198.98.51.198 Threat Intelligence and Host Information

Share on:
Apr 29, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 40/100

Host and Network Information

  • Tags: Malicious IP, Nextray, SSH, Telnet, attack, blacklist, botnet, bruteforce, cowrie, cyber security, digital ocean, ioc, login, malicious, mirai, phishing, scan, scanner, tcp, telnet, tsec

  • View other sources: Spamhaus VirusTotal

  • Country: United States of America
  • Network: AS53667 frantech solutions
  • Noticed: 21 times
  • Protcols Attacked: telnet
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Malware Detected on Host

Count: 47 001df7916cabb7988bca584b774470bf4bc40ba400b44c740e842cd621f3c7f5 e3243c777ebfc78d65e8810c889472564001d54ffbcc1dc2e4c1c3dae13c4571 3a268c5fa6a6984cd702de47d0b392b663f25f3d0b41c99f7d31905ec354b501 f6b3abb521b2a986a6f3b50c45d01622782e2241de97d96c73c1ca9b6a5fbedc 80406ce8c071a1ef4aa4cdaf0e97cc7785f61dce4efbd5b9e8a572a6dc348bd7 9e9c31cc599db6b95ebd236b538b52ed13188724425b0174491635790742ef8a 99dd9d56c570ca846292db1d51f93d5316fe0e7a3712fc2e53d198712ac797fb 74170f8676db037536df5575969eba0b0002842f363534bf960298ee8ad4442a 413190930a0e96540d7b986713b4b89fefd025382cc876483902a3ccb5c6244e 511842eea248410f49e23f5b32a97dc2f23fe2b0f7bd9b3459ddf937941b6fc0

Map

Whois Information

  • NetRange: 198.98.48.0 - 198.98.63.255
  • CIDR: 198.98.48.0/20
  • NetName: PONYNET-06
  • NetHandle: NET-198-98-48-0-1
  • Parent: NET198 (NET-198-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS53667
  • Organization: FranTech Solutions (SYNDI-5)
  • RegDate: 2012-07-05
  • Updated: 2012-07-05
  • Ref: https://rdap.arin.net/registry/ip/198.98.48.0
  • OrgName: FranTech Solutions
  • OrgId: SYNDI-5
  • Address: 1621 Central Ave
  • City: Cheyenne
  • StateProv: WY
  • PostalCode: 82001
  • Country: US
  • RegDate: 2010-07-21
  • Updated: 2017-01-28
  • Ref: https://rdap.arin.net/registry/entity/SYNDI-5
  • OrgAbuseHandle: FDI19-ARIN
  • OrgAbuseName: Dias, Francisco
  • OrgAbusePhone: +1-778-977-8246
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/FDI19-ARIN
  • OrgTechHandle: FDI19-ARIN
  • OrgTechName: Dias, Francisco
  • OrgTechPhone: +1-778-977-8246
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/FDI19-ARIN

Links to attack logs

dofrank-telnet-bruteforce-ip-list-2021-12-30