104.18.109.96 Threat Intelligence and Host Information
General
This page contains threat intelligence information for the IPv4 address 104.18.109.96 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.
Possibly Malicious Host 🟢 10/100
Host and Network Information
-
JARM: 27d40d40d00040d00042d43d00041df04c41293ba84f6efe3a613b22f983e6
-
View other sources: Spamhaus VirusTotal
- Country:
- Network:
- Noticed: 1 times
- Protocols Attacked: Anonymous Proxy
- Passive DNS Results: christmasmusic.com.au www.openvpn.net informationfreedom.openvpn.net ipv6.openvpn.net community.openvpn.net cloud-billing.openvpn.net myaccount.openvpn.net docs.openvpn.net as-repository.openvpn.net careers.openvpn.net swupdate.openvpn.net openvpn.net zjocvxxr.icu www.zjocvxxr.icu www.lackuauy.icu www.tpoyeqef.icu www.oswvwvfa.icu oswvwvfa.icu ireegzwh.icu tpoyeqef.icu xzjpzeri.icu
Malware Detected on Host
Count: 8 25b70007e88cb0b97183bd53ce77ac5ed3fa308b4c7a2df25a0ec161955827d0 64d3d7d9749936b4996973a5399b9e15bd675218fcc68e21893bed28547f278a 9255a3321871148830dcdfbf3ad6eb5edc3b3c032c0a8e4e1e7326212476b902 a3ba5a6a592535e880c533b2fc7da8686cc179c39b5c53772e7102fb8cf5219e 2ed2db3366166e9435411d7e306d7bc19261bd5ac5c21b51e589679e089fb712 544ffa3f8317a68d03c4783f3d7455ffa3a9ed86f9d4f0d26ff1745f7a5be1c9 bc8dd5ab3fe7fda2d222552724d0b0441306ec3dca84907740129c3e6ca0c999 6e4d8dcf86cdcd10202fee54b2c292e4c9a65860987e34a4a494763b1378e28a
Open Ports Detected
2082 2083 2086 2087 80 8080 8443 8880
Map
Whois Information
- NetRange: 104.16.0.0 - 104.31.255.255
- CIDR: 104.16.0.0/12
- NetName: CLOUDFLARENET
- NetHandle: NET-104-16-0-0-1
- Parent: NET104 (NET-104-0-0-0-0)
- NetType: Direct Allocation
- OriginAS: AS13335
- Organization: Cloudflare, Inc. (CLOUD14)
- RegDate: 2014-03-28
- Updated: 2024-09-04
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
- Ref: https://rdap.arin.net/registry/ip/104.16.0.0
- OrgName: Cloudflare, Inc.
- OrgId: CLOUD14
- Address: 101 Townsend Street
- City: San Francisco
- StateProv: CA
- PostalCode: 94107
- Country: US
- RegDate: 2010-07-09
- Updated: 2024-11-25
- Ref: https://rdap.arin.net/registry/entity/CLOUD14
- OrgNOCHandle: CLOUD146-ARIN
- OrgNOCName: Cloudflare-NOC
- OrgNOCPhone: +1-650-319-8930
- OrgNOCEmail: noc@cloudflare.com
- OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
- OrgTechHandle: ADMIN2521-ARIN
- OrgTechName: Admin
- OrgTechPhone: +1-650-319-8930
- OrgTechEmail: rir@cloudflare.com
- OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
- OrgAbuseHandle: ABUSE2916-ARIN
- OrgAbuseName: Abuse
- OrgAbusePhone: +1-650-319-8930
- OrgAbuseEmail: abuse@cloudflare.com
- OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
- OrgRoutingHandle: CLOUD146-ARIN
- OrgRoutingName: Cloudflare-NOC
- OrgRoutingPhone: +1-650-319-8930
- OrgRoutingEmail: noc@cloudflare.com
- OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
- RNOCHandle: NOC11962-ARIN
- RNOCName: NOC
- RNOCPhone: +1-650-319-8930
- RNOCEmail: noc@cloudflare.com
- RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
- RTechHandle: ADMIN2521-ARIN
- RTechName: Admin
- RTechPhone: +1-650-319-8930
- RTechEmail: rir@cloudflare.com
- RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
- RAbuseHandle: ABUSE2916-ARIN
- RAbuseName: Abuse
- RAbusePhone: +1-650-319-8930
- RAbuseEmail: abuse@cloudflare.com
- RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
Links to attack logs
anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22
Share on: