104.18.10.5 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.18.10.5 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 52/100

Host and Network Information

• Mitre ATT&CK IDs: T1057 - Process Discovery, T1071 - Application Layer Protocol, T1105 - Ingress Tool Transfer, T1132 - Data Encoding, T1140 - Deobfuscate/Decode Files or Information, T1204 - User Execution, T1480 - Execution Guardrails, T1553 - Subvert Trust Controls, T1566 - Phishing, T1568 - Dynamic Resolution, T1583 - Acquire Infrastructure

• Tags: access ta0006, adobe help, adversaries, analysis no, ascii text, av detection, azure tls, body, borland delphi, ck id, class, click, command, community score, control ta0011, copy md5, copy sha1, copy sha256, cus olet, cus subject, data, date, defense evasion, delphi, delphi generic, dns resolutions, domain, domain abuse, domain scam, dos borland, dynadot, dynadot inc, dynadot llc, encodedpixel, encrypt cnr10, error, evasion ob0006, executable, falcon sandbox, false, file system, file type, flag, gandi sas, general, generic windos, get http, google update, hybrid, ico mainicon, icons library, informative, initial access, intel, internal name, ip traffic, issuing ca, ja3s, javascript, june, kb file, key algorithm, key info, learn, linker, llc name, local, logo analysis, look, ltcgc, malicious, march, mime, mitre att, ms windows, name server, name tactics, null, number, ob0002 defense, oc0001 process, oc0003 data, os2 executable, overview dns, path, pe32, pe32 compiler, pe64 compiler, possible, post http, privacy, privacy create, privacy update, productname, proxy, redacted for, refresh, registrant fax, requests domain, resolved ips, restart, rsa public, rstunf, scan analysis, score, score clean, server, setup, sha1, sha256, show, size426kib type, size45b type, span, spawns, strings, stwa lredmond, subid, subject public, suspicious, system oc0008, ta0008 command, tad436770, threat score, thumbprint, tls sni, tools, united, upgrade, url scan, v3 serial, validity, verify, version, viewer file, win16 ne, win32 exe, window

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: www.k1694s.com gretnaticketsettlement.com akwabet.com faxmail.lightwirebusiness.com 76p88.com urbanhomesjo.com selbst-bestimmt-leben.de portal.mytel.co.nz fitarmyz.com portal.fibretalk.co.nz yourphone.cloudland.co.nz voip.adaptivecloud.nz telco.nzcloudservices.nz portal.datatalk.co aphub.api.eu.approve.com portal.itelco.nz mobile.sharpict.net.nz login.iqcloudcall.com portal.twistit.co.nz portal.smarttalk.co.nz portal.2speak.nz api.sandbox.approve.com portal.logicalit.net.nz voice2.mercuryit.co.nz portal.revitvoip.nz portal.frednet.co.nz aphub.sandbox.api.sandbox.approve.com pbx.itworks.co.nz robemans.com portal.northcloud.co.nz soketi.alderon.tools portal.fusiontech.nz portal.ocltalk.net.nz portal.encom.nz portal.banx.nz immediateonfair.top sportsbook38.com bsw-b2b.login.softheon.com portal.voiphq.co.nz portal.sp.vorco.net fallback.whitelabeltelco.co.nz portal.nzvoip.co.nz portal.kiwivoip.co.nz westernbaptist.com powayautorepair.com voice.mothership.co.nz portal.cts.co.nz portal.phonesinternet.co.nz voip.kiwilink.co.nz portal.techsolutionsltd.co.nz portal.a1comms.co.nz portal.tfstech.co.nz portal.skyphone.vorco.net 51vipph.life summacare.login.softheon.com resisearch.api.proxyscrape.com portal.iisp.co.nz centene-b2b.login.softheon.com portal.airfibre.kiwi capitalhealth-b2b.login.softheon.com absoluteaestheticsllc.com doexzat.com portal.flownet.co.nz voip.prosouth.co.nz portal.lume.co.nz portal.maxicom.co.nz www.backblaze.net patch-azure-v202335-79-0-jwt0.auth0app.com doexcie.com backblaze.net doexcui.com api.eu.approve.com doexlub.com api.rc.approve.com api.dev.approve.com doexidn.com doexzna.com mergeserver.apttus.net www.approve.com approve.com www.pfizerinjectables.com doexame.com tw-voucher.com doexres.com army-hurt-mouth.com doextras.com careers.fairview.org doexurd.com mwstest.apttus.net doexkvm.com doexbre.com trackmyt.com a234fa.com doexali.com doexmok.com www.tw-voucher.com providediscountcoverage.com doexoll.com tinysa.com spachtel-forum.com doexaps.com doexep.com ddaexcfx.com api.proxyscrape.com edge.tenants.test-aws-obedient-wasp-9304.auth0c.com wt.test-aws-obedient-wasp-9304.auth0c.com test-aws-obedient-wasp-9304.auth0c.com www.canaldedenuncia.com.br test.globaldc.cn prep-medlem.rorkjop.no hamiltonautocare.com r.providediscountcoverage.com linkable.uk www.linkable.uk lordperfumaria.com.br unitingdata.eu 0ii3ke.org gastro-personal.de qa-dk-l6r-fbmvp-10603-removeesmt.az.ssdgws.co.uk de.sex.com t.jacquieetmichelmag.com device2387069-4ee7cf67.sex.com www.pocketrides.cc qa-no-xix-fixfbmvp-10257-fixdpdorderingi.az.ssdgws.co.uk pocketrides.cc auth.dev2.devcabu.jp gatws.dagbladet.no edge.tenants.kabucom-dev.auth0.com wt.kabucom-dev.auth0.com edge.kabucom-dev.auth0.com kabucom-dev.auth0.com auth.devst.devcabu.jp auth-sandbox-2.devst.devcabu.jp www.lyndhurstdds.com www.parksidedentistry.com temp.pbhshosting.com www.sandstoneoms.com www.mycentraldentalcare.com www.petalumafamilydentist.com www.prudenendo.com www.dentalimplantlearningcenter.com www.familyncosmeticdentist.com www.oralfacialsurgery.com www.pickledental.com www.iowaoralsurgery.com www.pramukdentalcenter.com www.dentalservice.net www.drsauchelli.com summitdentalpartnersnj.com www.rockyhilldentistry.com www.crestlinedentistry.com manor-market.pbis-cf.instacart.com www.oralsurgerygateway.com www.mashapeltsdds.com www.tcoralsurgery.com www.bayridgeoralsurgeon.com www.ssendo.com gulfcoastoms.com www.eastatlsurgerycenter.com www.implantdentistryofmidfl.com www.stonestownendo.com www.uncasvilledentist.com www.centrepointoms.ca www.goluborthodontics.com www.koperiodontics.com www.uplandendodontix.com www.cvilleoralsurgery.com www.summitfacial.com www.pediatricdentistorlando.com www.dentalassociatesofeasley.com wt.pltsec-622-azure-key-vault.auth0c.com edge.tenants.pltsec-622-azure-key-vault.auth0c.com pltsec-622-azure-key-vault.auth0c.com www.bridgecitydentistry.com www.creativedentistrybrooklyn.com www.pinnacledentalg.com www.willow.dental www.peoriaoralsurgery.com www.georgiacenterofs.com www.hdsmilecenter.com www.alignedsurgery.com www.drcatherinemyrick.com www.drgarykeeler.com www.lexendo.com m.charlestomeodmd.com m.drmarywebbbrown.com www.simplerdental.com www.peninsuladentalassociates.com it.sex.com www.chadjanderson.com test-cf.ziyueujoy.site www.kodental.us www.sandhillsoralfacialsurgery.com www.bridgesurgicalarts.com www.edgemont.dental www.modernofs.com www.wentzvillefamilydentist.com www.jubileedentistry.com www.reuter.de www.detailsdental.com www.andrewhoffmandmd.com www.uniquedental2008.com www.midwestdentalspecialists.com www.hiderfamilydentistry.com www.fairfieldendodontics.com www.centerforexcellenceindentistry.com www.doctorpanter.com www.dentalhealthcenter.info www.abrahamandgillsmiles.com promo.drjaypmalmquist.com www.wedgwooddentalcenter.com www.danvillesmilecenter.net www.extonperio.com www.nyfoss.com www.daedalusdentures.com www.downriversurgery.com www.drpeterhertz.com mikeandsonsautomotive.com www.westenddentalrva.com www.smithfielddental.org www.laredooralsurgery.com www.drhowardfetner.com www.dentalprofessionals.org www.vogtfamilydentistry.com www.sedationdentalomaha.com www.1sanfranciscodentist.com www.drmorrisos.com www.tilgercenterfordentistry.com www.mauiminoakadentistry.com www.southshoreperiodontics.ca www.libertydentalcenters.com www.heraldsquarecosmeticdental.com www.jessesalmeronmd.com www.bcdentaldesign.com www.drporteous.com www.co-oms.org www.nesp.org www.acmimplant.com www.ctoms.org www.smilepinellas.com www.njperio.org www.appletonfamilydentistry.com www.prosperoralsurgery.com www.timothytishlerdds.com www.aomsurgery.com www.periodontalassociates.com.au www.alipazfamilydentistry.com www.hersheydentistry.com www.yoursmileinmind.com www.liperioimplant.com www.kiawahvillagedentistry.com f2057436d776a592ed54cd215ded009242958d9f.vercel-workers.com www.visionarydental.com www-vadim-test.yummly.co.uk.cdn.cloudflare.net www.dayhilldental.com www.santaclaraoralsurgery.com www.nordicfamilydental.com www.lodidentalexcellence.com www.oralsurgerychicago.com www.forteimplantcenter.com www.orbisdentalgroup.com www.centralmaineendodontics.com www.marinoralsurgeon.com www.justafarmdental.com 1a86c7ae06791bf9027aba9d67ac8981b04291b9.vercel-workers.com www.drparisendo.com www.statesboro-oralsurgery.com www.geshaypediatricdentistry.com www.nycdentalassociates.com www.bellevueoralsurgery.com www.endodonticsofsiliconvalley.com www.cheyenneoms.com www.oralandfacialsurgery.com www.kingwoodoralsurgery.com www.applecreekoralsurgery.com www.siemanendo.com www.metroplexoralsurgery.com www.nwvalleyoralandfacialsurgery.com www.apunjabi.com www.riverdaleoralsurg.com www.mercervillesmiles.com www.davisomfs.com www.greatgrin.com www.marlboroughoms.com www.cedarvalleyendodontics.com www.durhamperiodontics.com www.southbayperio.com www.aofstriad.com www.omsanorthland.com www.pomeradooralsurgery.com www.pulveroralsurgery.com www.texasrootcanal.com www.gorisdental.com www.njperioimplant.com www.santinidental.com www.drreigh.com www.drlutonsky.com www.smilesaversoflaurel.com www.winnipegoms.com www.drducic.com www.associateddentalcareofhelena.com www.hokholdinc.com www.riuoms.com www.bklynperiospa.com www.northterraceendo.com.au www.mysunsetdentalcare.com www.arbeitman-shein.com www.kentuckyoms.com www.drperimutewera.com www.chilliwackoralsurgery.com www.arizonaoms.com www.surreydentist.com www.edboothdds.com www.danburyendo.com www.arieldentalcare.com www.utahvalleyendodontics.com www.cabreradental.com www.jawdocs.org www.nofdentistry.com www.nwperio-implants.com www.thewavelength.org www.dentview3d.com www.flocoms.com www.drsteinweightloss.com www.friscooralsurgery.com www.arklatexoralsurgery.com www.capitalofs.com www.pittsburghoralsurgery.com www.implantdenturecare.com www.highlandparkperio.com www.hannaandmazerdental.com www.ccwdds.com www.colonianjdentist.com www.oralsurgerycenter.net www.kytnoralsurgery.com www.krperio.com www.michiganmaxillofacialsurgery.com www.infinityoralsurgery.com www.aibelendo.com www.jeffallendds.com www.endolynnwood.com feintool.co.kr www.calperio.org www.askariperio.com www.wrightcountyfamilydental.com www.smilekenosha.com www.newbrightonfamilydentistry.com www.endodonticsofdallas.com www.s2digitaldentallab.com www.mybrushboutique.com www.omfs.com www.grimespediatricdentistry.com www.orddental.com www.southernpinesncoms.com www.gulfstatedentalassociation.com www.lasmilespecialists.com new.lakepointedentalcare.com www.jscdentistry.com www.njofs.com www.cosicdental.com www.winbelldds.com www.grandcanyonfacialsurgery.com www.sentineldentistry.com www.dentalarts.net www.downtownperiodontalgroup.com www.katematindentist.com www.wyoms.com www.freshdentaloh.com www.ourfamilydentist.com www.wvendodontics.com www.drvickiege.com www.oralsurgeryofnaples.com www.capecodsmiles.com www.glesnefamilydentistry.com www.smilezonefamilydental.com www.langleypediatricdentistry.com www.boston-smiles.com www.njlegacydental.com www.emeryvilledentists.com www.berkdental.com www.langleybraces.com www.surreypediatricdentistry.com www.charlestonwvcosmeticdentist.com www.torreypinesperio.com www.winstonsmiles.com www.cityplacedentistry.com www.drccarbone.com www.bluelakeoralsurgery.com www.omsanc.com www.chesapeakepediatricdental.com www.issaquahsnoringsolutions.com www.spainhourdentistry.com www.lakelandsmilespr.com www.nvoms.com www.mw-os.com www.mountainviewoms.com www.tribecaoralsurgery.com www.minnesotaoralsurgery.com www.saintlouisoralsurgery.com www.ads-endo.com www.laoralsurgeon.com www.riveroaksendodontics.com www.smilecare.ca www.drlylaturkzadeh.com www.santarosadentaloffice.com www.littlediamondsdental.com www.davincidentalcentre.com www.aomspa.com www.marclaidds.com www.chapelhillncdentistry.com www.mojganmaherdds.com www.draslanian.com www.endopartners.com www.willowickfamilydentistry.com www.princetonendodontics.com www.denteek.com www.santarosaendodontist.com www.norcalpediatricdds.com www.awashingtondds.com www.drmegas.com www.gumplinger.ca 1b4f1cae18902d31133218c22da3bf1ba53739b0.vercel-workers.com www.stigalloralsurgery.com www.dudleyfamilydentistry.com www.ranchoofs.com www.splendiddentistry.com www.austinperiodontics.com www.brandonomfs.com www.bowne-chi.com www.kennethcnashdds.com www.iperioimplant.com www.jamesjmccall.com www.litturidental.com www.spokanesdentistry.com www.fountaingrovedentistry.com www.sasurgicalarts.com www.windsorendo.com www.webperio.com www.lakeareaendo.com www.njrootcanals.com www.midgaendo.com www.drdavidcedeno.com www.brucebblaudds.com www.cromptonparkoralsurgery.com www.marreyecenter.com www.smilebriteusa.com www.thefresnodentists.com www.dallascityendodontics.com www.sydneyendo.com www.smbdentalclinic.ky www.orlandodmd.com www.oralsurgeryofutah.com www.rondorriselectric.com www.ohiooms.com www.solanoendodonticspecialists.com www.regionaloralsurgery.com www.drpaolino.com www.endocobb.com www.fainoralsurgery.com www.centennialoms.com www.staytondental.com www.drbourget.com www.centercityoms.com www.biltmoreoralsurgery.com www.hinsdaledentist.com www.srqendo.com www.genevafamilydental.com www.idspecialties.net www.janesilkdds.com www.davidsilkdds.com www.detmerfamilydentistry.com www.americandentalcenter.org www.ambanes.com www.eastgreenwichendo.com www.neoralfacial.com www.stpetegentledentist.com www.rctdentalclinic.ie www.aggielandspectacles.com www.grove-endo.com www.buckoralsurgery.com www.neos-vt.com www.hearingathomeva.com www.lumadental.ca www.dralexiou.com www.plymouthendo.com www.libertyofs.com www.precisionoralsurgery.com www.brookbeamdental.com www.pinestreetdental.com www.cvofs.com www.epworthfamilydentistry.com www.riversideoralsurgery.com www.endopc.com www.noelendo.com www.ubomfs.com www.klempfamilydentistry.com www.actondental.com www.centralohioendodontics.com www.endoperio.com www.sloralsurgery.com

Malware Detected on Host

Count: 4 4dbe7db77f778bbb66745cc7b0a705099ff2de53bf9da675f76d6f325e15eeb1 e862ee44807eea3c678b98f5a3c7318d96c3ff3acc282eb5e9666b77c38acae3 e9c6fd084f731084958a5fe1e53f52210a2470aac5a4d562ea03f9875401e522 432cea77253596a819bf1521c27c85e2644ab4b954cb8a4ff91a68923cc51651

Open Ports Detected

2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22