198.41.214.185 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 198.41.214.185 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: ocsp.msocsp.com crl.globalsign.net.cdn.cloudflare.net crl.globalsign.net crl.globalsign.com hostedocsp.globalsign.com ocsp.globalsign.com ocsp2.globalsign.com cdnjs.cloudflare.com cdnjs.cloudflare.com.cdn.cloudflare.net

Malware Detected on Host

Count: 572 81dd0b9f26d827a4834e22fbd8f3838ee56d98b1486d51806ad69feeba02ec84 52f4aa169561245e5a200375807d45bdfc00fdcd0fcab05e2a07c110cec83a8d c73507503026db76e4e5074d5fabd032cae98f8b6ac5a5609066cec0dc132f60 fb87c6109df60d420dc8fa646392e001314c42be4138385b631651178522ce8a a94ce0f55870c934c49743149b51818e4d41c2ce4e8287298fab1433935b1e68 43704b4d01404315e49e35e1684ec38220cf52f672d345d7d128d6c1c38bbb8a 4c2daad38521f71d566ba63ecaefe974c06c02c9ccd7af90f8833ca8b2d71b36 12fea8c1cddef3709f9840bf015268ff53af1b586ad9468d59442c9d947708ed 9db1824012ec893e385256c3fbef5ee4013d28c70aa22b1e314b6bf589653729 7477ba1307891b1e38ad3bd4dcfd9eb8b2630672a4af300cdb53eb8ef1a69ecf

Open Ports Detected

2053 2082 2083 2086 2087 2096 443 80 8080 8443 8880

Whois Information

• NetRange: 198.41.128.0 - 198.41.255.255
• CIDR: 198.41.128.0/17
• NetName: CLOUDFLARENET
• NetHandle: NET-198-41-128-0-1
• Parent: NET198 (NET-198-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2012-10-09
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/198.41.128.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22 anonymous-proxy-ip-list-2025-06-24 anonymous-proxy-ip-list-2025-06-25