198.57.247.139 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 198.57.247.139 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

• Tags: cyber security, ioc, malicious, Nextray, phishing

• JARM: 29d29d15d29d29d00042d42d0000009435214b849738c4ebab4534b5d158dd

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 29 times
• Protocols Attacked: SSH
• Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
• Passive DNS Results: cedrussalon.com autoconfig.iamdrebell.com jbventureservices.com nadamakeup.com web.magictourscancun.com togo-tourisme.com couplestraininginstitute.com twincitiesblack.com growbookss.com www.heuristicresearch.com www.togo-tourisme.com urbantoronto.com heuristicresearch.com streetsboroapparel.com bonnabit.com hisaliasjoyeria.com centrodeformacionalifran.com digitaldogschool.com skillnbill.com meineckesrl.com annuncigratis.in millersfoodbuffalo.com bourjostransport.com strictschool.com itvolunteers.org succeedconnected.com seasthereef.com visitchitlang.com uxdmasterclass.com dorar.tech diamondhillbuilt.com leavesofluxury.net ukhovercraft2.online growconnectedgratitude.com iplatoon.space treecurious.com 6000.gop.tw marcnzi.com friendfirsttosucceed.com fashiongracy.com watch.kwavi.tv antoniomasonry.com thevibratoryflux.com metaphysicsforlife.com hitempindustrial.com sunpasal.com climatecontrolusa.com divinegrouprealestate.com gowonderlandnew.com comoquitarelestresrapido.com treadwatersmusic.com pygmypig.com pygmybazaar.com electricbuttertoast.com laff.site konoozco.com natureabuzz.org dansdumbbelldiary.com weightlossandwellness2000.com friendfirstformula.com basicbodyweight.com nutritionnews101.com fckcovid.com blackmpls.com shegercrafts.com aboutkiddies.com donauction.live fizzymorningjuice.com data-frontend.com lutumobile.com adonelevatorz2008.com sheepbirds.com km-transcreatify.com hashspring.com cgkapparel.com iaomori.com floridadentalconsultant.com pancakeswap-pc.com leavepros.com werd.media superfreshgarden.com pittsburghrealestateassessments.com coolridetaxi.com httpwwwetechnologyegypt.me twincitiesblackbusiness.com dorar.space heresthedealiopodcast.com chessgamestuff.com moonandbrushstudio.com track.slimtriggers.com metaorinc.xyz metaorinc.com sionsrose.org www.sionsrose.org latininfluence.com growconnectedclient.com trillblackyogi.com highticketunlock.info jerusalemwebstore.com afri2you.com jerusalemwarehouse.com junkievintagehuys.com www.mielmacrae.ivyogier.com mielmacrae.ivyogier.com gator3175.temp.domains tanyastoptravel.com montoyaslawnservice.com gaffart.com artemisbilling.com freefoodcookingus.com seminariodentalarts.com palmbaydentalimplants.com koooragoal.net helpfordadsaustralia.com wwwtimmyjor.com rockyourbody2021.org precisionwisdom.com chesedvemes.shop coinbarta.com freedomtonight.com is-fucked.com computerrain.com sannycomputer.com urwaenterprises.com fckcovid.net northwaleslaminates.com carpetprodigy.com grownupsbeone.com debraclarkwellness.com qrcodestock.com thecutpriceshop.com belabinti.com edeninhouse.com psicologosleongto.com theallianceforindependentworkers.org simpdetector.com bozoscharters.com spicyqueen.com planetmusic.ca phdailydose.com suppleben.com uni-ryde.com alinebosle.com detroitheadshotphotos.com annaschuetz.at climatestoragebranson.com minoohouse.com fiscalflooring.com iowjobsite.com skottelbraaiaanbieding.com vidovitanada.com ayapanacea.com publixretirement.com eskayanopc.com kulay.site seattlecarstore.com affiliate-price-comparison-site-james-8892.com shopworkslighting.com vieste.in rickypage.co.uk cybrhomes.com collinsoliver.net collaborativepractice.ca teacherparkesl.com stevenmbell.com octomindmedia.com expologics.com levitationextracts.com werdmedialabs.com laputkascholarship.com lhvlocaldeals.com cambsweddingphotography.com marcelford.com valuemama.net kianaballinger.com dinoide.com teerany.com sassyhaironthego.com dynastyconsulting.net tradedeck.net lidergy.com merifitness.com techbots.net alexacouryhair.com faqjajoteweb.com thebettershopper.com whitetowelcompany.us pinoype.com qalqawla.com cameronbeatty.com tintodigital.com allleatherfurniture.net flashdealsapp.com masterchromeparts.com tonyasware.com pouchplace.online jeridjames.com malkhut.com sagecollegemail.com columbianfinancialgroup.net synclinecycles.com winterhavenpharmacy.com cerano.org fdsignworks.com aplustutoringcenter.com nickm.co 3dp-micro.com jeffreybwinn.com websitesgate.com directfishingdeals.com nbccdfw.org docodemo.club wealthmindtrigger.com rubbaboi.com creative-cure.com system9333.com bonobofinance.tech gotfunding.org gotfunding.biz woodrooflanterns.co.uk blfarms.com holisticmedicineherbalhealthcare.com mapheros.com nosnownoicejustparadise.com victorville-rentals.com mercurius.life dianahimmelspach.com cameronbeatty.org al7all.com intiholidays.net chinesetakeoutrestaurant.com deltorroweddings.co.uk alleanzaportal.com adventuroushub.com apostrophe-creation.com northspiritstore.com investorearth.com ioanninataxi.gr dramaticweightlosscenter.com surfingwipeouts.com doaafarid.com borjan.pk slanelb.com fcibodereau.org brunswickblue.com sandiegobeachbroker.com sportsmanagementplatform.site convertvideotomp3.com livingshiny.com datescreen.com.au auditbyirs.com newgolfstix.com vidivixen.com heartleadcompass.com amorepureluxehair.com deeshomestay.com onzekerheidoverwinnen.com infinitychairs.com myretailpov.com goj.tw inboundtrainer.com birregurrapottery.com postcardsfromstella.com spiceupyourlooks.com kindredsoulkari.com jacqualynj.shop deckerbuildersllc.com cindyviggiano.com ellainespurplenails.com chevellelover.com nicolebstoddart.com contractdata.org zirsdesign.com my-secure-creditcards.com lnwlaw.online afterthebeep.tv pornoforadult.com jlslimos.com minimerchantadvertiser.com 4c67.com victorsway2711.com steigerhouten-meubelen.net conservatoryideas.co.uk aiinews.com moveitfastremovals.com packmanmedia.com hardwoodrooflanterns.co.uk timothyandamor.com gaaxare.com addsub.net mydearnerd.com siampastaonline.com stylishbridalhair.co.uk spliffdifferences.com bitcoin247.asia adamsmemorial.org minderwaardigheidscomplex.com backwaterradio.com rooflanternprices.co.uk dfwsoulsacrificetribute.com aonealarms.com camionespuertorico.com thejoedonovanproject.com bespokeorangery.co.uk synclinecycle.com armhunter.com wmimonitorx.com 4carlove.com hydrasft.com fixstoree.com narennadh.com faihn.life npwbusiness.com itauguaautomotoressa.com ciriloservin.com agenciavaldez.com tradingcellular.com mobilewholesaleusa.com www.mobilewholesaleusa.com cpcontacts.mldevents.com cpcalendars.mldevents.com www.ccpancashhuaraz.org ccpancashhuaraz.org quantcitizens.com ewadelivery.shop adultsextoys-store.co.uk earnqcash.site www.adultsextoys-store.co.uk www.thenewoftb.com fantasyhollywood.com hartziyon.com caroleparker.net kerchookult.site teslacompany.com curiositycabi.net constructorasagil.com cruisecentre.bestcruisecentre.com www.cruisecentre.bestcruisecentre.com cruisecentre.id leatherliving.net leatherliving.in leatherlivingfurniture.biz leatherliving.ca leatherlivingfurniture.net besttour.id christinapier.com jungguoexpress.com allleathersofa.net calmingmassagetherapy.xyz www.iamamommynerd.com iagoora.bestcruisecentre.com pasarasemka.bestcruisecentre.com www.pasarasemka.bestcruisecentre.com www.liburancruise.bestcruisecentre.com liburancruise.bestcruisecentre.com lapakrental.bestcruisecentre.com www.iagoora.bestcruisecentre.com www.lapakrental.bestcruisecentre.com horrorcollectables.com anmartrading.org www.anmartrading.org sadentrd.com leatherlivingfurniture.ca leathersofacenter.com worldclassinc.ca leatherlivingfurniture.us leatherliving.us dhaliwalinvestments.com www.dhaliwalinvestments.leatherlivingfurniture.com dhaliwalinvestments.leatherlivingfurniture.com besttour.bestcruisecentre.com www.besttour.bestcruisecentre.com machograndecanarios.com chanyapark.com windows32bits.com jovamahealth.com thememorytree.com amorsantos.com uswimming.com 101TUTORIAL.COM oakturps.com indijobs.in ltfg.info dosdb.com carov.com stopit.gr modernpatriot.net www.monporno.org kingofthenorth.net seksstandjes.net thenicestplaceontheinter.net bidvilla.com furnitureinteriordesign.com tomsawyer.es ermytainers.co.uk littleturtleknits.com leatherlivingfurniture.com bktwolfpak.com fitnessoefeningenvoorthuis.nl battleofthebay.org dh5inc.com aspmx5.googlemail.com soice-cars.com soundcloudcomment.com MARISAROSSMAKEUP.COM THESECRETKISSBEACHHOUSE.COM SOLUADMIN.COM CONDUITCOVER.COM www.soundcloudcomment.com ADAMPEARLSON.COM TARGETFIVE.COM www.djjazzyd.com lfcvoice.com maldivesresortinvestments.com djjazzyd.com amadeusvista.co foulhub.com bestcruisecentre.com cruisecentre.co.id webmarketervideos.com s10.co virtbuy.com gator3175.hostgator.com subdomains.idxbroker.com baneprevoz.com alachuarealestate.net

Malware Detected on Host

Count: 1 ae40f970b0ff3777300a355d140f33f22a622f14b259e87e1673ea36333c9620

Open Ports Detected

110 143 2077 2082 2083 2086 2087 21 22 2222 26 3306 443 53 587 80 993 995

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

• NetRange: 198.57.128.0 - 198.57.255.255
• CIDR: 198.57.128.0/17
• NetName: UNIFIEDLAYER-NETWORK-12
• NetHandle: NET-198-57-128-0-1
• Parent: NET198 (NET-198-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Unified Layer (BLUEH-2)
• RegDate: 2012-07-27
• Updated: 2026-02-12
• Comment: OCITOKEN::198.57.224.0/19:193712a0b372155cb666290e2822d8c10d30350569fcd3e8e0b81f2f23d86189
• Comment: OCITOKEN::198.57.128.0/19:30aaca87ba8870580bcc6bf7f0ddbc36525c3c630aa554423fdad11638c154f5
• Comment: OCITOKEN::198.57.148.0/22:c012e20bd0888c5cafd36fdcb0ccf85039c9574f170b254b5d2b0fbaae0c5b4d
• Comment: OCITOKEN::198.57.240.0/21:1d32fbcea54b46394c8bb3cf3b0cca73bdd7f6099ecfeaf1b95e37c18790b32d
• Ref: https://rdap.arin.net/registry/ip/198.57.128.0
• OrgName: Unified Layer
• OrgId: BLUEH-2
• Address: 1958 South 950 East
• City: Provo
• StateProv: UT
• PostalCode: 84606
• Country: US
• RegDate: 2006-08-08
• Updated: 2025-07-24
• Ref: https://rdap.arin.net/registry/entity/BLUEH-2
• OrgAbuseHandle: NOC2320-ARIN
• OrgAbuseName: Network Operations Center
• OrgAbusePhone: +1-801-765-9400
• OrgAbuseEmail: abuse@bluehost.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/NOC2320-ARIN
• OrgTechHandle: ENO74-ARIN
• OrgTechName: EIG Network Operations
• OrgTechPhone: +1-877-659-6181
• OrgTechEmail: eig-noc@endurance.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ENO74-ARIN
• OrgNOCHandle: ENO74-ARIN
• OrgNOCName: EIG Network Operations
• OrgNOCPhone: +1-877-659-6181
• OrgNOCEmail: eig-noc@endurance.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/ENO74-ARIN
• OrgAbuseHandle: EIGAB1-ARIN
• OrgAbuseName: EIG-Abuse Mitigation
• OrgAbusePhone: +1-877-659-6181
• OrgAbuseEmail: IARPOC@Newfold.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/EIGAB1-ARIN

Links to attack logs

****** ****** ******