198.55.249.10 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 198.55.249.10 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: inh2o.org.tempdomain.com slrequipmentfinance.com www.slrequipmentfinance.com www.trilandfoods.com pedrad.org www.pedrad.org archives.pedrad.org pedrad.org.tempdomain.com trilandfoods.com consulting.alxcosbs.com reboot-reuse-recycle.com arhc.com.sa www.arhc.com.sa alxcocv.com mydcv.io www.mydcv.io fischersearchgroup.com www.fischersearchgroup.com sebastians-entertainment.co.uk.tempdomain.com www.sebastians-entertainment.co.uk.tempdomain.com sebastians-entertainment.co.uk www.sebastians-entertainment.co.uk www.customglassny.com customglassny.com alxcoconsulting.com www.alxcoconsulting.com louisianacustomclosets.com www.louisianacustomclosets.com gelmans.com www.gelmans.com www.gcmt.org.uk gcmt.org.uk www.susanshelton.com susanshelton.com moebs.com www.ontario.org ontario.org www.alxcosbs.com alxcosbs.com www.bethlehemtemple.org www.mtseducationalcenters.org.tempdomain.com www.mtsconsultinggroup.com www.fiemanagement.com.tempdomain.com www.mtsministries.org.tempdomain.com authorkeithschleiffer.com pflogin.com www.crystalglassny.com crystalglassny.com grupovillarmir.es baccbigfork.org www.baccbigfork.org new.sentryelectric.com.tempdomain.com www.sentryelectric.com new.sentryelectric.com www.new.sentryelectric.com.tempdomain.com www.new.sentryelectric.com healthstudent.woodcountywi.gov www.inh2o.org inh2o.org surefiresafety.ca www.downtownolympia.org downtownolympia.org sentryelectric.com www.oncopediatrialopezibor.com oncopediatrialopezibor.es hematologiapediatrica.es www.oncologiapediatrica.es oncologiapediatrica.es www.hematologiapediatrica.es oncopediatria.es oncopediatria.com www.oncopediatria.es oncopediatrialopezibor.com www.oncopediatria.com redstoneinvestments.com mtsministries.org.tempdomain.com bethlehemtemple.org bethlehemtemple.org.tempdomain.com mtseducationalcenters.org.tempdomain.com mtsconsultinggroup.us.tempdomain.com fiemanagement.com.tempdomain.com mtsconsultinggroup.com raw-byte.com www.staging.susanshelton.com staging.susanshelton.com www.pakwegdnn.nl pakwegdnn.nl allaboutyoufn.com northrivercollaborative.org www.northrivercollaborative.org www.allenservicecorp.com allenservicecorp.com www.atlascoast.com atlascoast.com eastcoastblues.ca www.eastcoastblues.ca www.onebridge.net onebridge.net internetek.net.tempdomain.com www.internetek.net.tempdomain.com www.somertonforge.com.tempdomain.com somertonforge.com.tempdomain.com www.somertonforge.com somertonforge.com loveolysummerfest.org joscinerodneylaw.com www.saperepotere.org www.fxcpe.com saperepotere.org jacketprideathleticclub.com www.legacyis.us legacyis.us fxcpe.com www.theprocopio.com theprocopio.com

Open Ports Detected

110 135 143 21 25 2525 3306 443 53 80 8443 8880 9998

Map

Whois Information

• NetRange: 198.55.240.0 - 198.55.255.255
• CIDR: 198.55.240.0/20
• NetName: MANAGED-IPV4-3
• NetHandle: NET-198-55-240-0-1
• Parent: NET198 (NET-198-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS11989
• Organization: HostPapa (HOSTP-7)
• RegDate: 2012-08-01
• Updated: 2024-02-02
• Ref: https://rdap.arin.net/registry/ip/198.55.240.0
• OrgName: HostPapa
• OrgId: HOSTP-7
• Address: 325 Delaware Avenue
• Address: Suite 300
• City: Buffalo
• StateProv: NY
• PostalCode: 14202
• Country: US
• RegDate: 2016-06-06
• Updated: 2024-04-26
• Ref: https://rdap.arin.net/registry/entity/HOSTP-7
• OrgAbuseHandle: NETAB23-ARIN
• OrgAbuseName: NETABUSE
• OrgAbusePhone: +1-905-315-3455
• OrgAbuseEmail: net-abuse-global@hostpapa.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/NETAB23-ARIN
• OrgTechHandle: NETTE9-ARIN
• OrgTechName: NETTECH
• OrgTechPhone: +1-905-315-3455
• OrgTechEmail: net-tech-global@hostpapa.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NETTE9-ARIN
• RTechHandle: NETTE13-ARIN
• RTechName: NETTECH
• RTechPhone: +1-877-743-8366
• RTechEmail: infrastructureteam@managed.com
• RTechRef: https://rdap.arin.net/registry/entity/NETTE13-ARIN
• RAbuseHandle: NETAB29-ARIN
• RAbuseName: NETABUSE-MANAGED
• RAbusePhone: +1-877-743-8366
• RAbuseEmail: abuse@managed.com
• RAbuseRef: https://rdap.arin.net/registry/entity/NETAB29-ARIN

Links to attack logs

****** ****** ******