198.54.114.249 Threat Intelligence and Host Information

Jul 27, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 198.54.114.249 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 44/100

Host and Network Information

Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader
JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762
View other sources: Spamhaus VirusTotal

Country: United States
Network:
Noticed: 2 times
Protocols Attacked: SSH
Passive DNS Results: topkitchenfittersbirmingham.co.uk aljoudex.com primecoveradvisors.com gloriahealthcoach.com bnvventure.com trixyclean.com citifiedfarms.com www.graphictshirts.shop eaglesfamily.org syncviz.co www.syncviz.co holo-hub.com wirednewsnet.com schooltryk12.k-adams.com www.schooltryk12.k-adams.com juvetalk.com nextgenlogo.com easylifegoods.com nickhouston.com barcatalk.com ayo-bisa.site pola-menang.click ombakrole.blog webmail.rtpreal.xyz jadwalkemenangan.lol wajibmain.one tips-ombak.xyz healyourbfrb.com www.healyourbfrb.com gameombak126.blog kisikisi-ombak.lol tumblerombak.site tutorbermain.xyz mariombak.store ombakspin.click airombak126.store arusombak126.xyz rtp-playombak.store www.napolitalk.com napolitalk.com eklipsi.net ombak-r-t-p.lol ombakspin.lol player88slot.net pastiombak.xyz waktunyaombak.site billalo.store bkdesignsall.com mazavaconsultores.com grownicheltd.com capability-formations.com innovahost.org www.innovahost.org mainombak.xyz letombak.site thenextombak.store ramuanombak126.site trikpolaombak.store topnotchexams.com playrtp-ombak.xyz rtpombak-pasti.lol rtpombak126-gcr.store goodnewsombak-126.lol duelsengitombak.store ftnminergamebot.site matchombak.xyz carexpressions.net ombak-havefun.xyz playwith-ombak.store www.playwith-ombak.store www.etherindia.org etherindia.org angkorworldtours.asia spingratis-126.xyz hartakarun1-2-6.store ombakbiru.xyz www.ombakbiru.xyz ombaktimer.xyz arusajaib.store arus-gelombang.xyz pola-turbo126.life www.peluangterbaik.online peluangterbaik.online angin-adventure.store arah-ombak126.info uncacoalition.org topinfomasi.info www.topinfomasi.info infolaut.life infoarahangin.cfd dapurmama.online polaofombak.life johnhass.com loveboutique.asia pusaran-air.info www.wapdatz.com wapdatz.com www.brickscollectors.com elect101.com berkahbanget.xyz so-cool.pro jamestoursguide.com interjobs.online bigwin-om.lat ombak126-rtp.site fabuloustraders.com citifiedfarms.store nagabiru.online rajalaut.xyz ceaurora.vip selancar.shop jamestoursguide.asia techdigitalsoln.com triphongzp.com dmfuneral.com hempreviewsbuddy.com mirchicosmetics.com prodigypaperhub.com gvscgulf.com organicfarmingcompany.com 0-mbak.space ombak-surfing.shop freespindunyasi.com om-sanggar.pro rupantorbd.net echologistics.online meligsm.com xmintrix.com qualityleadshub.com hifixng.com versoemea.com khatermds.com 9jaspectra.com aidangrocery.com loanswithcruxpro.com voyagestart.com express.eazymart.store www.express.eazymart.store jamestourguide.com ziwizi.com pixelatiq.com vistaclean.store apprankbooster.com camilladorand.com simplemedconnect.com mbttractorhouse.com kitieasybooster.com reddoorzbyej.com metahellp.org allkitchenproducts.com desertdeliverance.com dgresults.com scig-edu.com jamesbonthai.com www.completeretailsolution.com completeretailsolution.com mysiteground.site 126-om-berkumis.life monktunes.com www.monktunes.com crypsolid.cc www.crypsolid.cc optyxenongroups.com om-swastiastu.cfd dmsg-publishing.com icevirtualsolutions.com 0mb4k.online om-gadun.website orientaldelightsuae.com pasang-ombak.life o-m-bak.autos arabpromos.com betterlifeholdings.site tsunami.wiki whstories.com mymonyjik.shop zekquizlin.shop coinnation.org awbk.online mymonypik.live fahimfaisal.dev i-droid.app ahmedlod.com trastgolkod.com toptravelpulsehub.com cdrelitewriters.com helm-trail-mantab.com mrsflocking.com ziyoft.com exponentiaindia.com tsunami-nihbos.store digisquaresolutions.com 60secondstatistics.com project-hades.net twocoding.com phdronedelivery.us dasafhealthcare.com clipboardgenie.com sophiazhuk.com sirnaqib.com leodotleo.com ziru-co.com chenitech.com one-piece.bio w8-win.club rtpreal.xyz wealtekconsults.com volkastream.shop ombakrtp126.org priormarkets.com personalityanddevelopment.com putar-om.com magic-spin.pro bhattifaizan.com gardenistahq.com spin-turbo.info dinancepay.us mygitfmal.xyz playfun.pro theran.org hawaiicornea.org sugerenzyme.com instadts.com ideal360photoboothreno.com ltoctwlof.com zuritours.com grwebdesigns.com ofwlltoct.com nanotutors.com redragoniptv.com rankingrocketseo.com spin-ombak.info wise-jobs.pro neefymoffett.com onlinedollers.com macuong.com istylemarkt.com huwns.xyz puffer.lat roofing-installation-repair.com yaho0.email www.yaho0.email dooris-klopp.xyz ob-cat.pro techmonks.dev ubsaccon.com manadotaw.com robertperezc.com kanalwp.com kalduangsa.today gacor-banget.pro ob-gacor.vip rtpcapangsa4d.com merchantmasters.pro redalertpress.org naturesms.online alienbaxi.pro therealbonkerssaloon.org ethandevine.info truasports.com peaceandunitylinks.com crystalcruisedigital.us nootroverse.com ambisafe.online brallier.online dapurhanania.store okutubags.com favelaht.online xwaiter.com theelcocinero.com swvdlaw.com silexsecuremx.com myelcocinero.com elcocineroonline.com realforx.com www.api.zad.xwaiter.com api.zad.xwaiter.com thehiddensymphonyintrading.pro tradadesk.com deliveryyap3.com 24wheel.com 101nigerianwomenofimpact.com theforexnexus.com www.theforexnexus.com rtpombakslot.com rtpangsa4dslot.com ser-tvjoy.com www.inqdigital.org 9001251851897182987891.xyz 200158730219728418710.xyz 40019302187301941613482.xyz may2may.pro laemedan.com phurballs.com kusinaafandinauae.com denlerinc.us whitehouselegals.com www.whitehouselegals.com designfoli.com ramseyportfolio.online www.paperxpert.com vook4me.com looshopping.store sagecfoundation.org mintpizza.online gilopizza.online 123testretester.online nwest-transport.ltd gilopizza.info techtalk.bio cookingclasswithfamily.com sportscity24.com mkwpplace.com bugrise.com oracle-stellar.com rymbonline.com roothostltd.com futurelink8.com mer-rill.com upstandeventsanddesign.com www.gautreauxinsurance.com gautreauxinsurance.com www.rtpombak126.com rtpombak126.com www.addicfree.fr addicfree.fr rtpangsa4dnihbos.com www.kumbhatech.com kumbhatech.com deethiagummies.com desarrolloweb.store roxfaj.com www.asiaplacestosee.com asiaplacestosee.com xyon.pro ras.ranaairservices.com www.ras.ranaairservices.com conrecicas.com hdllfreelance.com mycasabali.com ranaairservices.com www.pos.ranaairservices.com pos.ranaairservices.com africancapitals.com www.zarouf.digital zarouf.digital iptvcheaping.com www.iptvcheaping.com www.obinyanchambers.com.ng obinyanchambers.com.ng bitquantum.tech apples-store.site maroebroertje123.site bitcoin-btc.site wokinia.com derrickisred.com senamiluxurydecor.com imarketscope.com playstation-direct.com back2it19.com gistorian.com yogasoulretreat.com www.yogasoulretreat.com llware.xyz inqdigital.org hargaterbaik.click distinctiveabsolutes.com qustana.com playgamesblog.com bloomzoonftx.com eindertane.com ntyavero.com ncstockbit.com www.laurenines.com laurenines.com dbtoilet.com oa-mo.org www.oa-mo.org www.mpg88star.com mpg88star.com societeaccbn.info www.sw-advantage.com workingplacehome.bio www.solutiondesigners.ltd citybau-bochum.de www.citybau-bochum.de global-move.online rollintumble.com www.rollintumble.com www.ipultra.tv ipultra.tv www.planyfix.com planyfix.com www.dosarp.com dosarp.com themysticera.com www.themysticera.com rgbrealtors.com www.zetsol.co smartpos.zetsol.co jbzclassics.com kokoroowo.store kloired.site www.kloired.site mefa.kokoroowo.store www.mefa.kokoroowo.store www.4.jskilzofficial.com 4.jskilzofficial.com bitcoin.jskilzofficial.com www.bitcoin.jskilzofficial.com www.sample.jskilzofficial.com sample.jskilzofficial.com lorcanacollectors.com www.pauljackiewicz.com naijalatestnews.xyz wasabulk.com tripledosee.com www.businescall.com businescall.com port-clover.com www.cloverop.com cloverop.com www.bituswap.com bituswap.com www.worldfreightamerica.com worldfreightamerica.com linuxshippers.com www.linuxshippers.com smartrider.zetsol.co www.smartrider.zetsol.co rtpslotangsa4d.com www.adspect.trutechminds.com adspect.trutechminds.com chifarmfoundation.com nikkiebook.com www.luxuryuaecars.com luxuryuaecars.com graphictshirts.shop data.privatebnonline.info www.data.privatebnonline.info the-professional.site imuzic.org martindobuildingsolutions.com boubl.com bienestarazrtecal.com www.bienestarazrtecal.com one.kaftanskp.store www.one.kaftanskp.store www.kaftanskp.store kaftanskp.store www.dreamcatcher-academy.net dreamcatcher-academy.net privatebnonline.info nursingexams.net m-construct.org achievascu.com kamibathon.com www.kamibathon.com app.achievascu.com www.app.achievascu.com cromaepress.site www.cromaepress.site eepnotaryrva.com www.eepnotaryrva.com www.app-personal-mobile.sw-advantage.com app-personal-mobile.sw-advantage.com dogfoodkintin.store bfpglobal.com.purchase.pw www.bfpglobal.com.purchase.pw www.ameliemonnier.com www.7ucy.com 7ucy.com topidealshop.pro texedconsulting.com marcellobarber.shop mixed.svitlana-practice.org www.mixed.svitlana-practice.org www.site.svitlana-practice.org site.svitlana-practice.org reliable-insurance.info www.ipciglobal.org www.yaadprofassociates.com www.jentriksanam.techheaven.pk jentriksanam.techheaven.pk peloporisma.techheaven.pk www.peloporisma.techheaven.pk www.gunturiman.techheaven.pk gunturiman.techheaven.pk www.cupakbig.techheaven.pk cupakbig.techheaven.pk www.panutursemboyong.zahravillas.com panutursemboyong.zahravillas.com www.obitosama.techheaven.pk obitosama.techheaven.pk www.warnapiknik.techheaven.pk warnapiknik.techheaven.pk hujanduit.zahravillas.com www.hujanduit.zahravillas.com kromosomnista.techheaven.pk www.kromosomnista.techheaven.pk

Malware Detected on Host

Count: 5 664340235a49b0f3fa513d0fa399cdc2416f519f9f576090224d6d686b999c36 14fc1118519b8f8ca0f7e08fdc0a71e4d013bc7c7a071cc49617b3952fa4bbcb d65d743004d7a50480ec3026062ddc686b04830ac5cfc80d8776c842934efa69 1be6d84a39a4e658bcbe729dc766ff34a820541f0749ecfcdbc329d2397e77f8 9f7ab24ab43b6c0de4b5fb79f34beeb4e596f2656e140f8c57dca02440edb6e1

Open Ports Detected

2077 2079 2083 2095 2096 21 26 443 53 80 993 995

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2024-6484

Map

Whois Information

NetRange: 198.54.112.0 - 198.54.127.255
CIDR: 198.54.112.0/20
NetName: NAMEC-4
NetHandle: NET-198-54-112-0-1
Parent: NET198 (NET-198-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Namecheap, Inc. (NAMEC-4)
RegDate: 2015-11-13
Updated: 2015-11-13
Ref: https://rdap.arin.net/registry/ip/198.54.112.0
OrgName: Namecheap, Inc.
OrgId: NAMEC-4
Address: 11400 W. Olympic Blvd. Suite 200
City: Los Angeles
StateProv: CA
PostalCode: 90064
Country: US
RegDate: 2011-01-28
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/NAMEC-4
OrgTechHandle: EFIME-ARIN
OrgTechName: Efimenko, Igor
OrgTechPhone: +1-323-375-2822
OrgTechEmail: igor.e@namecheap.com
OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
OrgTechHandle: TECHT4-ARIN
OrgTechName: Tech team
OrgTechPhone: +1-661-310-2107
OrgTechEmail: tech@namecheaphosting.com
OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
OrgAbuseHandle: ABUSE2885-ARIN
OrgAbuseName: Abuse team
OrgAbusePhone: +1-323-375-2822
OrgAbuseEmail: abuse@namecheaphosting.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
network:Class-Name:network
network:Auth-Area:198.54.114.192/26
network:ID:NET-74887.198.54.114.249
network:IP-Network:198.54.114.249
network:IP-Network-Block:198.54.114.249
network:Org-Name:Web-hosting.com
network:Street-Address:3402 East University Drive
network:City:Phoenix
network:State:AZ
network:Postal-Code:85034
network:Country-Code:US
network:Tech-Contact:MAINT-74887.198.54.114.249
network:Created:20190326104725000
network:Updated:20190326104725000
network:Updated-By:net-admin@namecheap.com
contact:POC-Name:Network team
contact:POC-Email:net-admin@namecheap.com
contact:POC-Phone:
contact:Tech-Name:Network team
contact:Tech-Email:net-admin@namecheap.com
contact:Tech-Phone:
contact:Abuse-Name:Abuse team
contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******

Share on: