198.54.115.94 Threat Intelligence and Host Information

Jul 27, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 198.54.115.94 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 42/100

Host and Network Information

  • Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader

  • JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: hphosts_emd

  • Country: United States
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Passive DNS Results: mercantilehomes.com fricandfondi.com backtoperu.com www.amazonsolutionspro.com braydenturner.net vbsoue.site fhmedicalservices.site pelisbl.lat amazonsolutionspro.com thirdaxisstudio.com downwipabj.com seajvvi.com yancyinmobiliaria.com bluetradingai.com genuspkrla.com whackabonk.xyz stratostocks.com yousufalicpa.com platehour.com shelikesthe.fun bytetobrand.com myadvicepage.wiki shadycrest.studio usefullychill.onl siszone.com ndww.watch omoko.shop igotthebest.world tiamedia.online lfg.camp dreamfundsolutions.com myrepsstore.com mutuellesfrance.com pourdecisionsblog.com joinmevip.com opecsonsignature.com endurancegeo.com flexformtech.us myprvportfolio.onl optimaxrealestate.com starpatterns.wiki midasyemen.com yubiapps.com wearestillat.work mixedreact.blog howabouta.world dailyroutine.guru douthinkitcan.fit aqualityfocus.work okemmanuel.tech albaridetounsi.space lseg.space discoveristanbul.org seagreensolutions.com nortonlifelocked.com clinicdentaldz.online ascendia.live 1-stream.org richsquadbd.com togovegas.com chargingtowardsacause.com guideprocess.wiki nftpropixles.com quickflng.pro dasreinvestments.com ithinksoyeah.rest quickfollowershub.com beast-fab.com claritydrop.com qeveriashqiptare.com usedconditioners.com dancetable.pro endurancedatasystems.com accdminerosdeguayana.com randomly.email itsanice.watch digitalasb.com myinvitational.blog drimovate.com itsasolid.club myprivately.blog beanandcheeseburrito.com zdeg.top www.zdeg.top z2ubuy.com hemllc.pro tablegrouprules.com calenduloveherbalhealing.com secretarygardn.com goldkinghoney.com itsaunique.club neverbefore.pro jeffreysccottlawfirm.com backtothe.network luxuriousshiny.watch driedwet.work itwasastrange.world uzishabi.org tunionxbase.com thatwasquite.email hybrain.net catchaquick.pro pianokey.pro iknowwhat.network itwasaninteresting.blog hiddengem.work onlyforthe.vip heartahdubai.com trustnetescrow.com nzgc.net ewab.blog contentsummary.online digwebsoft.info sambutfebuari.click rayakanimlekyuk.click wordmarketfx.com stockgainpulse.com sugarjulia.com handsdelivery.com brokersib.com natwexpat.com carolinepersonaltrainer.com didugetmy.email linusa.store didugetmy.vip mycpusafe.rocks kanayo.shop cashotask.online zoomeez.energy autodetailingtakeover.com thetradingsphere.com delroyholdings.com custgovsgp.com serenityhavenspah.com hoffmanrefrigerationac.com smtwcl.com zaddyonsol.com putinocupat.com nexlatech.com mylittlebungee.club theywanta.pro aygoow.work thisisyour.team www.kiwionsol.fun kiwionsol.fun formvalidation.org actechniciansolutions.com digitalhus.com deadreamersdelight.art westchestertrain.com chadxrp.com christophernathan.com nimerinsuranceagency.com hedgepigcollective.org academyhospital.online admin-geo.geo-sante.com www.admin-geo.geo-sante.com acacareforall.com geo-sante.com masterpaydemo.xyz thisishowwe.work ontheway.social beyondpixels.site polaslotmaxwin.org morerecent.autos turnbyturnwin.com cardagov.com sahilshopbd.com polaslotmaxwin.com www.aparadigm.ai aparadigm.ai vasahomesltd.com a1i2.site godido.org tamwiinpaper.com summitsphereexchange.com sprntguide.com mountbaylogistics.com www.visixtech.com visixtech.com suitcatsol.xyz personallyyours.store 82670531.shop inteligentroom.click visionmediaeg.com www.jobs-hiring.us jobs-hiring.us www.stitch-8.sslsthebest.com stitch-8.sslsthebest.com www.nicrainternational.org apegordog.com www.plugin.sslsthebest.com plugin.sslsthebest.com www.moones.sslsthebest.com moones.sslsthebest.com www.mounth.sslsthebest.com mounth.sslsthebest.com www.sonyter.sslsthebest.com sonyter.sslsthebest.com new.buundojobs.com www.new.buundojobs.com fazayit.com collinballin.xyz ci-ontvangen.site thejoesangfoundation.org fiscalprime.online arthasolutions.life adagio.homes thetatechstudio.com mexemail.com loyalitydepartmentllc.com iberiatransport-srl.com points2pesa.com globaltour-srl.com graphicmarts.com exploremadeira-srl.com buttonpressingsociety.org www.buttonpressingsociety.org timhortons-toronto.com royalpalmhavenluxury.com vedantnayak.online kointech.online singletary.solutions ecosupport.pro summerbrisebichons.online oncallsuppliesllc.com osocraftycreations.com notareasenyc.com newprairiehome.com factoryrecruit.com olutechictresources.com soccer6tips.com soccer13prediction.com scatlancredita.online kaoyaswap.org mcmeme.online fiveandtwo.digital toghubossempire.com villbees.com bonusjoinkomunitas.com jjbfloors.com uks-international.com nakamuradrywallinc.com rocketrushdispatch.com wehandlealltrades.com broadgoods.com jualfurniturekantor.com thelasthoney.com hidayatglobal.org fuckmelove.online onlyhookup.xyz elevatecustomerai.com art36-abuja.com contentstudiong.com globalequality1.com theozonetech.online abw-realestate.com nailzenllc.com www.bradvideo.store bradvideo.store paygatez.com elspotmarketing.com gist-lovers.com www.aposhnailspa.com aposhnailspa.com bilsus.com balboabuilders.net verduras-talavera.store maroma.store digitdom.org costamesabuilders.org z2u.guru visapathexperts.com hellfiresaints.com faraxsane.com sleekitech.com gitauinternationaltrade.com breezyybeauty.com test.ppai.site sawy.site profitplusai.site vantamayneset.online driveandthrive.golf solanaheroes.fun knigge.cloud glkimtze.app wappinstaller.com anantambahi.com theweedcompass.com shopqoltek.com millarsolicitors.com linkshajr.com used-vehiclesonline.com ispobangladesh.org actusports.eu polystyreneltd.com chekkit.xyz chekkitout.vip faastpt.site dotwela.online getchekkit.live chekkitout.info chekkittexting.info tdeverything.com cryptooin.com sharpartek.com lruitrasonics.com jolleybeggs.com 08transit.com nodemonoids.com rolimons-profile.com friendlyphoebe.com woodcocknature.org www.woodcocknature.org isexpressintl.com client.9xmovie.store www.client.9xmovie.store sacomunionb.com vipfurniture.store 9xmovie.store onlypussylove.shop appmoon.site iplayflix.store thebillingbeast.net frasiahbiz.store capitalizebiz.pro henchman-fiobs.org bratparty.online residerenz.info kayakcat.fun danshippingworldwide.com merittrustfu.com bluebirddesignsstudio.com ntxrealtyventures.com flyingmonkeydisposable.com fdealsadulthomes.com famousgroupqatar.com blackpen.biz plutolabsdisposables.com nampfilesil.com www.stitch-1k.sslsthebest.com stitch-1k.sslsthebest.com mumuai.xyz www.neverseenstarwars.onsol.meme neverseenstarwars.onsol.meme shipebase.lol baseparanoid.digital gummybase.lol zombee.monster bookofboobies.pics www.thoughtfulguitarist.com thoughtfulguitarist.com www.checkdm.onsol.meme checkdm.onsol.meme www.zombee.monster www.maytrustmicrolending.com maytrustmicrolending.com vconly.lol smtp.333connect.com marketwellsolutions.org curveportal.com biduhnwifdementia.lol www.biduhnwifdementia.lol maxwinweb.online retroanti.site sandovallandscapingllc.com www.sandovallandscapingllc.com andriwteit.onsol.meme retrogacor.site ptsd.lol meolibujo.app www.meolibujo.app suryatogel88.net onsol.meme catapult.wtf www.catapult.wtf superretro.xyz barizard.xyz tcaboct.vip myposter138.site franceticketsa.live barklogin.info letslearn.college collagewriters.blog aluxewears.com thecurvehorizon.com debgrayartistry.com mountsunsettravel.com iplayflix.com bjornniclas.com naijatechtsavvy.com karina-koinash-designer.com koinash.com riad-jouba.com trcakairdash.org airfieghtlogsdash.online ventacemexmexico.online cypressrealtynetworks.com grisfly.com www.test.onsol.meme test.onsol.meme movieofmeme.xyz www.movieofmeme.xyz ogconnect.xyz actusports.live dbpconsultoria.com norineinr.com www.lumiverses.com lumiverses.com clarissegonzalvo.com www.clarissegonzalvo.com www.infiniflooring.com infiniflooring.com www.orbitra.tech orbitra.tech freeeshopcodes.net messierservice.app thelivebook.com arobyte.tech affeyfoundation.org teruggaveontvangen.com caterthecauseinc.com crysterbank.com sicavideo.com getcssa.com green-xpress.com glostreamcap.com flositzconstruction.com clickforprofit.online gurudesigns.us coupons-cart.net nostalgia.land porn-tag.com chainibd.com azmfm2009.com advertorials247.com casinobonuswave.com cheapumrahcentre.com itjini.com hunarlink.com seryalda.com chrisnickson.com reclaimthatspace.com sawyerstowing.com recipescentre.info buundojobs.com fluidartisans.com fivermasterclass.com amedavset.online kunduchitakecarecenter.org clearyset.online rebeltrucker410.online arambhanews.com kecoaterbang.xyz onlinepresence.tech redowl.studio bakeryviral.shop blogger2reader.online gholdghsute.online hipposocial.app hoskycoin.com makeshiftwork.com blissfulbuddypawboutique.com jdmgatewayengines.com nicolemmccants.com paynash.net facilitaconsultant.online moviepls.com globalvisaaid.com programspure.com desense.net beyondreviews.net fgtekstil.net candccontractcleaning.com miles-tqulit.xyz futogabor.xyz hunnid.vip aigrokit.pro softwaredesignpartners.lat casesreports.info venturedive.lat softwareallies.lat thepestsolution.com tripswow.com thomexecutive.com carnouzz.com viralbrandingclips.com matrimoniosconproposito.com proximodestinotravel.com praguepartylads.com bengalsaaspro.com jessicabowmaster.com evopuro.com fitnesswhizz.com wiseconnector.xyz ftstee.shop nicrainternational.org r6bca.one localmeettoday.us al-abrajj.com

Malware Detected on Host

Count: 3 3b7735ffdd631218f441287be72897dd8747dd58ccbc8e3f294cbccfe89fd555 25084f7ff813899bd92fefb6fd856aafe79d817ca2e87681a7946b13aa91e412 c00d3a2f73ba8db3bd047f3a08f409c6b0608a9815515ff531bbecd54086b232

Open Ports Detected

2096 21 443 465 53 80 993 995

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2024-6484

Map

Whois Information

  • NetRange: 198.54.112.0 - 198.54.127.255
  • CIDR: 198.54.112.0/20
  • NetName: NAMEC-4
  • NetHandle: NET-198-54-112-0-1
  • Parent: NET198 (NET-198-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: Namecheap, Inc. (NAMEC-4)
  • RegDate: 2015-11-13
  • Updated: 2015-11-13
  • Ref: https://rdap.arin.net/registry/ip/198.54.112.0
  • OrgName: Namecheap, Inc.
  • OrgId: NAMEC-4
  • Address: 11400 W. Olympic Blvd. Suite 200
  • City: Los Angeles
  • StateProv: CA
  • PostalCode: 90064
  • Country: US
  • RegDate: 2011-01-28
  • Updated: 2024-11-25
  • Ref: https://rdap.arin.net/registry/entity/NAMEC-4
  • OrgAbuseHandle: ABUSE2885-ARIN
  • OrgAbuseName: Abuse team
  • OrgAbusePhone: +1-323-375-2822
  • OrgAbuseEmail: abuse@namecheaphosting.com
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
  • OrgTechHandle: EFIME-ARIN
  • OrgTechName: Efimenko, Igor
  • OrgTechPhone: +1-323-375-2822
  • OrgTechEmail: igor.e@namecheap.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
  • OrgTechHandle: TECHT4-ARIN
  • OrgTechName: Tech team
  • OrgTechPhone: +1-323-375-2822
  • OrgTechEmail: tech@namecheaphosting.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
  • network:Class-Name:network
  • network:Auth-Area:198.54.115.64/26
  • network:ID:NET-31257.198.54.115.94
  • network:IP-Network:198.54.115.94
  • network:IP-Network-Block:198.54.115.94
  • network:Org-Name:Web-hosting.com
  • network:Street-Address:3402 East University Drive
  • network:City:Phoenix
  • network:State:AZ
  • network:Postal-Code:85034
  • network:Country-Code:US
  • network:Tech-Contact:MAINT-31257.198.54.115.94
  • network:Created:20160506111645000
  • network:Updated:20160606124436000
  • network:Updated-By:net-admin@namecheap.com
  • contact:POC-Name:Network team
  • contact:POC-Email:net-admin@namecheap.com
  • contact:POC-Phone:
  • contact:Tech-Name:Network team
  • contact:Tech-Email:net-admin@namecheap.com
  • contact:Tech-Phone:
  • contact:Abuse-Name:Abuse team
  • contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******

Share on: