141.101.120.14 Threat Intelligence and Host Information

Share on:
Jul 11, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 141.101.120.14 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Country:
  • Network: AS13335 cloudflare
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy
  • Passive DNS Results: www.gua.im manage.qqpro.gua.im mz.gua.im mi.gua.im yin.gua.im api.gua.im dns.gua.im pan.gua.im idc.gua.im gsniper.com auto.whatismyip.com www.1pipfix.com test.whatismyip.com athensparty.com cdn.athensparty.com www.athensparty.com cdn.akous.gr www.akous.gr akous.gr whatismyip.com www.reyhq.com www.whatismyip.com reyhq.com 1pipfix.com

Malware Detected on Host

Count: 487 fa245f1a12a95500b22978e35ec830e8c53d9c4f3688ae114cf23d375dd5b30d da26928fe6cd7a9d92cc68d76cdf70f5f5dd8ea0bc69821e8216f79a5a5b807d aa90d3ef748c79a939b8bd30d4de448b77ddd04f0a7e2fff0f6e0c3da5b1d021 e7fb2f6c6de3228b59065475cc71453114b54ec82bb4ff035cdd2519c9fcc963 bb72a5a51d28afc3d2e191db8e5716e508a5f82be030496009b3abd3a9df1e85 6c092e200fa30fb244cb21c5bff29b865055a383c2b2e50e77a6aa9ebc8b7305 d99fbba55c9842ff3609d04f7030cec68a2565738366a00c773ace1ee3c8a2ee 3c8c442a56296660cf5c01eff2f4cc269030390096b46944fbdf6928b995cdf7 1387222678c9f98265f9abe54a8b3a6aad2b5c8a75b9a6d827eac5d53af986a1 8c8d9a1dbb716dbf71dc5cc37a50d908820ec672cd3d3d6a834e315246931b93

Open Ports Detected

2052 2053 2082 2086 2087 2095 2096 443 80 8080 8880

Map

Whois Information

  • NetRange: 141.0.0.0 - 141.255.255.255
  • CIDR: 141.0.0.0/8
  • NetName: RIPE-ERX-141
  • NetHandle: NET-141-0-0-0-0
  • Parent: ()
  • NetType: Early Registrations, Maintained by RIPE NCC
  • OriginAS:
  • Organization: RIPE Network Coordination Centre (RIPE)
  • RegDate: 1993-05-01
  • Updated: 2009-05-18
  • Comment: These addresses have been further assigned to users in
  • Comment: the RIPE NCC region. Contact information can be found in
  • Ref: https://rdap.arin.net/registry/ip/141.0.0.0
  • OrgName: RIPE Network Coordination Centre
  • OrgId: RIPE
  • Address: P.O. Box 10096
  • City: Amsterdam
  • StateProv:
  • PostalCode: 1001EB
  • Country: NL
  • RegDate:
  • Updated: 2013-07-29
  • Ref: https://rdap.arin.net/registry/entity/RIPE
  • OrgTechHandle: RNO29-ARIN
  • OrgTechName: RIPE NCC Operations
  • OrgTechPhone: +31 20 535 4444
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
  • OrgAbuseHandle: ABUSE3850-ARIN
  • OrgAbuseName: Abuse Contact
  • OrgAbusePhone: +31205354444
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
  • inetnum: 141.101.120.0 - 141.101.123.255
  • netname: CLOUDFLARE-EU
  • descr: CloudFlare CDN network
  • country: EU
  • admin-c: CAC80-RIPE
  • tech-c: CTC6-RIPE
  • status: ASSIGNED PA
  • mnt-by: MNT-CLOUDFLARE
  • mnt-lower: MNT-CLOUDFLARE
  • mnt-routes: MNT-CLOUDFLARE
  • created: 2012-08-10T05:03:42Z
  • last-modified: 2012-08-10T05:50:05Z
  • person: Cloudflare Abuse Contact
  • address: Viktualienmarkt Rosental 7 80331 Munchen, DE
  • phone: +49 89 2555 2276
  • nic-hdl: CAC80-RIPE
  • mnt-by: MNT-CLOUDFLARE
  • created: 2012-06-01T23:27:49Z
  • last-modified: 2022-04-21T01:07:44Z
  • person: Cloudflare Technical Contact
  • address: Viktualienmarkt Rosental 7 80331 Munchen, DE
  • phone: +49 89 2555 2276
  • nic-hdl: CTC6-RIPE
  • mnt-by: MNT-CLOUDFLARE
  • created: 2012-06-01T23:35:57Z
  • last-modified: 2022-04-21T01:07:28Z
  • route: 141.101.120.0/22
  • origin: AS13335
  • mnt-by: MNT-CLOUDFLARE
  • created: 2020-06-11T23:57:11Z
  • last-modified: 2020-06-11T23:57:11Z

Links to attack logs

anonymous-proxy-ip-list-2023-06-28 anonymous-proxy-ip-list-2023-06-29 anonymous-proxy-ip-list-2023-06-30 anonymous-proxy-ip-list-2023-07-08 anonymous-proxy-ip-list-2023-07-09 anonymous-proxy-ip-list-2023-06-22 anonymous-proxy-ip-list-2023-07-02 anonymous-proxy-ip-list-2023-07-03