104.18.28.205 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.18.28.205 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: www.seaart.ai capesandjapes.pinecast.co thedigitalcore-unnamed-podcast.pinecast.co the-ace-atomic-cinema-experime.pinecast.co the-baseball-lifer.pinecast.co 1213432.com www.1213432.com www.fjallraven.tw essential-apple-show.pinecast.co get-derila-ergo.com legewithout1q16iprep-slot.paastest.epimore.com chelten.pinecast.co launch-speed.pinecast.co bingomania.com silke-puntschuh.com bidv88.cc azithromycinr.com online-reporting.tps.ca 79sodo.hair verenaolesinski.com fjallraven.tw boombasticast.pinecast.co ccc-hellas1.com www.pv-tech.org www.conversationswithtyler.com livingblindfully.pinecast.co files-dev.tps.ca mainathlet.pinecast.co without-limits-henk-van-zon.pinecast.co the-ducky-obrien-show.pinecast.co the-oscar-death-race-podcast.pinecast.co throwdown-thursday.pinecast.co help.bingomania.com royaldesign.no conversationswithtyler.com webrock.io rlcf.pinecast.co www.scottsville.org.cdn.cloudflare.net panr.pinecast.co worlddevelopermonth.com camp.heartrecovery.com immortal-incantations.pinecast.co onebooking-unleash.decathlon.net the-st-canard-files-a-darkwing.pinecast.co tps.ca test-aws-broken-emu-8632.auth0c.com stronline.store www.bingomania.com heartrecovery.com www.heartrecovery.com vortr-ge-von-johannes-gerloff.pinecast.co ackercampsbipalawsuit.com qa-nz-wii-fbmvp-15468-deprecatewherecard.az.ssdgws.co.uk www-new.statnews.com www.tps.ca ft.ftstaging.co plf-test-aws-app-scale-23.auth0c.com cdn-albums.tunein.com.cdn.cloudflare.net www.premioemsuasmaos.com premioemsuasmaos.com jokaviproom.com events-widget.statnews.com www.paperpak.net.au prep.paperpak.net.au prod.paperpak.net.au int.paperpak.net.au cdn-profiles.tunein.com.cdn.cloudflare.net www.pfeinflammationpipeline.com pfeinflammationpipeline.com www.atraveo.pl apps.statnews.com broadcaster-help.tunein.com tunein.com help.tunein.com.cdn.cloudflare.net cdn-radiotime-logos.tunein.com.cdn.cloudflare.net nrafamily.org www.skincarehealthlabs.com dev-gfs.eiu.com skincarehealthlabs.com qa-au-wrm-testmcl-19-unittest.az.ssdgws.co.uk polkaudio.com.cn savesmallbusiness.com hardcoregamez.com statnews.com www.arnione.com arnione.com www.statnews.com qa-au-thy-fixfbmvp-11981-ensurefailifnot.az.ssdgws.co.uk inquisito-api-jp.dexcom.com staubli.lu sso-dev.porta.asahi.com sso.asahi.com manpowerprofessional.de www.reedlake.com zkofke.com qa-gb-xkg-fbvmp-9763-aurouteconfig.az.ssdgws.co.uk e678r.com palmbeacheyecenter.com taxmelater.ca capturerecovery.ca edge.tenants.ac-validate-rds.auth0c.com ac-validate-rds.auth0c.com wt.ac-validate-rds.auth0c.com tpapartner.net medicalreveal.com mypath.manpower.it admin-dev.discordactivities.com admin-stg.discordactivities.com the-eternal-mindset.pinecast.co the-culture-chat-cafe.pinecast.co test2-dmz.ricohonline.net acptr-dmz.ricohonline.net b2b.pleinsport.com www.pleinsport.com 5fa6650e5bd619896ce442802d10b6657ff70dd1.vercel-workers.com fsconstruction-pontiac.com subscriptionswebformarea.com bullshirt.pinecast.co presenze.manpower.it greenerpastures.tk vidaxl.com.ua mainmenu.pinecast.co www.greenerpastures.tk www.franklinculture.org.cdn.cloudflare.net yallcomeback.pinecast.co medspriing.com prep.thelobbystockholm.se inte.thelobbystockholm.se www.franklinculture.org helper.prio.research.cloudflare.com admin.discordactivities.com lame-pod.pinecast.co discordactivities.com v.ibobo1.com ebgaffiliates.com zenkai-boost.pinecast.co rock-matters.pinecast.co think-breaks-podcast.pinecast.co uate-dmz.ricohonline.net.cdn.cloudflare.net progames.world pocr-dmz.ricohonline.net.cdn.cloudflare.net jackets-debrief.pinecast.co energyfromfoods.com fluxocast.pinecast.co live-like-the-world-is-dying.pinecast.co best-friends-in-the-world.pinecast.co prep.thelobbystockholm.se.cdn.cloudflare.net inte.thelobbystockholm.se.cdn.cloudflare.net like-a-podcast.pinecast.co conversations-with-cassi.pinecast.co pinecast.co haskingdom.pro www.atvtorture.com.cdn.cloudflare.net

Malware Detected on Host

Count: 4 508aa512ca3b2c0f4233ab20530206f5a71f9b26dd1d4b0c387f8716203ee1ce 6594a6c61de1ae67e92032fe5bff57b6f75f13d6440ab6b38c3a5e744172cc86 151a3c4f74fe1bd6559badd81d9b5069311f3fe7d949c5af35fc61447c219c19 6ddbcac02f6a82fa19b4401d694721532f919a80678b59696ee7896cd9a3c41f

Open Ports Detected

2082 2083 2086 2087 2095 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22