198.54.116.212 Threat Intelligence and Host Information

Oct 28, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 198.54.116.212 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 42/100

Host and Network Information

Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader
JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762
View other sources: Spamhaus VirusTotal
Contained within other IP sets: hphosts_emd

Country: United States
Network:
Noticed: 1 times
Protocols Attacked: SSH
Passive DNS Results: www.guestofrehman.com i95.online truorganicrestoration.com bafmao.com woodsorganics.com onefivemarketing.com caringconcierge.net maritbetapp.com seomission.online ambiencetvofficial.com www.kodebook.tristanviernes.com kodebook.tristanviernes.com www.tristanviernes.com www.capstone.tristanviernes.com capstone.tristanviernes.com www.starboardnetworks.com starboardnetworks.com www.lexiscope.ai lexiscope.ai mahoni88pohonemascuan889.xyz metaverseplatforme.xyz myfaifo.com bnbubblescleaning.com thekosmals.com magiksos.xyz getyourdeals.store pikkin.org purpleguy.online purpleguy.lol mahoni88gacor.fun nexacom.agency alexiptv.com appdaomaker.com diamond-streamz.com hexagondcrd.com mroxanamurgoci.com pyolinursingservices.com bijwerkenweb.com kbtouc-bekb.com getty.mom gifty.mom oxygencommercial.com isabellerecipe.com managecap.com theuniversityofmarriage.com alkhalijyah.sa ugommahilda.com travelscopeinc.info luqi-france.com bapakkauddos.org animaliberty.org pearlsea.ltd benjaminogbo.art asml-stellar.com sunrunnertravels.com zomidarbari.com balticacharge.com getrony.com nilimohajer.com petinstruct.com asbestosremovalanddemolition.com argosfinances.com eliteassexholding.com tenstepstoapassionatelife.com apkcafe.net 0xgas.tech arianarecipe.online juliarecipe.online trasaproperties.com techcarecentral.com tinagondah.com lavishdumonde.com infalet.com quizquotidien.com plywine.com guestofrehman.com gtg-code.com moreen-cosmeticshop.store patagoniasafaris.com corvusjanitorial.info onetortoise.info lanvdxx.com funwithloops.com capitolpropertyservicesltd.com healthbase.studio shapeet.com wolfchildcreative.com www.moreenonline.shop moreenonline.shop argofinance.us sparkodeals.com mktpulsefx.com msdeliverycompany.com pod2vid.com encontrandote.com oxazepamkopen.com www.oxazepamkopen.com rayrecalls.com www.rayrecalls.com www.electricalcontractingllc.com electricalcontractingllc.com oumniaessebbari.com www.oumniaessebbari.com www.thegisthouse.com thegisthouse.com www.clinfi.com andscode.xyz codealf.store therebbelprophet.com www.skikima.com skikima.com tradersinn05.com www.tradersinn05.com bxvytet.xyz warriorsintech.org marketing123.pro sprob.org elementchain.org smallcow.online firstget.online thetravellingtroll.com codebos.com saisupportworker.com globalhdcamstore.com contiflextrade.com www.contiflextrade.com www.votes.jck247.com.ng votes.jck247.com.ng www.uicofvt.org uicofvt.org successvendors1.online www.successvendors1.online legitdoc.shop www.legitdoc.shop datafocusgroup.com www.datafocusgroup.com www.any.codebos.com any.codebos.com www.test.sahantraders.com test.sahantraders.com dlegestion.com www.dlegestion.com www.membershipinfo.center ss.membershipinfo.center www.ss.membershipinfo.center www.sahantraders.com sahantraders.com gaula.mx www.gaula.mx npg.homes www.npg.homes laalke.ma www.iqmarketsoption.com www.rp.membershipinfo.center rp.membershipinfo.center www.revampworld.org revampworld.org www.silversungames.com silversungames.com www.tradeconfident.net tradeconfident.net www.neomblocktech.com aducotender.com www.aducotender.com blog-for-you.com mimejorcredito.net casimirotrans.com www.casimirotrans.com tristanviernes.com taviamori.com colombiaybo.com henbccc.com maxiexpresscompany.com purwor.com blcfinanz.com kafpropertiessl.com fortradings.com www.jkmarketingsolutions.biz jkmarketingsolutions.biz cariocariodigital.org www.cariocariodigital.org blendgineer.com www.blendgineer.com www.mbfinb.com mbfinb.com www.kaspropertiessl.com kaspropertiessl.com enptv.store www.enptv.store qanjailva.com www.qanjailva.com remove-ref-uk.com www.remove-ref-uk.com aucotender.com www.aucotender.com formatclientibp.com www.formatclientibp.com apkchip.net www.apkchip.net xn–treor-kib.connect-suite.online www.xn--treor-kib.connect-suite.online www.hakurai.xyz hakurai.xyz connect-suite.online www.connect-suite.online digital.cariocariodigital.org www.digital.cariocariodigital.org foodspot.digital www.foodspot.digital alpha-tradings.com fairyskintreatment.center www.fairyskintreatment.center www.chelseaslot.pics knittingthebones.com chelseaslot.pics www.elsembradorluz.com tradeexblock.com destinallenmichaelparquetjunior.com padmaintl.com ocdautomotive.net www.ocdautomotive.net www.apkzoor.com apkzoor.com archbbank.org www.archbbank.org www.easinthec-suite.com easinthec-suite.com www.sparepartauto.com jacattireltd.com www.radyo.delal.net radyo.delal.net webchat.wsohbet.com www.webchat.wsohbet.com www.ircd.wsohbet.com ircd.wsohbet.com www.webchat.ozlemsohbet.org webchat.ozlemsohbet.org www.irc.ozlemsohbet.org irc.ozlemsohbet.org wsohbet.com www.wsohbet.com www.ozlemsohbet.org ozlemsohbet.org irc.delal.net www.irc.delal.net www.test2.delal.net test2.delal.net www.irc.wsohbet.com irc.wsohbet.com natalie-camargo.us www.thesupercollider.com 4gotriacademy.com www.4gotriacademy.com buyiterawand.com www.buyiterawand.com www.kinsleeroberts.com kinsleeroberts.com primis.infinitesolutionsmw.com webchat.delal.net www.webchat.delal.net crafthouse.ng www.crafthouse.ng crafthouse.com.ng www.crafthouse.com.ng coinboxtrade.com www.coinboxtrade.com www.spectroncoin.com spectroncoin.com www.trademine.ltd trademine.ltd www.delal.net delal.net www.ftxtesla.com ftxtesla.com www.thecrafthouse.africa thecrafthouse.africa brandedai.com www.brandedai.com www.leadspipe.net leadspipe.net www.dlegroup.online dlegroup.online www.aceoptimumdelivery.com aceoptimumdelivery.com voyageavecinnocent.com voiceoflangadu.com www.voiceoflangadu.com www.amer1caboa.com amer1caboa.com farmedolnaderpos.com www.farmedolnaderpos.com www.kyokkuyo-eu.com kyokkuyo-eu.com www.gxmio.xyz gxmio.xyz www.palendortyapoja.com palendortyapoja.com www.shirleywoodwardministriesllc.biz www.globalaccessfastservice.com infinexinvests.co www.infinexinvests.co www.sugaryumyum.com www.georgesbarbershops.com georgesbarbershops.com recon2fa.store zenfinancesltd.online homekhedma.cam apextradeoptionx.com apex-limited.com standardremitb.com cbi.realestate www.spot.software spot.software www.infinexinvest.co infinexinvest.co www.onlyfailures.com onlyfailures.com kimgrandbear.com www.kimgrandbear.com www.wonnft.xyz wonnft.xyz www.intimacy.beauty intimacy.beauty gundaandmalimiadvocates.com www.gundaandmalimiadvocates.com www.yannorsauto.com yannorsauto.com metalviralico.com www.codeabletest.aonumahiroyuki.com codeabletest.aonumahiroyuki.com allrugin.com emldcapital.com jbcantonale.com www.jbcantonale.com 4dbank.globalresoursesloaninvestment.online www.4dbank.globalresoursesloaninvestment.online kahmeelat.subhanallahventures.com www.kahmeelat.subhanallahventures.com martaccelerate.com martbarter.com live.padmaintl.com www.live.padmaintl.com yuzadintegratedcompany.com dreamlivetv.com www.dreamlivetv.com ways2weightloss.com credmigros.com hypewox.com gemiinin.azureweb.xyz www.gemiinin.azureweb.xyz www.discoverygardens-dubai.com discoverygardens-dubai.com www.chrisprice.info chrisprice.info www.azureweb.xyz azureweb.xyz www.takemele.com takemele.com www.pentagonfcfx.com pentagonfcfx.com www.carportstentsandsheds.com carportstentsandsheds.com www.mynewlife.fun mynewlife.fun www.sunra-distribution.com sunra-distribution.com cbirealestate.pro www.cbirealestate.pro varacityfxmarket.com www.varacityfxmarket.com www.mudebem.com mudebem.com atcloudmedia-api.com agflowvalues.com trustdijah.com lineo-store.com infinitesolutionsmw.com greatnessinmotioncc.com gramcapitals.com kenmerk-platform.com kartfront.com rinno.pro subhanallahventures.com www.subhanallahventures.com 01citizens.click atmediacloudautologin.com www.atmediacloudautologin.com pannell-log.me www.pannell-log.me www.pykevision.com pykevision.com www.bitcointradinginvestments.com bitcointradinginvestments.com faithchecker.org www.faithchecker.org www.aim.university aim.university ww.za.com www.ww.za.com desoda.com www.desoda.com www.mcbonza.com mcbonza.com log.zilloxfx.com www.log.zilloxfx.com rccggracesanctuarysk.org www.rccggracesanctuarysk.org www.dakrys.in dakrys.in www.splashlogistics-intl.com splashlogistics-intl.com zilloxfx.com www.zilloxfx.com www.mainmore.us mainmore.us www.mononastatesavings.online mononastatesavings.online www.anchorconstruction-eg.com anchorconstruction-eg.com www.baaadvisory.com credotrade.org inv.metaprime-apes.art www.inv.metaprime-apes.art sender.coindropsappupdates.online www.sender.coindropsappupdates.online coindropsappupdates.online www.coindropsappupdates.online alvionpask.com dbs-offshore.com www.capitalemployment.online capitalemployment.online blockghostek.org surprisesportsshirts.com iqmarketsoption.com www.greenlandforestries.com greenlandforestries.com goranstevanovich.com www.qaimshop.com qaimshop.com kenneldiamondgd.com www.kenneldiamondgd.com www.rockymountainsfarm.com rockymountainsfarm.com www.live.metaprime-apes.art live.metaprime-apes.art www.beverlube.com beverlube.com www.citizennzs.xyz citizennzs.xyz healthdeclarationformsrilanka.com www.healthdeclarationformsrilanka.com www.arrivecanonline.com arrivecanonline.com airsuvidhaform.com www.airsuvidhaform.com www.otpremium.metaprime-apes.art otpremium.metaprime-apes.art metaprime-apes.art www.metaprime-apes.art www.miguelmontana.com mazethegame.99kalitkar.in www.mazethegame.99kalitkar.in clarkequipments-securedpdf.xyz kominsa.com www.kominsa.com app.betamoon.finance www.app.betamoon.finance betamoon.finance www.betamoon.finance photocreationindia.com www.photocreationindia.com clarknewsblog.xyz www.clarknewsblog.xyz therightinvestment.org www.therightinvestment.org besconpaints.com www.besconpaints.com osr.membershipinfo.center www.osr.membershipinfo.center ra.membershipinfo.center www.ra.membershipinfo.center www.nrr.membershipinfo.center www.a.shoratbidan.com a.shoratbidan.com upsoniconline.com secure.upsoniconline.com www.secure.upsoniconline.com www.mollymacdesigns.com swag.com.pk www.swag.com.pk www.dogesfaucet.com dogesfaucet.com glenwang.com www.glenwang.com shielded-guard.com www.shielded-guard.com www.wpbparks.com www.karenchrisman.com bestwayll.com elitegain.ltd

Malware Detected on Host

Count: 7 9b5c9bb223379da8dd25f93694826d79f778b7eb21161bc00d09d393a816f3f3 1e21e51df4e3f6eb92a3dc20c1012a7adb23f7a31b82cfa1ef424d660b3561f6 8b784cb581466a1ecac1e859bf2043775081b7e5fed7fbe6c3ac0e23268bd894 5fc0c551409cb7fa09287647ceda4c113127d8b869b4e5090f9c0f489999f238 263fac7910e1fc825b24d81f94155318a0b2d09511e6cf4b4613253594b9eaae 3bdebd5b6be6eef53d4473f6af39e379b247b9bc977a0d76860fdc4572168ef8 154e1a4fcbbbe755c37ab51caba9d7d171813524262f72fd44e5319019caaba7

Open Ports Detected

110 143 21 443 465 53 587 80 995

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331

Map

Whois Information

NetRange: 198.54.112.0 - 198.54.127.255
CIDR: 198.54.112.0/20
NetName: NAMEC-4
NetHandle: NET-198-54-112-0-1
Parent: NET198 (NET-198-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Namecheap, Inc. (NAMEC-4)
RegDate: 2015-11-13
Updated: 2015-11-13
Ref: https://rdap.arin.net/registry/ip/198.54.112.0
OrgName: Namecheap, Inc.
OrgId: NAMEC-4
Address: 11400 W. Olympic Blvd. Suite 200
City: Los Angeles
StateProv: CA
PostalCode: 90064
Country: US
RegDate: 2011-01-28
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/NAMEC-4
OrgTechHandle: EFIME-ARIN
OrgTechName: Efimenko, Igor
OrgTechPhone: +1-323-375-2822
OrgTechEmail: igor.e@namecheap.com
OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
OrgTechHandle: TECHT4-ARIN
OrgTechName: Tech team
OrgTechPhone: +1-661-310-2107
OrgTechEmail: tech@namecheaphosting.com
OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
OrgAbuseHandle: ABUSE2885-ARIN
OrgAbuseName: Abuse team
OrgAbusePhone: +1-323-375-2822
OrgAbuseEmail: abuse@namecheaphosting.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
network:Class-Name:network
network:Auth-Area:198.54.116.192/26
network:ID:NET-30665.198.54.116.212
network:IP-Network:198.54.116.212
network:IP-Network-Block:198.54.116.212
network:Org-Name:Web-hosting.com
network:Street-Address:3402 East University Drive
network:City:Phoenix
network:State:AZ
network:Postal-Code:85034
network:Country-Code:US
network:Tech-Contact:MAINT-30665.198.54.116.212
network:Created:20160331185721000
network:Updated:20160418031650000
network:Updated-By:net-admin@namecheap.com
contact:POC-Name:Network team
contact:POC-Email:net-admin@namecheap.com
contact:POC-Phone:
contact:Tech-Name:Network team
contact:Tech-Email:net-admin@namecheap.com
contact:Tech-Phone:
contact:Abuse-Name:Abuse team
contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******

Share on: