104.18.90.198 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.18.90.198 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• JARM: 27d40d40d00040d00042d43d00041df04c41293ba84f6efe3a613b22f983e6

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: businessindia.co interbellumnews.com dnbrasil.dn.pt westcoaststandard.ca riks.se www.fact.net.in deccanherald.madrid.quintype.io www.anandavikatan.com dinheirovivo.dn.pt www.outlooktraveller.com dainikgomantak.esakal.com newstremor.com ai.izooto.com www.himalmag.com dhie.deccanherald.com test-abc.quintype.io www.energywatch.in dn.madrid.quintype.io gulfnews.com english.vikatan.com theleaflet.in auth.esakal.com eisamay.com prod.khaleejtimes.com saskatchewanstandard.com www.peoplesreporter.in bengali.sentinelassam.com www.bairdmaritime.com southseattleemerald.org sarkarnama.esakal.com outlook-betting.quintype.io www.outlookbusiness.com www.indiawaterportal.org www.cdomagazine.tech www.outlookmoney.com soulivity.com german.todaysgolfer-demo.madrid.quintype.io themetrotv.com timepassonline.vikatan.com reporterlive-proxy.quintype.io taiyangnews.info jobs.sentinelassam.com hindi.downtoearth.org.in www.westernstandard.news www.rajexpress.com healthdayjapan.com business.outlookindia.com www.theceo.in www.prajavani.net resident.com propertymiddleeast.com hindi.sentinelassam.com www.analyticsinsight.net www.diamondworld.net beta.thenewsminute.com telugu.vikatan.com newindianexpress-madrid.quintype.io agrowon.esakal.com southcheck.in politika.zprmedia-demo.madrid.quintype.io tribune.net.ph www.andhimazhai.com advaitias.com outlooktraveller.com agro1.qlife.in www.mynrination.com expressdeals-madrid.quintype.io news-crunch.com www.healthday.com weareaquaculture.com www.ndtvprofit.com www.venuecincinnati.com www.lagoslocalnews.com www.thefourthnews.in news.vetrikkodi.hindutamil.in kannada.barandbench.com www.dainikgomantak.com english.metrovaartha.com www.metrovaartha.com hindi.newsgram.com www.theadvertisermediagroup.com www.medboundtimes.com www.qlife.in www.xchange.co.bw cxo.net www.puthiyathalaimurai.com tamil.vineet.madrid.quintype.io www.vnews27.com prod-ahead.quintype.io beta-ahead.quintype.io beta.bqlive.com www.baseoilnews.com gamerzterminal.com quintypebold.com psuwatch.com archive.uptak.in cars.arabicdemo.madrid.quintype.io rasesh-mehta.cx-demo.madrid.quintype.io raftaar.in digitalterminal.in www.bqprime.com www.themooknayak.com publicpressjournal.com en.themooknayak.com boldquintype.com wtskora.com keinoalysanomat.fi www.cornerofficejournal.com kalkionline.com cf-varnish.quintype.io homegrown.co.in www.nationalheraldindia.com www.creativegaga.com www.erembusiness.com www.chinmayaudghosh.in kalbela.com kamadenu.hindutamil.in www.tendernama.com mimorelia.com bdnews24.com bangla.bdnews24.com arts.bdnews24.com aboutus.bdnews24.com help.quintype.com www.presscenter.mn www.sustainabilitymenews.com www.thebridgechronicle.com www.timepassonline.com www.wazaa.mu www.sarkarnama.in health.raftaar.in cf-haproxy-v2.quintype.io prabhatkhabar.quintype.io quintype.publisher.quintype.io hello-next.bdnews24.com www.saamtv.com www.afaqs.com www.qaumiawaz.com www.rajexpress.co women.raftaar.in api.polltype.com www.ftcftcftc.com help2.quintype.com www.gomantaktimes.com marathi.freepressjournal.in www.thecue.in www.knocksense.com www.bettorsinsider.com www.fortuneindia.com www.greaterkashmir.com www.karjalainen.fi bengali.whiteswanfoundation.org hindi.whiteswanfoundation.org tamil.whiteswanfoundation.org www.newsgram.com www.dtnext.in magazine.watertoday.org en.mediaonetv.in www.bloombergquint.com next.thequint.com www.hindi.vineet.madrid.quintype.io www.lokshahi.com beta.bqprime.com www.agrowon.com beta.dtnext.in www.theestablished.com hindi.newslaundry.com sabq.org lexlegacybloc.com www.foodtechbiz.com www.pratinidhimanthan.com www.pratidintime.com hindi.sinceindependence.com dharm.raftaar.quintype.io www.indiaglobalbusiness.com www.hindustanreads.com english.ajel.sa ajel.sa www.greatkarunadu.com www.mumbaitak.in beta.bloombergquint.com www.forbesga.com sabq.madrid.quintype.io cf-fiare.quintype.io.cdn.cloudflare.net www.sinceindependence.com hfssgroup.com www.sathyadeepam.org wuzupnigeria.ng www.steelguru.com www.hevosurheilu.fi www.dailynewsnepal.com www.ficl.org.in beta.hevosurheilu.fi www.thenationwide.in www.indiancementreview.com www.thelede.in madrid-fastly.quintype.io www.iglobalnews.com www.uptak.in i-mediat.fiareads.com cf-staging.quintype.io cf.quintype.io cf-fiare.quintype.io cf-perf.quintype.io cf-old.quintype.io prothomalo-web.quintype.io fallback.quintype.io www.ejan.co stg.fiare.quintype.io astrology.raftaar.in www.crimetak.in www.reaggregation.com www.thenewsagency.in news.raftaar.in www.ncf-india.org hindi.barandbench.com www.ejnana.com fiare.staging.quintype.io afkgaming.com awake.observer maker.link www.barandbench.com kannada.whiteswanfoundation.org www.transportandlogisticsme.com www.navjivanindia.com super.cab www.sme10x.com travel.raftaar.in www.fastbikesindia.com fiare.madrid.quintype.io www.dharmadispatch.in www.prabhatkhabar.com www.netindian.in www.polltype.com dharm.raftaar.in www.vikatan.com www.indiansingulf.in beta.prabhatkhabar.com www.freepressjournal.in www.yoyocial.news awake.gallery reflect.quintype.com www.udaybulletin.com www.deshdoot.com www.whiteswanfoundation.org malayalam.whiteswanfoundation.org awake.mom awake.fashion awake.fitness beta-madrid.quintype.io www.esakal.com www.toontype.com www.evoindia.com fithindi.thequint.com hindi.thequint.com www.thequint.com fit.thequint.com corner.network beta1.esakal.com fargo.network www.startupcityindia.com www.vikatan.tv businessasia.online awake.solar auth.newslaundry.com www.kalaignarseithigal.com www.thenortheasttoday.com www.matternews.org www.newslaundry.com staging.polltype.com cinema.vikatan.com beta-cinema.vikatan.com beta.vikatan.com sports.vikatan.com beta-sports.vikatan.com next.vikatan.com madrid.quintype.io spiriting.com.au cf-staging.quintype.io.cdn.cloudflare.net cf.quintype.io.cdn.cloudflare.net swarajyamag.com bq-external-api.quintype.io www.mediaonetv.in

Malware Detected on Host

Count: 12 0043587e9beb54a81b0cc8aa5b5348f832d5f78c236b6b34328fb489f5c42ed9 72428c330665c5d73654b08448744b6f88f8389fda91893052d1dd4d2eac4ed0 f11d486ae268ba9e56606c5dbe4e526c0591e3b4d29dbaa6c032eae4cac1b67f 048190f801f13f6865132dd57f9af0874b893664bde553622b1192a62cb4fcd3 2924d5d88d50bd86a8ac9c502a0c85aa3f8db28096a707af9836463983eb87eb f47a6d9bb835bb39583b9b11393a54a690b1e6fa0e95d69a47f378a25350b239 4b986f76e72653762e3e8ef354ff18d5b56127b341f58d8d127c9727c812df76 5f697bddbc7b8dff97d994ad13253d9068197259df8e65ba55c12ff5f7a571d3 942729f52942ac86b9d2cba7e3737f523c3e4b2843c51a028b09f49db15e3dcd 666e8ed8a8fdabd81c3bb39215d03ff1ac0b7eb86551814708e92ab5a266b9bc

Open Ports Detected

2082 2083 2086 2087 2096 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22