198.54.120.64 Threat Intelligence and Host Information

Apr 03, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 198.54.120.64 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 44/100

Host and Network Information

  • Tags: agenttesla, agentteslaexe, arkeistealer, azorult, azorultexe, danabot, darkrat, dridex, dridexopendir, emotetheodo, formbook, gandcrab, gozi, hancitor, hawkeye, heodo, icedid, kpot, kpotstealer, loader, loki, luminositylink, nanocore, nemty, netwire, phishing, phorpiex, pony, qakbot, qealler, quasarrat, raccoonstealer, remcos, remcosrat, servhelper, stealer, systembc, trickbot, troldesh, zloader

  • JARM: 3fd3fd15d3fd3fd00042d42d000000038eaaf490bec8dc33757f165ce01762

  • View other sources: Spamhaus VirusTotal

  • Country: United States
  • Network:
  • Noticed: 2 times
  • Protocols Attacked: SSH
  • Passive DNS Results: zelcron.net academicresearch.cloud discreetshop.us thawaqjuices.com srkglobalz.com houses4salekenya.com mentorinfitness.com legendlingerie.com poopypuppypatrol.com fantanylsupplier.com monkeystransport.net hqdevelopmentservices.xyz emilylux.vip httpsagmed.site therapeuticrelease.org jhantugardentools.info trevcarshots.com designtofabricwear.com havintrust.com quicksignsanaheim.com customluxstudio.com clothwet.com buyerfinders.net neemadoggyhome.store logisticslink.site app-liquidify.org paitoangkalogin.org overreach.group wanderwelllifestyle.com donstower.com compradiplomas.com skyoxwatercompany.com purealignlife.com gwjopatio.com tabernaclesofworship.com rain-email.com newclos.info serious-scents.com gobestfinancial.com ristechy.org echothread.org p500trade.online theblindbuilder1.com tikiparadisebook.com thealhub.com ddjunioralpha.com sunnyseedpro.com leylafashion.com riamsplace.shop cfiy.online dinedriveexplore.com daniramosphotography.com vargasteams.com homy-lab.com kelmartex.com upperroom.space ottawaportraitphotographer.com portraitphotographer.studio blockchainrt.help portraitphotographer.biz app-medfile.com iziautos.com jannetics.com aeye.ink doorofreturngh.com lex520.com bivas.ppcsurfer.com www.bivas.ppcsurfer.com coolapps.online savings-planner.com jenniferfan.us check-drilla.com sermicanides.com hushcannabrand.com mehalventure.com plsswa.com gettrumpmemes20.com triandamedia.com folabinuel.com remmed.pro glassbuilt.net brandoncisneros.net ppssppgames.cc themainapp.tech tyraai.org aicontentstudio.org woodencraftybd.com winnersgrouporganization.com imagin8studios.com eponarisewisdomschool.com ace-horizons.com jehmcapitalsolutions.com www.jehmcapitalsolutions.com ultragranite.co.uk marketosolution.site livignotour.com winwaste.org shalestone.us mufg–jp.com www.geezanaan.xyz geezanaan.xyz pagebuilder.cayacontadores.com www.pagebuilder.cayacontadores.com goldsaltpk.com blog.sarapsl.com investigacionesmasasesorias.net debugzone.pro jugabet.pro courtesygas.org radoslaw-kopec.org ghsensordash.online fcareg.online whitaswhit.art alhadidiigroup.com mcdupes.com zerostrike.dev alvarezinstallers.com daftariapp.com stellarcargurus.com metawinweb3.com getholywater.com munchafrica.com fastloto.games www.m.coralforestdigital.com m.coralforestdigital.com powerhouseexpress.net thejusfoods.com www.thejusfoods.com cooldata.website shellstellar.org momentummatrix.info travelinl.com dailyproductivityhacks.com coralforestdigital.com validatorrestore.com laurendorin.com psseswatini.com gameknightz.com noobtest.com www.kimitexpress.com olivesandapplesauce.com newvisionarylearning.store restaurantsolution.org emmyautos.online webappfree.info raybushbooks.info hypehammy.fun somsetwears.com grupo-hfc.com keewahs.com redswebsolutions.com theenlightenedorganisation.com www.netflx.datawebsys.com netflx.datawebsys.com whalesacademy.com sumbartoto-zone.info deprixaproshipment.com sulleyserengetiadventure.com summitrealtimedigitalmarketing.com sgmanapayment.com uillinoisedu.com firestormevents.com alphabetstellar.org www.alphabetstellar.org lerstrillven.com trackingbd.com sportsnova.co www.sportsnova.co arbabasimllc.com www.chat.geminor.live chat.geminor.live jessicakstidd.net gonelsecurity.co.tz ticklyst.com deepclashgaming.com monetiza-tu-experiencia.com powerkingtips.com friospana.com www.kerotix.pro kerotix.pro onesoftit.net soon.geminor.live www.soon.geminor.live www.web3.hamzi.xyz web3.hamzi.xyz web2.hamzi.xyz www.web2.hamzi.xyz flashdiscountoff.com innovationsales.xyz shipmonforsure.shop alqishla-sb.com anantinterior.com adscraftagency.com aimsheavymachinery.com dawidslysz.com cognifitt.com makazigarden.com proptechroundup.com betrun-casino.com isismarket-consulting.com willdata.net pawcoin.pet renaissanceporterranchhoa.org tidaltechmarine.com hottyjanfer7867.com bestblendllc.com financialmarketcheckings.com tophotcasinos.com 10kdigitalmarketingagency.com otjunkcars.com saoskitchen.com theflowersaround.us ehafoundation.org pafikualasimpang.org riteshrana.engineer zapethglobalba.com linitytrades.com deewanekhas.com akitawatchdog.com us-propertysolutions.com umm-saidqa.com fytanzaniaspecialist.com w3insiders.com finiexchemicals.com www.finiexchemicals.com crownornaments.com wealthprimepro.com speechsprint.com mawarslotselalu.com hefoarchive.com marobona.com bestbabyhighchair.com protraegesipro.com angelinaeddins.com globetrottersng.com alternatif.dragonkingsharun.com www.alternatif.dragonkingsharun.com hram.hamzi.xyz www.hram.hamzi.xyz ellipal.cloud thereallocators.com halloimpact.com ayesha.hamzi.xyz www.ayesha.hamzi.xyz worldtransportagency.world www.muqsit.hamzi.xyz muqsit.hamzi.xyz towelkhodam.com mariarodriguezelias.info buildersb.com mivaanhcs.com imsconsultantllc.com olabiofoods.com duckyonton.xyz azurewebsite.site adminoffice.info yallateri.cloud broker-ai.capital carpalawyers.com cassiemorien.com listing-ksl.com prolificforex.com phonicschemicals.com boxatsa.com gungebucket.com edessaskye.com fortrealhomes.com fifinemix.com sotainvestmentlimited.com betternotcallruffu.com homesolutionarizona.com takeit.fun dijaminaromatoto.site toastyboastyreviews.com capitalcatalystltd.com spottedsprouts.com musicinthesun.com insafcreation.com organicmushroomsonline.com omarhatim.com nfltodaylive.com d-flow.xyz unaccc.world homesolutionsnow.org workfront-one.online rightwayhelps.org benefits-of-xero.online integraphysicaltherapy.care www.p2peerx.fun p2peerx.fun cayacontadores.com www.cayacontadores.com samotsvitiii.net www.samotsvitiii.net p2p-tradex.online opiumrecords.net www.opiumrecords.net www.mymediacenter.digital mymediacenter.digital www.aalriyadh.info aalriyadh.info musicdownloader.xyz www.musicdownloader.xyz proebook.store inversioness.lat goopsauce.com hugoinsurance.xyz www.g21network.com g21network.com www.ppcsurfer.com ppcsurfer.com yuzhny.xyz exchange-money.online 419.report pyaaragaon.in www.pyaaragaon.in www.shop.swiftshielddrc.com shop.swiftshielddrc.com moderntechbd.xyz kekei.vip adbon.online marjfiset.online kimiagency.online tspgp.info coins4u.fun argidev.com jacksonvillemovinginc.com