198.41.207.195 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 198.41.207.195 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: top1oil.com www.top1oil.com shipping.solarisjapan.com btxiaomi.com solarisjapan.com shopandshipworldwide.com www.sportdirect.ch russia.shopandshipworldwide.com prod.sportdirect.com www.najibrazak.com replyapp.io www.platinium-auto.com sportdirect.com najibrazak.com flapperscomedy.com www.sportdirect.com 5daydeal.com download-file.downloadinfo.co www.jala-mi.org fetishpros.com www.fetishpros.com betagamekeys.com software.downloadinfo.co babestationx.tv download.download-update.org www.ecardsystems.com ecardsystems.com jala-mi.org www.shibuimarkets.com www.babestationx.tv minecraft-italia.it www.phoneexpander.com phoneexpander.com www.wemax.biz us.download-file.downloadinfo.co www.garcinia-forte.com wemax.biz www.diamonddelight.com diamonddelight.com www.download-update.org file-download.downloadinfo.co download-update.org www.downloadinfo.co downloadinfo.co

Malware Detected on Host

Count: 6 fdd147e6d276d187532baa4ef3e7e3e84fc7c7ff10c14044c9941323eaa0a04d 676a14cda7ff14af9d944326ec4635facf9eb999208f5a7badbeff76d55321e4 5cb21278a8ece1797b389bf5e42879417ecf0e595841a823c069f836abf64e01 f1bfa611a2284bec07747aebf03bebfd6134d71344a2e4352a15fbf9c2a840c0 71b1f3e726341ae84ff090bdea9f7cb27add36acfe772dab68d062f4b5353837 15a36f44c2bfd142f899833e5ca95595e2db8696640a455775e9715c0da2c0ea

Open Ports Detected

2052 2053 2082 2083 2086 2087 2096 443 80 8080 8443 8880

Whois Information

• NetRange: 198.41.128.0 - 198.41.255.255
• CIDR: 198.41.128.0/17
• NetName: CLOUDFLARENET
• NetHandle: NET-198-41-128-0-1
• Parent: NET198 (NET-198-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2012-10-09
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/198.41.128.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22 anonymous-proxy-ip-list-2025-06-24 anonymous-proxy-ip-list-2025-06-25