198.54.114.242 Threat Intelligence and Host Information

Aug 30, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 198.54.114.242 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: agenttesla, agentteslaexe, anna paula, arkeistealer, associated, azorult, azorultexe, currc3adculo, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, from email, gandcrab, gozi, hancitor, hawkeye, headers, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, malspam email, msi file, nanocore, nemty, netwire, phishing, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, tuesday, utf8, zip archive, zloader

  • JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: hphosts_emd

  • Country: United States
  • Network:
  • Noticed: 29 times
  • Protocols Attacked: SSH
  • Passive DNS Results: oodysseyventure.com emmellgroundworx.com gigatech1.com patiakademi.com clinicallab.dubaimotoroil.com www.clinicallab.dubaimotoroil.com onyssa.com topdealsbuzz.com barretteoutdoorlving.com saelinstein.live mixieshop.com sydaldevblog.com qlogisticss.com sparklinedatto.com alphaseoplus.us isofroid-dz.com www.test.ensaras.com www.dataqueanalytics.com dataqueanalytics.com japanesepress.store www.japanesepress.store emarixa.com fluttersavvy.com universaleliteaccess.com eveonsafari.com batv.store pafpower.com poslos.com brandifya.com flowsocialhq.com velarmotors.com professionalrealtra.com remoteaihustle.com araluetp.com imvmc.com menofactionmentoring.com sunmeh.com voiceofstories.com miamidjagency.com aaatattoo.ink yourwellnessrewired.com ultimatemingview.com xerticz.shop gehoagh.com gate2global.com cryptoneerpro.net dws-etender.online argana-trading.com miprimerregalo.com wardtaljori.com sleepfornightworkers.com sellerschain.com bagsbwhyssd.com vioxfordhall.com maxbozemanlegend.com penguingadget.com wilsonfamilylights.com blueoak-digital.com xondadesign.com examlink.net aldanishmart.com patilogs.com k9patika.com theflowsocial.com melscape.com marinestudy.net myaw.pro sharidah-store.com mgmbet99.com rachelemmacoaching.com gadgetpeak.com mividahoy.com igcstockstream.com gadgetq.online wihning.shop 3000bb.org totalsportve.com toyolive.com crystalskycapital.com patinot.com echoxmarketing.com kindredfurnish.com letmecleanservices.com kikotcg.com nettfarag.com lokobyashley.com amrgrants.org cryptnoids.com unitysoft.pro thefriendlydeveloper.com wellnessjobs.net quantumforall.net deployhunter.xyz deltavx.xyz corbon-ibc.org domest.online shorashvan7.com heartwellnessclinic.com rtp-bayam89-v1.com techvistapulse.com www.nitiponglawfirm.com claytoncooks.world servicekap.site akccavalierkingcharles.com mybrandup.com www.mutongaupair.com mutongaupair.com everiteltd.com everydayreflexology.com voiceofstories.readlandng.com www.voiceofstories.readlandng.com petyasd.store zproptenants.space santerouganda.com handsiptv.com royaleinfinityworld-mobile4.com lisanlingo.com keli.world digitalland.store saratogablackout.com rtp-bayam89.com rtpbayam89.com theprimeforex.com therealtimward.com financeandtaxusa.com accountingandtaxusa.com eleganhomes.com fledgefilms.com icufirstnutritionpakistan.com estilopop.com www.yellowchariot.com yellowchariot.com keyedgeit.com www.app.willotalents.com app.willotalents.com dgyouths.online abucartel.info thepemfsource.com samarchitecturestudio.com hundoheadshots.com mpks-office.com leobanda.com bj-pnoduct.com officialdji.com asusuigbo.net web3playboy.xyz adwdalqwed.xyz ibox.travel ccnsawamgh.org bonsephet.online saladboxmarrakech.com handofloom.com patrickhaywood.com www.kipsrestaurants.com kipsrestaurants.com charlesschwabs.store jco365.store firstpeelen.org moontoon.online testagatest.com mycandis.com onehandaccess.com skyfallholidays.com totalnaturalproducts.com.ng www.totalnaturalproducts.com.ng techdaemon.io www.techdaemon.io virtualmechanisms.llc ultravisionltd.com www.carpetanacomunicacion.com carpetanacomunicacion.com ronraven.online mundoella.net contributifvg.com locketsang.org testing123.host alaminthailand.com agrocentricmarketplace.com dubaimotoroil.com ussautobrokers.com kokokoki.com letsbuy.lk plb.dezinsolutions.net www.plb.dezinsolutions.net exchange.attorney digitalmastermindbd.com dollarglencabins.com prodemicsglobal.com prodevskillsacademy.com alabastar.me ijetrif.com skandasports.org nwcr.xyz arbitradebot.com acicltd.com masons-aupair.com monetarygrantfunds.com coinchanger.space couriercloud.pro yourwebsite.lol tatepoker.lol my-birth-chart.com ignitedmindsedu.com landingpagengawi.com orgotinfotech.com elevatedmgt.com ratelsa.com ipl2025.in www.ipl2025.in girlsforclimateaction.org www.girlsforclimateaction.org danhodiengineering.com account.futuretrading0ptionz.com www.account.futuretrading0ptionz.com www.ascendcommunications.ca ascendcommunications.ca healthyrecipestoloseweight.com www.healthyrecipestoloseweight.com swissstorelimited.com kurdbio.net www.bottrada.com dev2-prod.amirkhan.co telemaxpreset.shop jgroup.online netlink.host carvalide.com sharkrockcapital.com pxvalley.com ducie-invest.com pianomovingsqaud.com tarheeldeals.com abulegraphics.com www.abulegraphics.com zambiankas.com jmartinpromo.com bottrada.com cricstickers.com floatz.xyz peipei-coin.org solidautomation.llc selfund.capital diabesavingsandloans.com curtainsofashop.com lendindusa.com zengstics.com isser-tech.com preciousheartsinc.com noverificationslots.com www.flourishance.com.sg flourishance.com.sg hotatl.org pianomoverssquad.com trycyberheater.com www.grantinnovations.online grantinnovations.online imedictech.com subhkamnasoft.com www.subhkamnasoft.com www.spcworldwide.com spcworldwide.com tazitravels.healthconnect.cloud www.tazitravels.healthconnect.cloud www.ow.pipsmoney.com ow.pipsmoney.com wtflow.ai www.wtflow.ai granitestaffingsolutions.com intensetrips-events.com pleocat.com www.pleocat.com pipsmoney.com www.pipsmoney.com www.ocbrief.com ocbrief.com engroshealth.space danwatrucks.com www.danwatrucks.com grctoday.xyz laboseller.store nitiponglawfirm.com canteenorder.online hometoolery.com www.hometoolery.com medco.pk www.medco.pk www.cms7.nandine.net cms7.nandine.net apolloogroups.tv www.apolloogroups.tv pandalicious.buzz www.aranybit.com bigsolutionsg.com singaporemanila.pro easyit.lol solutions-jb.com www.eugeniatortas.com eugeniatortas.com gloriaforce.com hitechsteels.net ibshardware.com maid365.shop lindabmartins.com settesettembre.date wiscotrade.com aranybit.com calmedclinic.com livesportsmaniatv.com freem3uiptv.org cloudonpurpose.com 32foods.org westwaytb.online matcenset.online lsanstset.online lewebuset.online fildcoset.online ricdseeset.online www.buildingshpk.host mectrons.com motrainerar.com ploomba.com www.menshealthplanet.com menshealthplanet.com thegreensoc.site bazacoin.top totoyahut.net errorcorrupt.xyz www.nutrexmale.com www.moesanjari.com csprogramiz.com apnawomenclub.com nataliaciocoi.com alphatechno-solutions.com elovateinc.com takeuturn.com everythinginherentlyvalued.com go-azhandyman.com 3mtransportluxury.com clutchbagsin.com sparksportstv.com sharbiluckypaw.com yourwgs.com getredfly.com hypecounter.com helpsmd.com platinumlearningce.com learntocodewithson.com lesryan.com fcrecl.com basketsbysueinkalamazoo.com dragonshopy.com www.heizoelonline24.com heizoelonline24.com www.ringandgo.uk ringandgo.uk withcrystallamp.com demo1.dezinsolutions.net ledgerapp.syncs.digital waseetsa.net allenalston.org freezer.network appwitty.com seoquark.com houselogixllc.com handpalmtattoo.com munkymart.com zeromaxeld.com universidadprogerente.com gamegoib.com www.thegamehub.xyz thegamehub.xyz bernummm.com jerzblocksolutions.net mattressez.shop fiestatv.us arielthewellnesscoach.com hostup.us technokhoj.com zando.site stockade.shop affiliateacex.live wealthwebalchemy.live toyo.live bizfeats.agency torsecurities.com premdr.com fundrisetrading.com renosoftssolution.com app-me.link idmachinesalarm.com prestigesigns.store bitconx.com www.skyandcounlimited.com panegreatbank.com bestmovies4k.com area81band.com drewtechai.com bestgiftsdeals.com www.lightpayer.com globallightmarket.com bizemailer.online cryptotransmitterbonds.com scottrottweilerhappyfamily.us onlineotcswap.com thefamilybasenji.us chainmailhub.xyz 10pearls.xyz rwaltz.xyz w00w00.llc zephyrwealth.live kksoftwareassociates.lat xebia.lat bigtime.lat buildingshpk.host westernmediauw.com andreacandella.com ams-digitals.com thefamilybengals.com cititriust.com cantheyfeel.com labrynk.com beuninterrupted.com nihish.com aaiptvtechuot.shop quriopra.lol www.bitcoin69420.com unlimitedequitygains.com danglebooks.club corpcultivate.com usatopgaragedoor.com semangatterus.xyz prsignal.xyz pitchn.xyz aaiptv.shop stsignal.pro cryptodkm.pro peacessd.org qqsignal.info medirisk.consulting allaboutyouhome.care thejuicybarvape.com deepthidigitalmarketer.com circle-careers.com canasln.com skyandcounlimited.com monjuolkj.com premiumbelt4men.com g-worldmovies.com britelitesupplies.com banglatopup.com dreambox.com.sa situstriadmacau.net lightpayer.com app.etyphontrade.com www.app.etyphontrade.com unlimitedequitygain.com worlld.store thepoecoin.vip workinglostlovespells.com hpos1p.vip mamahamrafemalehealer.com realsmurfrat.vip satoshi6900.vip coolerbox.site jiggywithteens.site tubeonline.org chainbloggmaster.fun werkspaceph.com prosrv63.com polodigitizing.com bitcoin69420.com givemdnw.com etyphontrade.com www.fatehsolutionz.com fatehsolutionz.com donnamakessense.com pawsandplayexpo.net pepeforever.vip karyomart.store verduras.shop taquaninternational.com pawsandplayexpo.com roundtablelogisticz.com www.dominionmarkets.pro qseo.tools dominionmarkets.pro satoshi-bitcoin.org wpf-company.online navsyfedreslsecurity.org hotspotgateways.com holdnspinpartners1.com primequilter.com uneedadream21.com halmackcourier.online freeleaks.net completelogcompany.com werow.sydney iptv4ucc.store newhomereadycleaning.site swissiptv.org chadijahandco.lat

Malware Detected on Host

Count: 1 60834b4da548f5e6a0c97f7de3b9385d8fa3e303205f0caab04a9283d8c1c6ce

Open Ports Detected

2077 2096 21 26 443 587 80

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331

Map

Whois Information

  • NetRange: 198.54.112.0 - 198.54.127.255
  • CIDR: 198.54.112.0/20
  • NetName: NAMEC-4
  • NetHandle: NET-198-54-112-0-1
  • Parent: NET198 (NET-198-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: Namecheap, Inc. (NAMEC-4)
  • RegDate: 2015-11-13
  • Updated: 2015-11-13
  • Ref: https://rdap.arin.net/registry/ip/198.54.112.0
  • OrgName: Namecheap, Inc.
  • OrgId: NAMEC-4
  • Address: 11400 W. Olympic Blvd. Suite 200
  • City: Los Angeles
  • StateProv: CA
  • PostalCode: 90064
  • Country: US
  • RegDate: 2011-01-28
  • Updated: 2024-11-25
  • Ref: https://rdap.arin.net/registry/entity/NAMEC-4
  • OrgAbuseHandle: ABUSE2885-ARIN
  • OrgAbuseName: Abuse team
  • OrgAbusePhone: +1-323-375-2822
  • OrgAbuseEmail: abuse@namecheaphosting.com
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
  • OrgTechHandle: EFIME-ARIN
  • OrgTechName: Efimenko, Igor
  • OrgTechPhone: +1-323-375-2822
  • OrgTechEmail: igor.e@namecheap.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
  • OrgTechHandle: TECHT4-ARIN
  • OrgTechName: Tech team
  • OrgTechPhone: +1-323-375-2822
  • OrgTechEmail: tech@namecheaphosting.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
  • network:Class-Name:network
  • network:Auth-Area:198.54.114.192/26
  • network:ID:NET-33217.198.54.114.242
  • network:IP-Network:198.54.114.242
  • network:IP-Network-Block:198.54.114.242
  • network:Org-Name:Web-hosting.com
  • network:Street-Address:3402 East University Drive
  • network:City:Phoenix
  • network:State:AZ
  • network:Postal-Code:85034
  • network:Country-Code:US
  • network:Tech-Contact:MAINT-33217.198.54.114.242
  • network:Created:20160811160905000
  • network:Updated:20160815053942000
  • network:Updated-By:net-admin@namecheap.com
  • contact:POC-Name:Network team
  • contact:POC-Email:net-admin@namecheap.com
  • contact:POC-Phone:
  • contact:Tech-Name:Network team
  • contact:Tech-Email:net-admin@namecheap.com
  • contact:Tech-Phone:
  • contact:Abuse-Name:Abuse team
  • contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******

Share on: