104.18.10.134 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.18.10.134 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: 789betcom9.com dj5.vip metrics.cmdcentral.xyz www.votreclanoka.com www.diakonie-himmelsthuer-karriere.de ngi.it dataserver-uat.erpmaestro.com webui-em-uat.erpmaestro.com gates.erpmaestro.com grc-eu.erpmaestro.com metadata.erpmaestro.com officeworks.erpmaestro.com cascades-beta.erpmaestro.com provisioningsvc-eu.erpmaestro.com recargapay.erpmaestro.com www.asphealthcare.com.au projekt-freiheit.de canary-arm.erpmaestro.com rpw-regulation-mgmt.relias.ca kiddehomesafety.com d.namshicdn.com skynet-uat.erpmaestro.com wabash.erpmaestro.com eviosys-arm.erpmaestro.com dg-grc.erpmaestro.com rexnord-arm.erpmaestro.com dg.erpmaestro.com jobsvc-eu.erpmaestro.com rsm.erpmaestro.com uct-grc.erpmaestro.com grolsch-beta.erpmaestro.com cascades.erpmaestro.com supermicro.erpmaestro.com utilizationtracking-eu.erpmaestro.com triviumpackaging.erpmaestro.com beta-eu.erpmaestro.com calportland.erpmaestro.com play.google-playtime.com mitigations.erpmaestro.com dashboards.cmdcentral.xyz cm-policy.relias.ca cm-audit.relias.ca utilizationtracking-uat.erpmaestro.com rulebooks-uat.erpmaestro.com faro-arm.erpmaestro.com pa.namshicdn.com.cdn.cloudflare.net starspg.com schwans-sb.erpmaestro.com qa-nl-5pk-fbmvp-21397-updatenltestdata.az.ssdgws.co.uk ssotesting-eu.erpmaestro.com molson.erpmaestro.com report-management-eu.erpmaestro.com escore54.net pd.namshicdn.com app01.erpmaestro.com admin.erpmaestro.com crown-arm.erpmaestro.com agents-eu.erpmaestro.com klar.ac calportland-arm.erpmaestro.com agents.erpmaestro.com agmetalbevna.erpmaestro.com coinrzxap.com coinrzx.com pb.namshicdn.com riotinto-arm.erpmaestro.com 777j7.com demo-arm.erpmaestro.com cdl.erpmaestro.com vip99th.com a.namshicdn.com a.namshicdn.com.cdn.cloudflare.net www.vrol.visaonline.com.cdn.cloudflare.net pulpriot.eu music.cmdcentral.xyz navidrome.cmdcentral.xyz mte2.vrol.visaonline.com www.vrol.visaonline.com budget.cmdcentral.xyz ecdn.teacherspayteachers.com.cdn.cloudflare.net www.teacherspayteachers.com.cdn.cloudflare.net ecdn1.teacherspayteachers.com.cdn.cloudflare.net qa-no-6hu-fbmvp-13865-configureauaudiolo.az.ssdgws.co.uk rc-assets.teacherspayteachers.com downloads-staging.teacherspayteachers.com preview.teacherspayteachers.com downloads.teacherspayteachers.com preview-staging.teacherspayteachers.com clickdecisionportal.com fast.podium.net.au choice.podium.net.au qa-se-7a9-shrsvc-272-addnextcontext.az.ssdgws.co.uk squaretrade-dev.auth0.com wt.squaretrade-dev.auth0.com edge.squaretrade-dev.auth0.com edge.tenants.squaretrade-dev.auth0.com vmhost.cmdcentral.xyz proxmox.cmdcentral.xyz radarr.cmdcentral.xyz sonarr.cmdcentral.xyz readarr.cmdcentral.xyz lidarr.cmdcentral.xyz nzbget.cmdcentral.xyz prowlarr.cmdcentral.xyz de-ie-lya-sc-9633-select-the-contact-len.socrates.ssdgws.co.uk deallinknet.com qa-no-lxc-fbmvp-12818-availabilityindica.az.ssdgws.co.uk www.miniwww.com funsport101.com starstableonline.nl cloud.cmdcentral.xyz nextcloud.cmdcentral.xyz files.cmdcentral.xyz git.cmdcentral.xyz gitea.cmdcentral.xyz rss.cmdcentral.xyz fineartsskinandlaser.com qa-au-dg8-testfbmvp-12392-amcofffornlv2.az.ssdgws.co.uk overseerr.cmdcentral.xyz postgres.cmdcentral.xyz doctors.akrongeneral.org firefly.cmdcentral.xyz argo.cmdcentral.xyz argocd.cmdcentral.xyz bookmarks.cmdcentral.xyz wallabag.cmdcentral.xyz grocy.cmdcentral.xyz prometheus.cmdcentral.xyz plexrequests.cmdcentral.xyz ombi.cmdcentral.xyz loki.cmdcentral.xyz gateway.cmdcentral.xyz router.cmdcentral.xyz infra2.cmdcentral.xyz ad.cmdcentral.xyz ldap.cmdcentral.xyz infra1.cmdcentral.xyz infra.cmdcentral.xyz status.cmdcentral.xyz heimdall.cmdcentral.xyz pfapi.cmdcentral.xyz prometheus.k8s.cmdcentral.xyz grafana.cmdcentral.xyz grafana.k8s.cmdcentral.xyz longhorn.cmdcentral.xyz replicator.cmdcentral.xyz hass.cmdcentral.xyz vmhost01.cmdcentral.xyz unifi.cmdcentral.xyz recipes.cmdcentral.xyz mealie.cmdcentral.xyz foundry.cmdcentral.xyz netbox.cmdcentral.xyz zabbix.cmdcentral.xyz home.cmdcentral.xyz vault.cmdcentral.xyz awx.cmdcentral.xyz alertmanager.k8s.cmdcentral.xyz calibre.cmdcentral.xyz calibre-admin.cmdcentral.xyz monica.cmdcentral.xyz cmdcentral.xyz nas.cmdcentral.xyz defiant.cmdcentral.xyz minio.cmdcentral.xyz s3.cmdcentral.xyz paperless.cmdcentral.xyz dnsadmin.cmdcentral.xyz np5.paastest.nl wildcard.tcconline-stage.com www.tcconline-stage.com miniwww.com getthevaccine.dshs.texas.gov dsousa.effell.team beaconbidev.jnj.com www.masonllp.com brookfielduniforms.com foyer.ovo.com cidm.uccenter.com www.glowred.org franciscopartners.cloudflaresso.com www.visitodder.dk www.enbrel.co.nz www.ewts4re.com cidm-uat.uccenter.com getthevaccine.dshs.texas.gov.cdn.cloudflare.net www.missourigasprices.com desertdevco.com cidm-uat.uccenter.com.cdn.cloudflare.net sub.dxctngnadxc04z1tprod.paastest.co.uk.cdn.cloudflare.net app.sun-childcare.com sun-childcare.com www.catalogactivewear.com.cdn.cloudflare.net catalogactivewear.com ewts4re.com www.visitodder.dk.cdn.cloudflare.net 42ddj.com tos.com www.glowred.org.cdn.cloudflare.net cf-china-test.com enbrel.co.nz www.enbrel.co.nz.cdn.cloudflare.net missourigasprices.com

Open Ports Detected

2082 2083 2086 2087 2096 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

****** ****** ******