198.54.120.145 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 198.54.120.145 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 39/100

Host and Network Information

• Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader

• JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: techzoneperu.com edutechafrica.info dagash.shop ukhmrs.services farkaz.shop ongafpmoed.org studenpayroll.online brighthub.app aztrenda.com mempool-info.com byletech.com opendoorcpa.com nurse-j.com tinytummiesguide.com smmlabor.com dcollecte.com afirmfinancial.com www.theswiftsolutions.com theswiftsolutions.com realjapanesewhisky.com healthmindershospitals.org www.kerygma.pro kerygma.pro realjapanesewhiskey.com bearz.website candymag.click autonationmotors.com eletrofindstech.com premiumsoffer.com makmurhoodie.store sgadisinigcor.store flowersonessex.store wholesaleliquidationservicesllc.com madrista.com royaleinfinitygame-mobile2.com dev2.anitasmartweb.com www.dev2.anitasmartweb.com tecniverso.com www.fortunyx.com fortunyx.com anitasmartweb.com www.anitasmartweb.com colomboairportpickup.com jk-consultants.org gmass.sorder.cc www.gmass.sorder.cc ggmae.sorder.cc www.ggmae.sorder.cc www.andrejtomse.com hp12setup.online 12hsetup.xyz discovermaputo-srl.com vistabuild-srl.com subaielegal.com soulattest.us blissseller.com www.blissseller.com naturesbestafrica.org wrestle.house musphasedglobal.com inhouseprojectsconsulting.com cabellosperuanos.com www.cabellosperuanos.com microsoftbusiness.us dottcommercialisti.online xiaomistellar.com mixa-krusevac.com rpmautoworks.com market-places.online www.market-places.online aryasperu.com brotha2sista.com bobakattcoin.com oadhaynes.com measternmarket.com shandeliarivers.com www.bishcosales.com bishcosales.com fulltheater.online chemphys.info fafadoegahmanagement.com webthinkers.online webzex.online moticas.com secondhandcds.com mjirnstoybox.store signals.design paulstransportationservicesllc.com kindlovehealthcare.com rent-binfo.com renateengevold.com autoaf.online medbillfacility.com twocodingminds.com funforfriends.site concept-flow.com stanyoga.com triolosbireyes.com sunic.meme www.sunic.meme altmaded.com tailmatee.com infatuateharmony.com sparklingbass.com fabristfashion.com learnwarelabs.com welcomelibu.com cloudviddo.com filocorpstellar.com wheresweirdo.org nextgennav.org eliteproducte.website neirodoge.meme www.jcib.org jcib.org freeearns2.site andheart.biz sanci.site piclie.site bugzbuster.net mocachi.lol asady.online inquireloans.info visionarycloudconsultant.com smartscorecenter.com simpleincomecoach.com innovatecodingcourse.com prototekne.com picardanne.com officspaces.com ramavapestore.com nextgentrends.pro ramavapes.org fidocoin.fun watkinspaintandrestore.com koh-samui-villa.com rtpbaharbet.site aiindepth.com yeti.baby husten.shop mtf-services.net vodi.wtf trillonthecat.org deliver-eaze.com magmatextli.com markotalijan.com bronnbayfinance.com golfcartmarkt.com knowpuntacana.com cpanel.oraclestockfx.com adonujoseph.com quantalvis.com www.ethneural.com ethneural.com khridar.com www.ecom.ducrosstech.com ecom.ducrosstech.com decorumhub.com zee.kaasmedia.site www.zee.kaasmedia.site neuragpu.org makeethgreatagain.xyz start.amlbot.initiatereport.com kaasmedia.site prodatabase.xyz fitflare.xyz vault-ai.tech stmaryschurchofchrist.org curlaeset.online rogjthset.online cocotoken.meme westpcltd.com avsidealinvestments.com truthmarketings.com ducrosstech.com talhabasharat.com sinlessmart.com sktrc.com mismobodyart.com lamondeoilgas.com lenonquinn.com initiatereport.com ismilebestdental.com pesusofsolana.com bpcelite.com 1hsafaris.com firstclasscreditcare.com narp-meme.xyz luxurytoken.pro cpgroupinc-stellar.com makinajote.com loteriadoale.com ponchobase.com omegagains.com officialdankcarts.com nathaniel-mays.com furmaggiore.com rubico-websolutions.xyz jptechnologies.store taxonweb.live private-wealth.broker twistedbydesignusa.com theelearninglibrary.com mxpowermed.com masjidbroadcast.com 29urban.com kenduinuecosystem.com ruzara.com vrticmaliveseljak.com localgeeksrus.com ampsolutech.com oraclestockfx.com byochemistry.site www.blooddonor.developerabed.com blooddonor.developerabed.com thebakerchurch.com www.puppyanimals.com puppyanimals.com myxflinityinternet.com solehabit.com www.solehabit.com supremacygaragedoorservice.com worthix.cloud curso-xtream-ui.com dubai-watertanker.com www.dubai-watertanker.com devsconfig.com www.advanced-ecom.devsconfig.com advanced-ecom.devsconfig.com www.consultralegal.com consultralegal.com city2084.com susmatec.com www.susmatec.com midanatrust.com wristwatch.bio www.wristwatch.bio midanafinance.com www.lms.evangelultimatepremiumschool.com lms.evangelultimatepremiumschool.com www.oxanayoga.com oxanayoga.com www.basirmukhtar.com basirmukhtar.com www.courses.middleislandfitness.com courses.middleislandfitness.com www.abmminerals.com abmminerals.com archorinvestment.com www.assignment.worldofcubes.xyz assignment.worldofcubes.xyz yourexcelcleaning.com www.yourexcelcleaning.com www.tinshudigital.com crytrustf.xyz www.crytrustf.xyz www.simpleexpertfxtrading.coinfxtrademinings.com simpleexpertfxtrading.coinfxtrademinings.com atilatopuk.com www.atilatopuk.com corustar.com www.corustar.com www.ejnl.store ejnl.store summitonlines.com namakemonocafe.com www.brtdigital.in brtdigital.in greenenergyupgrades.com.au www.greenenergyupgrades.com.au www.sneakersicons.com sneakersicons.com www.amadmin.mobileturn.com amadmin.mobileturn.com www.techunderline.com techunderline.com dr-reem.elyaqen.com www.dr-reem.elyaqen.com www.forn.elyaqen.com forn.elyaqen.com www.laurelashgrove.com laurelashgrove.com training.garudavirtual.org www.training.garudavirtual.org www.oakridgealfutah.com www.thedewlez.com www.wimaschool.com www.nisr.elyaqen.com nisr.elyaqen.com www.bernardoyama.com bernardoyama.com quickbokhelp.com welkinvision.com www.welkinvision.com www.juarafilter.com juarafilter.com store.corustar.com www.store.corustar.com www.hollywoodcelebritymanagement.com hollywoodcelebritymanagement.com afterlifetarot.com www.realstatesite.developerabed.com realstatesite.developerabed.com pomeranianland.com www.pomeranianland.com www.cloudai-analytics.com cloudai-analytics.com odfj-top.com firstaltlanticonlineservice.marvinwebb.com www.firstaltlanticonlineservice.marvinwebb.com hackerlocal.us mavis.marvinwebb.com www.mavis.marvinwebb.com www.rockhyip.marvinwebb.com rockhyip.marvinwebb.com maviswanczyk.marvinwebb.com www.maviswanczyk.marvinwebb.com www.districtdisinfectant.com dogtrackerstore.com www.dogtrackerstore.com shopwoodpellet.com www.shopwoodpellet.com dqdispatchinglogistics.com www.dqdispatchinglogistics.com www.johnbloggs.com johnbloggs.com mycable-tv.com www.msocial-finances.com msocial-finances.com scuttmedia.com www.scuttmedia.com www.cheapbundle.scuttmedia.com cheapbundle.scuttmedia.com thompsongaragedoorrepair.com www.thompsongaragedoorrepair.com unitedgaragedoorrepair.net www.unitedgaragedoorrepair.net www.uptowngaragedoorrepair.com uptowngaragedoorrepair.com www.petircuan.click petircuan.click datavowel.com cygroup.com.ng sales.cygroup.com.ng bajubaru.shop mascacu.org besttest.lol lesterys.com latesstonline.com elyaqen.com www.thedailyenglish.co.uk thedailyenglish.co.uk www.console.benvidologistics.com console.benvidologistics.com www.rockstargaragedoorrepair.com rockstargaragedoorrepair.com vivagaragedoorrepair.com www.vivagaragedoorrepair.com www.benvidologistics.com benvidologistics.com invintery.com www.invintery.com www.onatarys.com onatarys.com christmaswreaths.art www.christmaswreaths.art www.veritasvalue.com lebanonfc.us sidraandhaider.com sipwhiskeyshop.com credexcapitallimited.com mslmcu.us insight-wssystem.com www.insight-wssystem.com www.acrne-eco.com acrne-eco.com emulaingio.info mpkmontgomery.homes eduverse.help www.smartinscoi.online smartinscoi.online www.tradezeefx.com tradezeefx.com fastrobux.xyz www.fastrobux.xyz www.sparkypomhome.com sparkypomhome.com www.foxtalescabin.com foxtalescabin.com www.loopstore.com.co www.anddeath.com anddeath.com coinfxtrademinings.com crestcapitallimited.com www.crestcapitallimited.com marabout-touneche.com www.onlinedocs.org onlinedocs.org dataduck.dev tenlek.com.ng thedewlez.com stonebridgeminers.com quantum-project.pro www.lyriad.ma lyriad.ma expressaircr.com agrofirmtech.com www.agrofirmtech.com distribuidorafj.com buymyacres.com www.isseconsulting.com isseconsulting.com bubblemerches.live www.bubblemerches.live nourelectro-tienda.com www.nourelectro-tienda.com www.multi-shopmarket.com multi-shopmarket.com www.drmuhammadibrahim.com drmuhammadibrahim.com evangelultimatepremiumschool.com www.evangelultimatepremiumschool.com www.junkpatroltulsa.com www.gl-xms-xiaomi.com.jorgeglem.com gl-xms-xiaomi.com.jorgeglem.com aktiveteam.com www.aktiveteam.com lincolnsale.com dispatchworldexpress.com account.tradeversefx.co www.account.tradeversefx.co www.tradeversefx.co tradeversefx.co www.trademaxstudio.pro trademaxstudio.pro assurancerelianceworth.com www.dryerventcleaningaz.us jackluke.co.uk www.jackluke.co.uk nwwearelegion.com www.nwwearelegion.com cannonhouse.email www.cannonhouse.email subscriber.brtbroadband.in www.partner.brtbroadband.in partner.brtbroadband.in brtbroadband.in www.brtbroadband.in 2stevenstore.shop ltdeimmediatedgeoct.com immmediateedgede.com bikegamediscount.com enforceservices.com www.urdupoet.xyz urdupoet.xyz www.accounts.flac-finance.com accounts.flac-finance.com www.flac-finance.com flac-finance.com teldeadiario.com www.teldeadiario.com www.northviewk9.com northviewk9.com www.couchguyz.xyz couchguyz.xyz dapprecovery.xyz www.dapprecovery.xyz i-tapp.com www.i-tapp.com reddenbox.app www.reddenbox.app ojiuoom.online labucheboischauffage.com www.labucheboischauffage.com www.leveringsproces.live leveringsproces.live dudesdonair.com www.dudesdonair.com dreamfootballschool.com www.dreamfootballschool.com hill47bt.live www.hill47bt.live www.onlinebetta.com onlinebetta.com pallusa.net www.runonflux.co runonflux.co www.virtual-brilliance.com virtual-brilliance.com www.podcast2peer.com podcast2peer.com aiapaxmdrtday.com www.aiapaxmdrtday.com www.ibank.venorm.online ibank.venorm.online www.samuiweedshop.com samuiweedshop.com www.apritzo.com hypixel.claims useaaglefcu.org

Open Ports Detected

21 443 80

CVEs Detected

CVE-2007-3205 CVE-2013-2220 CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2024-5458 CVE-2024-6484

Map

Whois Information

• NetRange: 198.54.112.0 - 198.54.127.255
• CIDR: 198.54.112.0/20
• NetName: NAMEC-4
• NetHandle: NET-198-54-112-0-1
• Parent: NET198 (NET-198-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Namecheap, Inc. (NAMEC-4)
• RegDate: 2015-11-13
• Updated: 2015-11-13
• Ref: https://rdap.arin.net/registry/ip/198.54.112.0
• OrgName: Namecheap, Inc.
• OrgId: NAMEC-4
• Address: 11400 W. Olympic Blvd. Suite 200
• City: Los Angeles
• StateProv: CA
• PostalCode: 90064
• Country: US
• RegDate: 2011-01-28
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/NAMEC-4
• OrgTechHandle: TECHT4-ARIN
• OrgTechName: Tech team
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: tech@namecheaphosting.com
• OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
• OrgTechHandle: EFIME-ARIN
• OrgTechName: Efimenko, Igor
• OrgTechPhone: +1-323-375-2822
• OrgTechEmail: igor.e@namecheap.com
• OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
• OrgAbuseHandle: ABUSE2885-ARIN
• OrgAbuseName: Abuse team
• OrgAbusePhone: +1-323-375-2822
• OrgAbuseEmail: abuse@namecheaphosting.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
• network:Class-Name:network
• network:Auth-Area:198.54.120.0/24
• network:ID:NET-123552.198.54.120.145
• network:IP-Network:198.54.120.145
• network:IP-Network-Block:198.54.120.145
• network:Org-Name:Web-hosting.com
• network:Street-Address:3402 East University Drive
• network:City:Phoenix
• network:State:AZ
• network:Postal-Code:85034
• network:Country-Code:US
• network:Tech-Contact:MAINT-123552.198.54.120.145
• network:Created:20200619155759000
• network:Updated:20200619155759000
• network:Updated-By:net-admin@namecheap.com
• contact:POC-Name:Network team
• contact:POC-Email:net-admin@namecheap.com
• contact:POC-Phone:
• contact:Tech-Name:Network team
• contact:Tech-Email:net-admin@namecheap.com
• contact:Tech-Phone:
• contact:Abuse-Name:Abuse team
• contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******