104.18.11.214 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.18.11.214 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: www.perheneuvonta.fi mgjndnpyq.com betaki777.vip ablink.marketing.studentuniverse.com home.studentuniverse.com kulturacap.com xn–marnovation-dbb.be src.zakaz.atbmarket.com.cdn.cloudflare.net 6ns61a.com admin.elitepg777.com www.sporthall.palanga.lt taxes.co.santa-barbara.ca.us.cdn.cloudflare.net images.studentuniverse.com studentuniverse.com www.studentuniverse.com www.idealwork.gr www.liberty.co.zm.cdn.cloudflare.net briargrovesmilesdentistry.com elitepg777.com amazeanyonein.top drywareoris.top qa-au-gm2-testfbmvp-20984-intermittentte.az.ssdgws.co.uk www.kulturacap.com perheneuvonta.fi taryba.palanga.lt gis.palanga.lt stg-ws.deliverybox.ph www.xin-stars.com sxceaeg.com sxceast.com cookieswap.vip iroshield.com sxcepro.com de-ie-4jv-sc-27146-fixedcollectionsselec.socrates.ssdgws.co.uk minigames.talkingtomandfriends.com sonymusic.es gameapi.xin-stars.com.cdn.cloudflare.net sxexad.com sxexpro.com goowanyu.com essentialncarnival.com 6500d.com www.truckingdive.com talkingtomandfriends.com aptranetedge.com uat4.np.xg.magnumswissre.com skybox77.com qa9.atelvia.com uat.cc.np.xg.magnumswissre.com dev.ragazzicoraggiosi.it sbox.np.xg.magnumswissre.com sbox.cc.np.xg.magnumswissre.com uat2.np.xg.magnumswissre.com pp-login-kuwait.decathlon.net ccuat.np.xg.magnumswissre.com uat.np.xg.magnumswissre.com edge.tenants.test-aws-temperate-pika-5968.auth0c.com wt.test-aws-temperate-pika-5968.auth0c.com test-aws-temperate-pika-5968.auth0c.com stakenews.com passport.co.santa-barbara.ca.us www.pdnob.es pdnob.es api.zakaz.atbmarket.com adm.zakaz.atbmarket.com src.zakaz.atbmarket.com dxctadminia49w5dprod.paastest.nl help.flip.xyz web-opti-prod.iiss.org cc1uat.np.xg.magnumswissre.com cc1uat.cc.np.xg.magnumswissre.com ctuat.cc.np.xg.magnumswissre.com cc.np.xg.magnumswissre.com ctuat.np.xg.magnumswissre.com uat3.np.xg.magnumswissre.com np.xg.magnumswissre.com edge.tenants.test-aws-youthful-treefrog-1758.auth0c.com test-aws-youthful-treefrog-1758.auth0c.com wt.test-aws-youthful-treefrog-1758.auth0c.com www.xin-stars.com.cdn.cloudflare.net clearbridgeinvestments.co.kr qa-gb-waj-fbmvp-12478-dynamicenvmanage8.az.ssdgws.co.uk clovislimbpreserve.com qa-ca-efa-fixecrp-101390-multipleprimari.az.ssdgws.co.uk find.interiorsgardens.com etoro-forex-affiliate.com ftinstitutionalapac.com www.flip.xyz 36veterinarios.com graph.flip.xyz deliverybox.ph connected-content.qa.just-data.io auth.flip.xyz shop.flip.xyz flip.xyz images.flip.xyz strategienationalesurlelogementcanada.ca 18f0d7e3edf57144dc7920a76e6e6d7db09ebcd3.vercel-workers.com www.xn--sprommigrene-wjb.no xn–sprommigrene-wjb.no primeye.com riverrunphotocontest.com d10893b26ac2427e9e113f817972a279232e81cd.vercel-workers.com azstaging-apigateway.scm.genpt.net test-pserv-243.auth0c.com edge.tenants.test-pserv-243.auth0c.com www.2ndlang.com oxfordfamilyeyecare.com www.portwealth.com www.foodmaxx.com uat-web.foodmaxx.com stg-web.foodmaxx.com 2ndlang.com www.ton-gain.com ton-gain.com www.carrier.es www.piqray-pricing.com www.piqray-pricing.com.cdn.cloudflare.net escambiavotes.gov rtm.visa.com www.portwealth.com.cdn.cloudflare.net mqq53.com booking.lufthansa.com.cdn.cloudflare.net 540day.com dwellsouthjersey.com ao1ao.com cocalsports.net 3451cc.com 1betvegas.ag flyers.foodmaxx.com.cdn.cloudflare.net yjav11.com www.foodmaxx.com.cdn.cloudflare.net stg-web.foodmaxx.com.cdn.cloudflare.net flyers.foodmaxx.com

Malware Detected on Host

Count: 12 17d1cabad89e1f74967034f62cca98a87262fa3f21afe5d53d330d09987d63e1 4b04b3a8e9e34ca5806cd848cb4d3ed7c56cfc9c5462a38be873d82009d1af40 890202e613d06c0b60289ed57088ff4e6a59fca7a5ffd982111aa76e01df282b ef15a6d721904d73cdd2cc0819954e1180868188749d8a847e148971642c5fe7 d14288099f950ac68c8d29dfede8509415a5cf26b4e51e556f427b9b30e1e1f3 1bcfb66882aef988fee3ebdb52ce245cb6c4a679edffd8e1ee046601192443dc d31733938798cc3686a6969fe8ab18e71f35b5e0dbf07b5c2a4a35d2d449da1b 4a0493ae5dcadf5a8597c2b0141d63b7982292c014feadc5cd04ab04330100a8 44c7eac4480e9747985f82da80274796a87773f21a624589f28647b80912c99c 396df1a2469eb7cb317b05816c2cf35eb8e3448404d031f36095c8f0daa6ad88

Open Ports Detected

2052 2082 2083 2086 2087 2095 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22