norakrasniqi.com watch-movie.mediafinder.live www.watch-movie.mediafinder.live ppcsurfer.digital www.ppcsurfer.digital www.ranimdiet.com ranimdiet.com www.humannatureshow.org humannatureshow.org www.growthso.com growthso.com www.nuevovallartacondorental.com nuevovallartacondorental.com socialglow.ai www.socialglow.ai aisotech.online www.aisotech.online jdmdtravelandtours.com www.jdmdtravelandtours.com www.concert-stream.mediafinder.live concert-stream.mediafinder.live www.damjancsiba.com www.safeerahmed.hamzi.xyz safeerahmed.hamzi.xyz homezmate.com www.banglof.shop www.rafay.hamzi.xyz rafay.hamzi.xyz motorcycleshipping.pro rodgers-social.live beastsrandomspacks.click www.alehadesign.co.uk alehadesign.co.uk dntd1e4fame.com www.dntd1e4fame.com erp.swiftshielddrc.com www.erp.swiftshielddrc.com www.thareds.com thareds.com babalwadi.com jalankemenangan.xyz recipessonline.store recipessonline.shop am-medicals.com hellaci0us.com pendragonheritagemanagementprofessionals.com www.achypnotherapy.com www.gradventuresservices.com www.clipmedia.online thirstycrows.hamzi.xyz www.thirstycrows.hamzi.xyz sumizurasystem.com chat.sumizurasystem.com www.chat.sumizurasystem.com www.societyofvegans.com marketdaycoin.org www.marketdaycoin.org www.marketdaycoin.marketdaycoin.org.vibezxtoption.com marketdaycoin.marketdaycoin.org.vibezxtoption.com clipmedia.online www.chat.builtover.host chat.builtover.host phasedashconnect.com gradventuresservices.com fixitallmasters.us inmema.net tieneslamentededios.com drivermarbella.com spacenub.com momoneyman.com yuwarngcn.com onepctclub.com ggspetcareservices.com 2drenewables.com mediafinder.live timamamu.com cruiseintrovert.com skillsautodetail.com www.masterclassfest.com masterclassfest.com www.libertyfinancebookkeepers.com libertyfinancebookkeepers.com myiird.xyz emmanuelobafemi.tech blmstekstil.com forgottenturtle.com www.elsorystore.com elsorystore.com www.mikeneko.world mikeneko.world www.fulneckdramaticsociety.org fulneckdramaticsociety.org www.unitedtravels.co.uk unitedtravels.co.uk www.soulvillageapartment.com soulvillageapartment.com www.kerahire.com dungeondamsel.com www.dungeondamsel.com mrvirk.com navjot.mrvirk.com crushlovemeter.com cagda.in foxvpn.us vipgentel.host stubitaly.com libertyheightsba.com msgajananlaw.com www.msgajananlaw.com indianleakedxxx.online cryptocurrencytracker.live xaivoice.net miscicekcilik.com app.tachio.co www.rhondadavisbooks.com rhondadavisbooks.com linkmonk.online nancycorset.online plowai.lol africafoundationuniversity.com artwithola.com trademm2.com dostcicecilik.com moonuel.com bricsplustrade.com nooroutsourcing.com basehead.xyz thekingofwraps.pro qatldkdijkhhu1wpktcc37.online catcoin.bar tunhamintegratedllc.com berbagitakjil.com ugstoresmatara.com kabirilaw.com reviews4rewards.com repros4you.com www.repros4you.com www.kazhamkamper.online kazhamkamper.online www.melodicmistresstheauthor.com melodicmistresstheauthor.com www.validandocuentasabril.online validandocuentasabril.online theomaxedwarka.com arringtontrading.com www.arringtontrading.com www.basehead.xyz dullscythe.com www.dullscythe.com www.webdlhd.online webdlhd.online perezsafelogistics.org residentley.africa ardsdothan.com bdxchange24.com krishdmc.com landingbazar.com choupette.vip snc-af.org cashio.blog appliedconsult.org merlinlayer.online sepapay.live aj-caterer.com slickunionreserve.com precisedestinations.com eni-conseil.com ileapafrica.org accotale.com hamzi.xyz itsinstyl.net bashcoders.com vacaexe.xyz

