTechPhone: +381621448366
• OrgTechEmail: draganp@phoenixnap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/PETRO182-ARIN
• RNOCHandle: ADMIN2171-ARIN
• RNOCName: ADMIN
• RNOCPhone: +1-480-449-7750
• RNOCEmail: support@securedservers.com
• RNOCRef: https://rdap.arin.net/registry/entity/ADMIN2171-ARIN
• RAbuseHandle: ABUSE1536-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-480-422-2022
• RAbuseEmail: abuse@phoenixnap.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE1536-ARIN
• RTechHandle: IPADM294-ARIN
• RTechName: IPADMIN
• RTechPhone: +1-480-422-2031
• RTechEmail: ipadmin@phoenixnap.com
• RTechRef: https://rdap.arin.net/registry/entity/IPADM294-ARIN

Links to attack logs

****** ****** ******