198.54.115.120 Threat Intelligence and Host Information

Apr 03, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 198.54.115.120 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: agenttesla, agentteslaexe, anna paula, arkeistealer, associated, azorult, azorultexe, currc3adculo, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, from email, gandcrab, gozi, hancitor, hawkeye, headers, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, malspam email, msi file, nanocore, nemty, netwire, phishing, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, scam, servhelper, stealer, systembc, trickbot, troldesh, tuesday, utf8, zip archive, zloader

  • JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: hphosts_psh

  • Country: United States
  • Network:
  • Noticed: 29 times
  • Protocols Attacked: SSH
  • Passive DNS Results: diamondjymmusic.com tranquilotandt.com elyriansolutions.com 20autoworks.com finixcash.com pittsburgmedicalsupply.com alkebulan-ec.com cdgairporttransfer.com ownwrld.com fullsendshippingja.com ali-baba.site alcorconsultingllc.com iofonsa-explore.com triageconsultancybd.com bakermcckenziie.com real-iptv.com vetbk.app sellingcontent.live paparprowriter.com bytewavestrategies.com vawani.tech resolutionsdesk.site q-cdn.online forestfund.info studemy.digital westlakepestcontrolxperts.com austintownpestcontrolxperts.com akieryni.com cpncreditboost.com curtainsgulf.com viva-iptv.com centroculturalliriano.com stowpestcontrolxperts.com savanatv.com llyodsbit.com massillonpestcontrolxperts.com prindashop.com baminiks-integrated-limited.com ojsolicitors.com ntrpzel.com northroyaltonpestcontrolxperts.com northolmstedpestcontrolxperts.com uniteklearning.us callefriberg.com arianmuindi.com dreams-mbc.net positiveconnections-social.org xpj-trading.com xrentals-ks.com skmindbodyandsoulllc.com saminour.com leonapplebaumglassart.com icforafrica.com lprwlegacycorp.com ivifunds.com pi-opennetwork.com noxeltee.com kunlekadri.com icals2025putrajaya.com stocktradelimited.com www.stocktradelimited.com kitsy.net luliquidacaodefev.site onappservice.online firstrise.online wetmycar.com asmgroupiq.com digitoxmart.com casinozenon.com hodakadiye.com lakesideconfessions.com peaksportsfl.com bahasa-english.com 1004foundation.com atlastelecomunicaciones.com artour.dev st-rentals.com reikoai.fun draincleaningbrea.com fastjunksremovalsdubai.com ainami.xyz minfiniti.fun yzuai.fun mimiagents.fun furfriend.fun flipperrai.fun taisolana.org mehrgeldmit.com precursor.site africavista.org 81support.us optimistichws.com superofficialcryptocurrency.xyz johnny69.xyz multivurse.space 2025rewards.lat thebookstoreinthewoods.com nokhba-global.com dukeai.lol frame-fusion.com flipperai.xyz worldmalayaleecouncilglobal.net konqiai.fun furfrends.fun blackswan.poker equitaexpress.org redtulipcu.org horcileshefu.online dubeelectric.com iiumalumni.com pbkservices.com flyusn.com freejunkremovalsdubai.com www.solvfinance.store solvfinance.store wakuwakukanji.com www.wakuwakukanji.com plumberfarmingdaleny.com alienswarmai.xyz yourgam.ing jandle.app yuzae.xyz solroute.net moldremovalsarasota.net telegami.xyz reikoai.xyz link-expert.pro atlantafinecarsinc.com tormamarketing.com muscle-squadron.com medicinesandmore.com rm-ampera.com kumamoon.fun kimai.fun ambergroupintl.com gopherai.xyz kingagent.fun www.kingagent.fun furfriends.lol dukeai.fun flipperai.fun jcsconsultinggroup.online konqi.fun merlinwizard.fun afrocaribbeantv.com abdullahaljunaed.com dealsmisr.com blessedmommaboutique.com aircationairusa.world adomwaterfalls.world aircationairkenya.world sparkredit.pro pornwatching.live jadelaynne.info receive.games southerncharmroofing.com estilosv.com fluffndust.com www.futurestrong.com futurestrong.com regionsavings.online fartking.cloud tayzoric.com hrventri.com psagreenhydroseeding.com righttimeindustrial.com superlivesstockholding.com elonclaim.com www.elonclaim.com houstonalpine.com www.houstonalpine.com zionvson.us abundantmanifestation.com karthiknanchari.com innovaversecart.online boqorburhan.org plumpwa.pro primeautodealership.online pancing77xyz.online tcrime.info daniel-sanchez.art xn–2e0bt30azsg.com xn–oi2b43dg0pdkl.com xn–e02bt9uhph.com xn–hu1b90msvx.com aamedastudios.com surelogsmarket.com md-jo.com imonews24.com penaintegratedservices.com fancyfindsmartllc.com hypermarsrocket.com 24ninjas.com dbgoodwinhealth.online atlastelecomunicacionesflassas.com ezagu.com trustgreen.online vinayanugula.com maindconsulting.com www.ijp.codes conversionfuel.xyz abdullahrestaurant.com tryappointure.com seostrategeek.com luxuryyatchrental.com prestigiousplumbers.com useappointure.com www.synarchyschool.com synarchyschool.com tomiclub.online www.tomiclub.online altci.online www.pccag.org pccag.org new.dododesign.africa www.new.dododesign.africa www.old.walbauk.com old.walbauk.com bzzads.com etmw.net allaroundtheclocktowing.com tedungal.com varon-grinding.com hotdigideal.com zeezsdesign.com blakulheritagestudio.com kaecomp.com kasforce.website lsrstore.store ampaku.site maxbit.pro theveneratedname.online togetic.online skin-productsone.com www.skin-productsone.com binguai.xyz www.binguai.xyz littleblessingsfoundation.org www.littleblessingsfoundation.org racaspirenewyork.org btcbgenius.online abdirahmanmukhtar.net nirobtelecom.store whipyachts.org altinvest.online smartaccount.live leboncoinn.live chanarsugar.cam onlinecouplestherapy.health applianceguymiami.com altashafimedicalequipment.com couplesmassageokc.com newdomeestates.com easydoearn.com mepconbd.com softsaasdeal.com mydidactics.com marrakeschtouren.com skyblast.online texasconsumerchoice.net rirnkerebs.info radical86.xyz mbscu.us corotoagency.com lampworksoftware.com ftm-trade.pro blivcode.com electrikbikes.online latestcarsusa.xyz carsworldusa.xyz vpnimpress.com tgsoftware.services beachinsurance.pro advocacybots.com tecvisionarylab.com digikites.com softwev.com sctrusted.com milclashes.com grantpreparedness.com kanal24.top s5consulting.net cyberclouditservice.tech eotg.info 01cobranca.autos 03cobranca.autos 02cobranca.autos thechiman.com matchoncloudnine.com marianfood.com pleasurewayexcel.com fashions-cafe.com corawillows.media ndveloper.host facelesscreates.com c12mining.com procert-bh.com giantbikesusa.com tonshop.store imobilerepair.shop anvbusiness.store saptreeconsulting.com anvprintmart.com fincaensanjeronimo.com soglasheniemerov.com joykalinowskiphotography.com vizualwebs.com lolastuscansteakhouse.com mrqah.com voxadsmedia.com sinstoy.com pickupdropservices.com pekebuba.com weightlossclinicportland.com lafingo.com integritylawpro.com omaktours.com cypherlabs.online corporategates.com daralnasr.com sweetcreationsbyaesha.com optimategain.com igeekcare.net sliderboy.vip classicrcshop.org focusonevil.org tvzme.com activemediauk.com theecomaven.com surelinediagnostics.com meetusdrc.com macoglob.com igeekcare.com petstopets.com mtelcoin.tech histoken.online amarnathhelicapterbooking.com digitalbasellc.com passivegain.site valledemajes.website gamelife.store landratten.info dgprintingutuado.com ziggykugedera.com krudeinvestments.com bloominggarden.info mine.kushaltechs.online interconnectlegal.xyz websitebldrs.site softstate.online acta-sandbox-fr.online mylingo.live tinderrcam.us activeinternationalmx.com taylorjustin.com debestprovider.com coivam.com cookethebooks.com comprar-codigos-iptv-espana.com marxstreet.com laviut.com nuellasluxuryhair.com www.tshirt.monahari.com tshirt.monahari.com healthafcare.com sydsluv.com www.sydsluv.com www.mvhsmusic.com mvhsmusic.com nanosoft.best www.pescafam.com pescafam.com 1ks.org job.learnxit.com www.job.learnxit.com www.nbcontractinginc.us nbcontractinginc.us www.abdulrahman-m.com www.ayamtoto.gamepasti.store ayamtoto.gamepasti.store happybdaybrat.lol abdulrahman-m.com base.thebutlershop.org www.base.thebutlershop.org kaasuals.com collinsforestestate.com priapunyaselera.pro billyfin.live topgun.lat julienjungle.club topicdeal24.com cactusdriq.com virtualflowbookkeeping.com mmaternity.com midstreamengservices.com bellamichi.com baudoininterior.com bacandbeyond.com teamsarrow.org bdtprice.com silveraisle.com www.silveraisle.com foylce.com www.invitacionbodadl.com app.projet.ng www.app.projet.ng invitacionbodadl.com www.theruleofcars.com www.cool.thebutlershop.org cool.thebutlershop.org erbozetaspa.net uniqueadvertise.net stif2024.com oskarinevalainen.com www.dns.volodymyrhryhoriev.com dns.volodymyrhryhoriev.com whoup.xyz company.volodymyrhryhoriev.com www.company.volodymyrhryhoriev.com lucrobet.casino caremartplus.com jiyadback.com quadiromarketresearch.com www.quadiromarketresearch.com w0fi.xyz biofield.cfd citezentrust.com account.citezentrust.com www.account.citezentrust.com samueltochi.com project.thefoccus.com www.project.thefoccus.com www.spicybite.shop spicybite.shop www.giga5000ssr.com giga5000ssr.com www.kasofoundation.org kasofoundation.org soulsticeremedialmassage.com www.soulsticeremedialmassage.com www.haygelay88.com www.moon.volodymyrhryhoriev.com moon.volodymyrhryhoriev.com deckwizards.ca www.deckwizards.ca base.volodymyrhryhoriev.com www.base.volodymyrhryhoriev.com host.monahari.com www.host.monahari.com www.forest.volodymyrhryhoriev.com forest.volodymyrhryhoriev.com cashwage.site bountybox.site slotking303.org universes.dev anthozuqda.com turnaroundtown.com climaxgreen.com grovemay.com voteapi.afrozu.com www.voteapi.afrozu.com dissab.com www.inhisrodit.com inhisrodit.com termward.co.uk www.termward.co.uk www.justacre.co.uk justacre.co.uk lynnmead.com www.lynnmead.com www.kopenmedicijnen.com kopenmedicijnen.com cityburnabyjobs.com hashquota.site eastamsolicitor.org emmalinedatey.com vanillabakery.co staffordshireaeroclub.co.uk www.vanillabakery.co asemalqurashi.sa www.thevanishingworld.net thevanishingworld.net hulofficial.com webdev.codes abertoconsulting.com cm3trucking.com houstonmobilemassagestx.com enchantedeleganceaz.com demo-goa.org cost.pizza cyberdrill.online quantumventures.ltd drgavsingh.com facelessfusions.com weekayne.store worldspiritualassembly.com stzs.xyz succespoint.com protype-urls.wiki findloves.online