Malware Detected on Host

Count: 8 888e73c8890f4e12d59b55f36a9df6880b516f59677f934ef0f30e85737bc4a2 3890de9930dd03bf842517394971706571245b2cd1e507ce46f564b1c1903667 08a7c4c00a6b65bfd30513a58b4947c77898be7ef3f7dd820c54ff435181f94a 7083b99798beac7348b25fe4799c85af38a8e9a9daf8cb9f154b6de242399427 c3e064a65f3d9fc09ce39e22ad5c8a978f10ed5083f44b6b04377d4cd6ce463f 6ec8c6f4dae34987cab4eaee11f53dc938dbf66e0130b1f003ffd64519ea5617 2a4ef5376906d12da1d28ad540c65c5f4cdff73b1621c985cbf8605812d65ce8 8a4d2b73783f5eb5b0cc8de73ded36fba442b5da92ae5cd7875e03cfbbd4c280

Open Ports Detected

21 443 465 80

CVEs Detected

CVE-2016-10735 CVE-2018-14040 CVE-2018-14042 CVE-2018-20676 CVE-2018-20677 CVE-2019-8331 CVE-2024-6484

Map

Whois Information

  • NetRange: 198.54.112.0 - 198.54.127.255
  • CIDR: 198.54.112.0/20
  • NetName: NAMEC-4
  • NetHandle: NET-198-54-112-0-1
  • Parent: NET198 (NET-198-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS:
  • Organization: Namecheap, Inc. (NAMEC-4)
  • RegDate: 2015-11-13
  • Updated: 2015-11-13
  • Ref: https://rdap.arin.net/registry/ip/198.54.112.0
  • OrgName: Namecheap, Inc.
  • OrgId: NAMEC-4
  • Address: 11400 W. Olympic Blvd. Suite 200
  • City: Los Angeles
  • StateProv: CA
  • PostalCode: 90064
  • Country: US
  • RegDate: 2011-01-28
  • Updated: 2024-11-25
  • Ref: https://rdap.arin.net/registry/entity/NAMEC-4
  • OrgAbuseHandle: ABUSE2885-ARIN
  • OrgAbuseName: Abuse team
  • OrgAbusePhone: +1-323-375-2822
  • OrgAbuseEmail: abuse@namecheaphosting.com
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2885-ARIN
  • OrgTechHandle: TECHT4-ARIN
  • OrgTechName: Tech team
  • OrgTechPhone: +1-661-310-2107
  • OrgTechEmail: tech@namecheaphosting.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/TECHT4-ARIN
  • OrgTechHandle: EFIME-ARIN
  • OrgTechName: Efimenko, Igor
  • OrgTechPhone: +1-323-375-2822
  • OrgTechEmail: igor.e@namecheap.com
  • OrgTechRef: https://rdap.arin.net/registry/entity/EFIME-ARIN
  • network:Class-Name:network
  • network:Auth-Area:198.54.120.0/24
  • network:ID:NET-216064.198.54.120.64
  • network:IP-Network:198.54.120.64
  • network:IP-Network-Block:198.54.120.64
  • network:Org-Name:Web-hosting.com
  • network:Street-Address:3402 East University Drive
  • network:City:Phoenix
  • network:State:AZ
  • network:Postal-Code:85034
  • network:Country-Code:US
  • network:Tech-Contact:MAINT-216064.198.54.120.64
  • network:Created:20211207150020000
  • network:Updated:20211207150020000
  • network:Updated-By:net-admin@namecheap.com
  • contact:POC-Name:Network team
  • contact:POC-Email:net-admin@namecheap.com
  • contact:POC-Phone:
  • contact:Tech-Name:Network team
  • contact:Tech-Email:net-admin@namecheap.com
  • contact:Tech-Phone:
  • contact:Abuse-Name:Abuse team
  • contact:Abuse-Email:abuse@namecheaphosting.com

Links to attack logs

****** ****** ******

Share on: