141.101.120.15 Threat Intelligence and Host Information

Share on:
Jun 24, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 141.101.120.15 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Country:
  • Network: AS13335 cloudflare
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy
  • Passive DNS Results: www.gua.im manage.qqpro.gua.im mz.gua.im mi.gua.im yin.gua.im api.gua.im dns.gua.im pan.gua.im idc.gua.im gsniper.com libelulasoluciones.com auto.whatismyip.com www.1pipfix.com 1pipfix.com test.whatismyip.com www.athensparty.com cdn.athensparty.com cdn.akous.gr www.akous.gr whatismyip.com www.whatismyip.com www.reyhq.com reyhq.com

Malware Detected on Host

Count: 497 f19eed3332622a5068210133196b264cba43baaff8efb9c9699c0ad81f50b7b3 2560d8b159ef8b1a36bef1298ab9b03aa57034506090fd2af6ef645c26b4b05c a05a5582e27eec5dd754ece3ecd721f960ad53cf18a03e31f6c498afb8c5b6d7 510d7688c710ca9402af8953054b1e0456dd84000a7dc554c2b5e5ccd3ae5da1 dd8b2178655c519acbef493b53f860f3d5a9dd8b1860af488df9424e2ba6b9c0 21194432e375b3d8c83a85023665aaf220065a12a359c1ad2d17fbba1f5a8b1b 9e19a710c9ed642c7fe253518abd30460ab21847ce5b36e464213b90c8054401 82b0f1d5e184790477ab1a98b50cc7159aecc140407198ec0e9658537a20d3ff 420f411710f8617fc1865837ceed6f7e93150042cedcbc58ee9a49d0a3f36a0a f9234b97bad6627f80353fccb00da13a8c71f10507ecb790e7550dc08c69139f

Open Ports Detected

2053 2082 2087 443 8080 8443

Map

Whois Information

  • NetRange: 141.0.0.0 - 141.255.255.255
  • CIDR: 141.0.0.0/8
  • NetName: RIPE-ERX-141
  • NetHandle: NET-141-0-0-0-0
  • Parent: ()
  • NetType: Early Registrations, Maintained by RIPE NCC
  • OriginAS:
  • Organization: RIPE Network Coordination Centre (RIPE)
  • RegDate: 1993-05-01
  • Updated: 2009-05-18
  • Comment: These addresses have been further assigned to users in
  • Comment: the RIPE NCC region. Contact information can be found in
  • Ref: https://rdap.arin.net/registry/ip/141.0.0.0
  • OrgName: RIPE Network Coordination Centre
  • OrgId: RIPE
  • Address: P.O. Box 10096
  • City: Amsterdam
  • StateProv:
  • PostalCode: 1001EB
  • Country: NL
  • RegDate:
  • Updated: 2013-07-29
  • Ref: https://rdap.arin.net/registry/entity/RIPE
  • OrgAbuseHandle: ABUSE3850-ARIN
  • OrgAbuseName: Abuse Contact
  • OrgAbusePhone: +31205354444
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
  • OrgTechHandle: RNO29-ARIN
  • OrgTechName: RIPE NCC Operations
  • OrgTechPhone: +31 20 535 4444
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
  • inetnum: 141.101.120.0 - 141.101.123.255
  • netname: CLOUDFLARE-EU
  • descr: CloudFlare CDN network
  • country: EU
  • admin-c: CAC80-RIPE
  • tech-c: CTC6-RIPE
  • status: ASSIGNED PA
  • mnt-by: MNT-CLOUDFLARE
  • mnt-lower: MNT-CLOUDFLARE
  • mnt-routes: MNT-CLOUDFLARE
  • created: 2012-08-10T05:03:42Z
  • last-modified: 2012-08-10T05:50:05Z
  • person: Cloudflare Abuse Contact
  • address: Viktualienmarkt Rosental 7 80331 Munchen, DE
  • phone: +49 89 2555 2276
  • nic-hdl: CAC80-RIPE
  • mnt-by: MNT-CLOUDFLARE
  • created: 2012-06-01T23:27:49Z
  • last-modified: 2022-04-21T01:07:44Z
  • person: Cloudflare Technical Contact
  • address: Viktualienmarkt Rosental 7 80331 Munchen, DE
  • phone: +49 89 2555 2276
  • nic-hdl: CTC6-RIPE
  • mnt-by: MNT-CLOUDFLARE
  • created: 2012-06-01T23:35:57Z
  • last-modified: 2022-04-21T01:07:28Z
  • route: 141.101.120.0/22
  • origin: AS13335
  • mnt-by: MNT-CLOUDFLARE
  • created: 2020-06-11T23:57:11Z
  • last-modified: 2020-06-11T23:57:11Z

Links to attack logs

anonymous-proxy-ip-list-2023-06-22