198.2.210.12 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 198.2.210.12 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• JARM: 3fd3fd0003fd3fd21c42d42d000000307ee0eb468e9fdb5cfcd698a80a67ef

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: spam
• Passive DNS Results: 49vipht.com www.3asd85.com 3asd85.com 666yc.cc 4980ht.com 45sdfs.com luobo001.com jingzhun001.com jfokl.com tezd4b3.store t7ny9a5.store t1bns2v.store duxxnxk.store svienvr.store gfq938v.store dwqbg.store voxk8fx.store 39qv3zw.store bp7izde.store xtmxnu7.store 2b24s4t.store jv3ms9u.store bfw1hvh.store xexbhvx.store cdylt.store xpqhbxz.store vvq3az6.store ujuxfan.store fxvmgde.store b3xu4rz.store ir6n7s6.store z5ftgwx.store xjgyg6k.shop vvc73i7.store sxman3h.store su63ntj.store gj7ds5f.store 3bsp8x3.store kfboxwa.store igximqe.shop 29yfaxf.shop 6aitcbx.store wvgbrip.shop 1hwysd4.store 5i6ut4b.shop vds7ott.shop rhmcqo6.store iwxjesz.shop nb9z2fx.shop 8njxt9r.shop 4xxrxft.shop 1qvou1x.shop cd9exnf.shop z6qk7wt.shop eqwx69f.shop 1xxgd5x.shop fntehyr.shop xchx119.store xyua2hx.store tg6txiq.store vuhoand.store qxbjhdi.store uee76f2.store exogf82.store 1rxfthr.store 8ydaxwf.store n6wk4sj.store 2orvzvd.store 2vxiu1g.store 4v81kf4.store 9mon6no.store fvo67r3.store fx9v4xu.store mee8o66.sbs dnie1w3.sbs twmwxx7.sbs sixtkue.sbs nax1be2.sbs kj4cfzb.sbs v88q8ot.sbs rxd7yiu.sbs f7rcc38.sbs i1371jy.sbs qtzuw.cyou ttzuf.cyou xdtq5mm.cfd qtrtf.cyou x5mw3ym.cfd wjxevyo.cfd ctf3b1v.cfd scfynox.cfd emvcamj.cfd 3rvt91x.cfd o9m2sne.cfd rpm5axy.cfd vh1rqwf.cfd m42fqrwg.botwafdns.com yefengsc.com www.ycitzx.com ycitzx.com www.dxscf.com dxscf.com www.823176.com 823176.com www.8275288.com 8275288.com s3158.cn

Open Ports Detected

443 80

Map

Whois Information

• NetRange: 198.2.192.0 - 198.2.255.255
• CIDR: 198.2.192.0/18
• NetName: PT-82-7
• NetHandle: NET-198-2-192-0-1
• Parent: NET198 (NET-198-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS54600
• Organization: PEG TECH INC (PT-82)
• RegDate: 2013-04-18
• Updated: 2013-04-19
• Ref: https://rdap.arin.net/registry/ip/198.2.192.0
• OrgName: PEG TECH INC
• OrgId: PT-82
• Address: 2805 Mission College Blvd
• City: Santa Clara
• StateProv: CA
• PostalCode: 95054
• Country: US
• RegDate: 2012-03-27
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/PT-82
• OrgTechHandle: NOC12550-ARIN
• OrgTechName: NOC
• OrgTechPhone: +1-408-692-5581
• OrgTechEmail: noc@petaexpress.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC12550-ARIN
• OrgNOCHandle: NOC12550-ARIN
• OrgNOCName: NOC
• OrgNOCPhone: +1-408-692-5581
• OrgNOCEmail: noc@petaexpress.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC12550-ARIN
• OrgAbuseHandle: ABUSE3497-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-408-692-5581
• OrgAbuseEmail: abuse@petaexpress.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3497-ARIN
• NetRange: 198.2.210.0 - 198.2.210.15
• CIDR: 198.2.210.0/28
• NetName: 199-180-100-0-1
• NetHandle: NET-198-2-210-0-1
• Parent: PT-82-7 (NET-198-2-192-0-1)
• NetType: Reassigned
• OriginAS: AS54600
• Customer: Tian Jakwer (C03409321)
• RegDate: 2013-05-25
• Updated: 2013-05-25
• Ref: https://rdap.arin.net/registry/ip/198.2.210.0
• CustName: Tian Jakwer
• Address: Hefei
• City: Hefei
• StateProv: AHHUEI
• PostalCode: 610023
• Country: CN
• RegDate: 2013-05-25
• Updated: 2013-05-25
• Ref: https://rdap.arin.net/registry/entity/C03409321
• OrgTechHandle: NOC12550-ARIN
• OrgTechName: NOC
• OrgTechPhone: +1-408-692-5581
• OrgTechEmail: noc@petaexpress.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC12550-ARIN
• OrgNOCHandle: NOC12550-ARIN
• OrgNOCName: NOC
• OrgNOCPhone: +1-408-692-5581
• OrgNOCEmail: noc@petaexpress.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC12550-ARIN
• OrgAbuseHandle: ABUSE3497-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-408-692-5581
• OrgAbuseEmail: abuse@petaexpress.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3497-ARIN

Links to attack logs

****** forum-spam-ip-list-2013-07-22 forum-spam-ip-list-2013-07-23 ****** ******