198.41.215.68 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 198.41.215.68 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: xn–11x.fun 71f.co jp.cloudflare.com de.cloudflare.com http2demo.cloudflare.com origin-pull.cloudflare.com cdn-static.cloudflare.com blog.cloudflare.com www.cloudflare.com fr.cloudflare.com it.cloudflare.com api.cloudflare.com developers.cloudflare.com partners.cloudflare.com tr.cloudflare.com support.cloudflare.com ajax.cloudflare.com cdnjs.cloudflare.com developers.cloudflare.com.cdn.cloudflare.net ajax.cloudflare.com.cdn.cloudflare.net cdnjs.cloudflare.com.cdn.cloudflare.net

Malware Detected on Host

Count: 90 85fb92647094dbf4459d4ee7dcc1a36823ab33f75a75460f8e6c83239c153a3b d2b734265f6f4dcb797c06a9ef16bb7723c5f38b0613e88c2489b6f9a6f05818 594a371f9988396602ec5cbca6315e76260ea55de23954dac8498d9bb91ce7e7 3045645049be89bdb063c293c9157baad8fcf92210de389188e9eaf346a9ca17 0a245e319a0c6706a3798480ab2b3d54affcc1c84697ea3955aeae03a4910594 945085ca100c29cd8358f0da2f8f8d41301b79d038d56a5ae6279016745c9433 4bff06ecc84b4f599401c910220cf0af4529ec3784c9cd94147296c50abcc011 fe4caec710a84f8e0bed2324deefb2baf68731b9dedef37275e705cf58336c61 c3e84e0efba60cb69430a6d89dec546a9d9db662dc4ef89e4300f73b76744fb7 52339c932dd135a44c348dedaeefbb2787fb2485fb5a2a512651b0de864846b1

Open Ports Detected

2052 2082 2083 2086 2087 2096 443 80 8080 8443 8880

Whois Information

• NetRange: 198.41.128.0 - 198.41.255.255
• CIDR: 198.41.128.0/17
• NetName: CLOUDFLARENET
• NetHandle: NET-198-41-128-0-1
• Parent: NET198 (NET-198-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2012-10-09
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/198.41.128.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22 anonymous-proxy-ip-list-2025-06-24 anonymous-proxy-ip-list-2025-06-25