Open Ports Detected

143 2077 21 443 80 995

CVEs Detected

CVE-2007-3205 CVE-2013-2220 CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2024-5458 CVE-2024-6484

Map

Whois Information

  • NetRange: 198.54.112.0 - 198.54.127.255
  • CIDR: 198.54.112.0/20
  • NetName: NAMEC-4
  • NetHandle: NET-198-54-112-0-1
  • Parent: NET198 (NET-198-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: Namecheap, Inc. (NAMEC-4)
  • RegDate: 2015-11-13
  • Updated: 2015-11-13
  • Ref: https://rdap.arin.net/registry/ip/198.54.112.0
  • OrgName: Namecheap, Inc.
  • OrgId: NAMEC-4
  • Address: 11400 W. Olympic Blvd. Suite 200
  • City: Los Angeles
  • StateProv: CA
  • PostalCode: 90064
  • Country: US
  • RegDate: 2011-01-28
  • Updated: 2024-11-25
  • Ref: https://rdap.arin.net/registry/entity/NAMEC-4
  • OrgAbuseHandle: ABUSE2885-ARIN
  • OrgAbuseName: Abuse team
  • OrgAbusePhone: +1-323-375-2822
  • OrgAbuseEmail: abuse@namecheaphosting.com
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
  • OrgTechHandle: TECHT4-ARIN
  • OrgTechName: Tech team
  • OrgTechPhone: +1-323-375-2822
  • OrgTechEmail: tech@namecheaphosting.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
  • OrgTechHandle: EFIME-ARIN
  • OrgTechName: Efimenko, Igor
  • OrgTechPhone: +1-323-375-2822
  • OrgTechEmail: igor.e@namecheap.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
  • network:Class-Name:network
  • network:Auth-Area:198.54.115.64/26
  • network:ID:NET-214205.198.54.115.120
  • network:IP-Network:198.54.115.120
  • network:IP-Network-Block:198.54.115.120
  • network:Org-Name:Web-hosting.com
  • network:Street-Address:3402 East University Drive
  • network:City:Phoenix
  • network:State:AZ
  • network:Postal-Code:85034
  • network:Country-Code:US
  • network:Tech-Contact:MAINT-214205.198.54.115.120
  • network:Created:20211115151149000
  • network:Updated:20211115151411000
  • network:Updated-By:net-admin@namecheap.com
  • contact:POC-Name:Network team
  • contact:POC-Email:net-admin@namecheap.com
  • contact:POC-Phone:
  • contact:Tech-Name:Network team
  • contact:Tech-Email:net-admin@namecheap.com
  • contact:Tech-Phone:
  • contact:Abuse-Name:Abuse team
  • contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******

Share on: