184.72.18.113 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 184.72.18.113 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy

Open Ports Detected

6004 8009

CVEs Detected

CVE-2009-4492 CVE-2009-5147 CVE-2011-1004 CVE-2012-4464 CVE-2012-4466 CVE-2012-4522 CVE-2012-5371 CVE-2012-5380 CVE-2012-6708 CVE-2013-0175 CVE-2013-0233 CVE-2013-0256 CVE-2013-1655 CVE-2013-1821 CVE-2013-1911 CVE-2013-1933 CVE-2013-1947 CVE-2013-1948 CVE-2013-2065 CVE-2013-2119 CVE-2013-4073 CVE-2013-4136 CVE-2013-4164 CVE-2013-4287 CVE-2013-4363 CVE-2013-4413 CVE-2013-5647 CVE-2014-4975 CVE-2014-8080 CVE-2014-8090 CVE-2015-3900 CVE-2015-7551 CVE-2015-9096 CVE-2015-9251 CVE-2017-10784 CVE-2017-14064 CVE-2017-7656 CVE-2017-7657 CVE-2017-7658 CVE-2017-9735 CVE-2018-8780 CVE-2019-10247 CVE-2019-11358 CVE-2019-16254 CVE-2020-11022 CVE-2020-11023 CVE-2020-25613 CVE-2020-27216 CVE-2020-5247 CVE-2020-7656 CVE-2021-28165 CVE-2021-28169 CVE-2021-28965 CVE-2021-28966 CVE-2021-31799 CVE-2021-31810 CVE-2021-34428 CVE-2021-41819 CVE-2022-2047 CVE-2022-2048 CVE-2022-28739 CVE-2023-22795 CVE-2023-26048 CVE-2023-26049 CVE-2023-28756 CVE-2023-44487 CVE-2024-26142 CVE-2024-49761 CVE-2024-6763 CVE-2025-6442

Map

Whois Information

• NetRange: 184.72.0.0 - 184.73.255.255
• CIDR: 184.72.0.0/15
• NetName: AMAZON-EC2-7
• NetHandle: NET-184-72-0-0-1
• Parent: NET184 (NET-184-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Amazon.com, Inc. (AMAZO-4)
• RegDate: 2010-01-26
• Updated: 2014-09-03
• Comment: The activity you have detected originates from a
• Comment: dynamic hosting environment.
• Comment: For fastest response, please submit abuse reports at
• Comment: http://aws-portal.amazon.com/gp/aws/html-forms-controller/contactus/AWSAbuse
• Comment: For more information regarding EC2 see:
• Comment: http://ec2.amazonaws.com/
• Comment: All reports MUST include:
• Comment: * src IP
• Comment: * dest IP (your IP)
• Comment: * dest port
• Comment: * Accurate date/timestamp and timezone of activity
• Comment: * Intensity/frequency (short log extracts)
• Comment: * Your contact details (phone and email)
• Comment: Without these we will be unable to identify
• Comment: the correct owner of the IP address at that
• Comment: point in time.
• Ref: https://rdap.arin.net/registry/ip/184.72.0.0
• OrgName: Amazon.com, Inc.
• OrgId: AMAZO-4
• Address: Amazon Web Services, Inc.
• Address: P.O. Box 81226
• City: Seattle
• StateProv: WA
• PostalCode: 98108-1226
• Country: US
• RegDate: 2005-09-29
• Updated: 2022-09-30
• Comment: For details of this service please see
• Comment: http://ec2.amazonaws.com
• Ref: https://rdap.arin.net/registry/entity/AMAZO-4
• OrgRoutingHandle: IPROU3-ARIN
• OrgRoutingName: IP Routing
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
• OrgNOCHandle: AANO1-ARIN
• OrgNOCName: Amazon AWS Network Operations
• OrgNOCPhone: +1-206-555-0000
• OrgNOCEmail: amzn-noc-contact@amazon.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
• OrgRoutingHandle: ARMP-ARIN
• OrgRoutingName: AWS RPKI Management POC
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
• OrgTechHandle: ANO24-ARIN
• OrgTechName: Amazon EC2 Network Operations
• OrgTechPhone: +1-206-555-0000
• OrgTechEmail: amzn-noc-contact@amazon.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
• OrgAbuseHandle: AEA8-ARIN
• OrgAbuseName: Amazon EC2 Abuse
• OrgAbusePhone: +1-206-555-0000
• OrgAbuseEmail: trustandsafety@support.aws.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
• RNOCHandle: ANO24-ARIN
• RNOCName: Amazon EC2 Network Operations
• RNOCPhone: +1-206-555-0000
• RNOCEmail: amzn-noc-contact@amazon.com
• RNOCRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
• RTechHandle: ANO24-ARIN
• RTechName: Amazon EC2 Network Operations
• RTechPhone: +1-206-555-0000
• RTechEmail: amzn-noc-contact@amazon.com
• RTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
• RAbuseHandle: AEA8-ARIN
• RAbuseName: Amazon EC2 Abuse
• RAbusePhone: +1-206-555-0000
• RAbuseEmail: trustandsafety@support.aws.com
• RAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
• NetRange: 184.72.0.0 - 184.72.63.255
• CIDR: 184.72.0.0/18
• NetName: AMAZON-SFO
• NetHandle: NET-184-72-0-0-2
• Parent: AMAZON-EC2-7 (NET-184-72-0-0-1)
• NetType: Reallocated
• OriginAS:
• Organization: Amazon.com, Inc. (AMAZO-48)
• RegDate: 2020-04-16
• Updated: 2020-04-16
• Ref: https://rdap.arin.net/registry/ip/184.72.0.0
• OrgName: Amazon.com, Inc.
• OrgId: AMAZO-48
• Address: 1200 12th Ave South
• City: Seattle
• StateProv: WA
• PostalCode: 98144
• Country: US
• RegDate: 2011-08-11
• Updated: 2021-07-22
• Comment: The activity you have detected originates from a dynamic hosting environment.
• Comment: For fastest response, please submit abuse reports at http://aws-portal.amazon.com/gp/aws/html-forms-controller/contactus/AWSAbuse
• Comment: For more information regarding EC2 see:
• Comment: http://ec2.amazonaws.com/
• Comment: All reports MUST include:
• Comment: * src IP
• Comment: * dest IP (your IP)
• Comment: * dest port
• Comment: * Accurate date/timestamp and timezone of activity
• Comment: * Intensity/frequency (short log extracts)
• Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
• Ref: https://rdap.arin.net/registry/entity/AMAZO-48
• OrgNOCHandle: AANO1-ARIN
• OrgNOCName: Amazon AWS Network Operations
• OrgNOCPhone: +1-206-555-0000
• OrgNOCEmail: amzn-noc-contact@amazon.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
• OrgRoutingHandle: IPROU3-ARIN
• OrgRoutingName: IP Routing
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
• OrgAbuseHandle: AEA8-ARIN
• OrgAbuseName: Amazon EC2 Abuse
• OrgAbusePhone: +1-206-555-0000
• OrgAbuseEmail: trustandsafety@support.aws.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
• OrgTechHandle: ANO24-ARIN
• OrgTechName: Amazon EC2 Network Operations
• OrgTechPhone: +1-206-555-0000
• OrgTechEmail: amzn-noc-contact@amazon.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
• OrgRoutingHandle: ARMP-ARIN
• OrgRoutingName: AWS RPKI Management POC
• OrgRoutingPhone: +1-206-555-0000
• OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-11-28