104.18.235.68 Threat Intelligence and Host Information
General
This page contains threat intelligence information for the IPv4 address 104.18.235.68 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.
Possibly Malicious Host 🟢 10/100
Host and Network Information
-
JARM: 27d40d40d00040d1dc42d43d00041d6183ff1bfae51ebd88d70384363d525c
-
View other sources: Spamhaus VirusTotal
- Country:
- Network:
- Noticed: 1 times
- Protocols Attacked: Anonymous Proxy
- Passive DNS Results: minio.hk.24v.one wq.apnic.net.cdn.cloudflare.net rrdp.sub.apnic.net api.rex.io.apnic.net twnic-rdap.gke-sydney.prod.xyz.apnic.net idnic-rdap.gke-virginia.prod.xyz.apnic.net apnic-rdap.gke-virginia.prod.xyz.apnic.net cgi1.gke-sydney-test.nonprod.xyz.apnic.net dash.stg.xyz.apnic.net cgi2.gke-sydney-test.nonprod.xyz.apnic.net 7ytns9en.com orbit.apnic.net.cdn.cloudflare.net rex-server.gke-sydney-test.nonprod.xyz.apnic.net api-webapp.notification.io.apnic.net api-slack.notification.io.apnic.net idnic-rdap.gke-sydney.prod.xyz.apnic.net rdap.gke-virginia.prod.xyz.apnic.net reconnect.apnic.net reconnect-test.apnic.net kk.jhgame.online ouzhoubei.com nk2j7u.com ysk5mh0.com x1ju7z6mk.com w5khu3.com syeb7jkq.com hv3u0jo9.com 8vy5gw.com ri9xsh5aj0.com jikcl.com img.saas.7779888.shop registry-api.apnic.net notification.apnic.net chencd97.com rrdp-r2.apnic.net submit.apnic.net conference.apnic.net bylaws.apnic.net api.netox.io.apnic.net fun.chencd97.com cgi1.apnic.net meetings.apnic.net meetings.apnic.net.cdn.cloudflare.net conference.apnic.net.cdn.cloudflare.net api.dash.io.apnic.net analytics-api.apnic.net jpnic.rdap.apnic.net.cdn.cloudflare.net rex.apnic.net rex-measurements.apnic.net rrdp2.apnic.net rrdp.tst.xyz.apnic.net comment.apnic.net krnic-rdap.tst.xyz.apnic.net rdap-web.apnic.net community.apnic.net orbit.apnic.net rpki-as0-web.apnic.net event-hooks.apnic.net notification.stg.xyz.apnic.net www.survey.apnic.net webdist.data.apnic.net archive.apnic.net survey.apnic.net rrdp-as0.apnic.net events.apnic.net training.apnic.net nfh.apnic.net rrdp.apnic.net mailman.innog.net stats.stg.xyz.apnic.net netox.stg.xyz.apnic.net dash-web.stg.xyz.apnic.net mailman.apnic.net registry-monitoring.apnic.net rrdp-cf.apnic.net wiki-old.apnic.net analytics.apnic.net gitlab-pipeline-template.tst.xyz.apnic.net jira-old.apnic.net legacy-stats.apnic.net idnic-rdap.tst.xyz.apnic.net jpnic-rdap.tst.xyz.apnic.net twnic-rdap.tst.xyz.apnic.net rdap-test.apnic.net status.apnic.net netox.tst.xyz.apnic.net rpki-as0-web.tst.xyz.apnic.net rex.tst.xyz.apnic.net rex.stg.xyz.apnic.net rrdp-as0.tst.xyz.apnic.net unblockme.apnic.net netox.apnic.net www.apnic.net cdn.data.apnic.net jira.apnic.net blog.apnic.net wiki.apnic.net krnic.rdap.apnic.net directory.apnic.net webdist.tst.xyz.apnic.net submission.apnic.net ripestat.apnic.net jpnic.rdap.apnic.net kvwriter.apnic.net dash.apnic.net membership-application.tst.xyz.apnic.net stats.apnic.net upload.apnic.net academy-cf.apnic.net cdn.data.tst.xyz.apnic.net twnic.rdap.apnic.net membership-application.apnic.net idnic.rdap.apnic.net api-docs.tst.xyz.apnic.net rdap-web.tst.xyz.apnic.net stats.tst.xyz.apnic.net dash-web.tst.xyz.apnic.net id-v3.tst.xyz.apnic.net livechat.apnic.net directory.apnic.net.cdn.cloudflare.net rdap.apnic.net fellowship.apnic.net rrdp-as0.tst.xyz.apnic.net.cdn.cloudflare.net fellowship.apnic.net.cdn.cloudflare.net unblockme.apnic.net.cdn.cloudflare.net ts.tst.xyz.apnic.net.cdn.cloudflare.net rrdp-as0.apnic.net.cdn.cloudflare.net events.apnic.net.cdn.cloudflare.net krnic.rdap-worker.apnic.net.cdn.cloudflare.net rdap-cf.apnic.net.cdn.cloudflare.net stats.stg.xyz.apnic.net.cdn.cloudflare.net rsar-web.stg.xyz.apnic.net.cdn.cloudflare.net dash-web.stg.xyz.apnic.net.cdn.cloudflare.net rsar-web.tst.xyz.apnic.net.cdn.cloudflare.net netox.tst.xyz.apnic.net.cdn.cloudflare.net stats.tst.xyz.apnic.net.cdn.cloudflare.net dash-web.tst.xyz.apnic.net.cdn.cloudflare.net submission.apnic.net.cdn.cloudflare.net nfh.apnic.net.cdn.cloudflare.net upload.apnic.net.cdn.cloudflare.net jpnic.rdap-worker.apnic.net.cdn.cloudflare.net jira.apnic.net.cdn.cloudflare.net wiki.apnic.net.cdn.cloudflare.net rdap-web.apnic.net.cdn.cloudflare.net dash.apnic.net.cdn.cloudflare.net cdn.data.tst.xyz.apnic.net.cdn.cloudflare.net twnic.rdap.apnic.net.cdn.cloudflare.net archive.apnic.net.cdn.cloudflare.net stats.apnic.net.cdn.cloudflare.net webdist.tst.xyz.apnic.net.cdn.cloudflare.net training.apnic.net.cdn.cloudflare.net api-docs.tst.xyz.apnic.net.cdn.cloudflare.net idnic.rdap.apnic.net.cdn.cloudflare.net rpki-stats.apnic.net.cdn.cloudflare.net membership-application.apnic.net.cdn.cloudflare.net cdn.data.apnic.net.cdn.cloudflare.net netox.apnic.net.cdn.cloudflare.net membership-application.tst.xyz.apnic.net.cdn.cloudflare.net gcp.rdap.apnic.net.cdn.cloudflare.net krnic.rdap.apnic.net.cdn.cloudflare.net webdist.data.apnic.net.cdn.cloudflare.net www.apnic.net.cdn.cloudflare.net blog.apnic.net.cdn.cloudflare.net rdap.apnic.net.cdn.cloudflare.net account.337.com
Malware Detected on Host
Count: 26 bd639c08dda607dd89d28c041ba38ac7dfaa09f451bfb68a530f146192dfaa32 9ee999a6fe820393aeac8d54093058a8178f318583d9b49bf25b4ee5c73f4f83 9d28637500cf2b29556593f9d93f5bd9bebebde69374b40e92e0085448aa3cde 41a96ded034a3299af2c3b7690d0e0e42adff48f756b75f4380797e2063cd1f9 722b67d0a1577bb775f8fa9d43838fee33090c9ce74e1c3e74eebd381b752cd0 d82ec4e0ff7de1588312f0fe53076d701e0bfc1fdae5e59e4ef1df845068ea61 579f8f3c897a17a0197374751c596f643b6fe67510b2f3498e69f6dfa3c2200d 9d756510b937434994e29ada028c981d8cf82920a0306cfc19a1c70082a197d0 1837de1ae1a42f4d26f27c59d5010fd2529039c57cc06bdfe7dcb3cf7067c580 99741d761b605bf61ed0801d7dd8824a4fa1b6b6fa3bb0cfcb16beae5f74f962
Open Ports Detected
2082 2083 2086 2087 2096 443 80 8080 8443 8880
Map
Whois Information
- NetRange: 104.16.0.0 - 104.31.255.255
- CIDR: 104.16.0.0/12
- NetName: CLOUDFLARENET
- NetHandle: NET-104-16-0-0-1
- Parent: NET104 (NET-104-0-0-0-0)
- NetType: Direct Allocation
- OriginAS: AS13335
- Organization: Cloudflare, Inc. (CLOUD14)
- RegDate: 2014-03-28
- Updated: 2024-09-04
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
- Ref: https://rdap.arin.net/registry/ip/104.16.0.0
- OrgName: Cloudflare, Inc.
- OrgId: CLOUD14
- Address: 101 Townsend Street
- City: San Francisco
- StateProv: CA
- PostalCode: 94107
- Country: US
- RegDate: 2010-07-09
- Updated: 2024-11-25
- Ref: https://rdap.arin.net/registry/entity/CLOUD14
- OrgAbuseHandle: ABUSE2916-ARIN
- OrgAbuseName: Abuse
- OrgAbusePhone: +1-650-319-8930
- OrgAbuseEmail: abuse@cloudflare.com
- OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
- OrgNOCHandle: CLOUD146-ARIN
- OrgNOCName: Cloudflare-NOC
- OrgNOCPhone: +1-650-319-8930
- OrgNOCEmail: noc@cloudflare.com
- OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
- OrgRoutingHandle: CLOUD146-ARIN
- OrgRoutingName: Cloudflare-NOC
- OrgRoutingPhone: +1-650-319-8930
- OrgRoutingEmail: noc@cloudflare.com
- OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
- OrgTechHandle: ADMIN2521-ARIN
- OrgTechName: Admin
- OrgTechPhone: +1-650-319-8930
- OrgTechEmail: rir@cloudflare.com
- OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
- RAbuseHandle: ABUSE2916-ARIN
- RAbuseName: Abuse
- RAbusePhone: +1-650-319-8930
- RAbuseEmail: abuse@cloudflare.com
- RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
- RNOCHandle: NOC11962-ARIN
- RNOCName: NOC
- RNOCPhone: +1-650-319-8930
- RNOCEmail: noc@cloudflare.com
- RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
- RTechHandle: ADMIN2521-ARIN
- RTechName: Admin
- RTechPhone: +1-650-319-8930
- RTechEmail: rir@cloudflare.com
- RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
Links to attack logs
anonymous-proxy-ip-list-2025-07-20
Share on: