104.18.15.139 Threat Intelligence and Host Information

Share on:
Jun 23, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 104.18.15.139 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 7/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Country:
  • Network: AS13335 cloudflare
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy
  • Passive DNS Results: analyze.nerdwallet.com.cdn.cloudflare.net sec-rolesanywhere-hl-azure-1.auth0c.com events.gcu.edu cdns3.nerdwallet.com siteusagetools.nerdwallet.com siteusage.nerdwallet.com american-appraisal-italia.com qa-au-9zk-testapd-399-infrastructuretest.az.ssdgws.co.uk myvoyage.accp.app.voya.com click2.nerdwallet.com ab.nerdwallet.com services.nerdwallet.com admin.nerdwallet.com userops-dashboard.nerdwallet.com nw-airflow-preprod1.nerdwallet.com janitor.nerdwallet.com clicks.nerdwallet.com ads.nerdwallet.com brand.nerdwallet.com nw-airflow.nerdwallet.com nds.nerdwallet.com calculations.nerdwallet.com identity.nerdwallet.com schools.nerdwallet.com logger.nerdwallet.com ukmortgages.nerdwallet.com features.nerdwallet.com pix.nerdwallet.com nw-airflow-preprod2.nerdwallet.com nerdbotjs.nerdwallet.com embeds.nerdwallet.com api.nerdwallet.com partners.nerdwallet.com ab-taproom-api.nerdwallet.com a678sf.com home-insurance-savings.com qa-ie-g9y-fbmvp-13380-manageyourbookingf.az.ssdgws.co.uk www.visa.ee perf.coleman.cl www.bdo.com.au www.bdo.com.au.cdn.cloudflare.net viralfeed-sunnysidegadgets.com refinedloganlasers.com shop-dev.univarsolutions.dk myvoyage2.accp.app.voya.com qa-nl-vbx-ecrp-10005-healthcheckremoveta.az.ssdgws.co.uk pop.slovechanska-gromada.gov.ua smtp.slovechanska-gromada.gov.ua cgitpuppet.twitter.biz twiapp13-zt.twitter.biz gcs-static-prod-safari-fix.wayfair.workers.dev qa-dk-6qn-ecrp-9950-investigategraphql.az.ssdgws.co.uk gcs-static-production-v3.wayfair.workers.dev birdhouse.twitter.biz.cdn.cloudflare.net tools.twitter.biz ads-brand-safety-review-tool-api.twitter.biz www.univarsolutions.dk storefront-www-v16-netacea-v2.wayfair.workers.dev storefront-v15-wellknown-v2.wayfair.workers.dev trackingclient-v1.wayfair.workers.dev univarsolutions.dk www.slovechanska-gromada.gov.ua slovechanska-gromada.gov.ua alt.slovechanska-gromada.gov.ua gcs-service-lf-newcruncher.wayfair.workers.dev storefront-www-v16-netacea-botmanager-100.wayfair.workers.dev storefront-www-v16-netacea-botmanager-50.wayfair.workers.dev storefront-www-v16-botmanager-netacea.wayfair.workers.dev storefront-www-v16-akabot.wayfair.workers.dev storefront-www-v15-wellknown.wayfair.workers.dev storefront-www-netacea.wayfair.workers.dev bme-agent-tools.twitter.biz gcs-service-v2-remoteentry.wayfair.workers.dev broad-bird-5869.wayfair.workers.dev storefront-www-v14-akabot-enabled.wayfair.workers.dev storefront-www-v14-akabot-wayfair-only.wayfair.workers.dev myvoya.accp.app.voya.com storefront-www-v13-akabot.wayfair.workers.dev storefront-www-v13.wayfair.workers.dev alertboard.twitter.biz artifactory.twitter.biz oneglossary.twitter.biz jira-dev.twitter.biz storefront-www-v12.wayfair.workers.dev storefront-www-v10.wayfair.workers.dev storefront-www-v11.wayfair.workers.dev wayfair-ie-testing.wayfair.workers.dev shop-qa.univarsolutions.dk monitoring-staging.twitter.biz monitoring-devel.twitter.biz storefront-www-noapple.wayfair.workers.dev terraform.twitter.biz experiments.twitter.biz dingtai-shotblasting.com horizonvc01.smfc-it.twitter.biz sourcegraph.twitter.biz usetogether.twitter.biz phabricator.twitter.biz drovio.twitter.biz paste.twitter.biz rocketchat.twitter.biz puppetserver.smfc-it.twitter.biz puppetserver-test.smfc-it.twitter.biz zabbixmaster-itsys.smfc-it.twitter.biz grafana-it.twitter.biz vc01.smfc-it.twitter.biz securelytestserver–staging–okta-self-service.service.qus1.twitter.biz ad-review-tool-api.twitter.biz gcs-static-test.wayfair.workers.dev privacy.twitter.biz gobrand.twitter.biz teams.twitter.biz brand.twitter.biz refcode-generator-webapp–staging–smb-web.service.smf1.twitter.biz data-extraction-webapp–staging–smb-web.service.smf1.twitter.biz ads-happening-webapp–staging–smb-web.service.smf1.twitter.biz smb-coupon-tool-staging.twitter.biz refcode-generator-webapp–staging–smb-web.service.atla.twitter.biz smb-action-center-staging.twitter.biz data-extraction-webapp–staging–smb-web.service.atla.twitter.biz smb-accounts-discovery-staging.twitter.biz ads-happening-webapp–staging–smb-web.service.atla.twitter.biz storefront-www-wfdc.wayfair.workers.dev control.smartrent-dev.com www-uat.midsouthmach.com policy-terms-tool.twitter.biz cloudflare-lb.twitter.biz storefront-www-geoip.wayfair.workers.dev tableau.twitter.biz refcode-generator-webapp–prod–smb-web.service.atla.twitter.biz refcode-generator-webapp–prod–smb-web.service.smf1.twitter.biz ads-brand-safety-review-tool.twitter.biz data-extraction-webapp–prod–smb-web.service.atla.twitter.biz data-extraction-webapp–prod–smb-web.service.smf1.twitter.biz secreview.twitter.biz dynamic-traffic-test.wayfair.workers.dev www.mddxdt.com roster.twitter.biz kite.twitter.biz cuckoo.twitter.biz employeeservice-api.twitter.biz mule.twitter.biz eus-dash.smfc-it.twitter.biz docbird.twitter.biz eagleeye.twitter.biz smb-coupon-tool.twitter.biz find.twitter.biz flightplan.twitter.biz polished-rain-973a.wayfair.workers.dev ads-admin.twitter.biz jira.twitter.biz ads-happening-webapp–prod–smb-web.service.smf1.twitter.biz ads-happening-webapp–prod–smb-web.service.atla.twitter.biz confluence.twitter.biz idm.twitter.biz dynamic-test-v3.wayfair.workers.dev static-test-v1.wayfair.workers.dev oc-si.com tableau-test.smfc-it.twitter.biz go.twitter.biz birdhouse-staging.twitter.biz snipe-it.smfc-it.twitter.biz hello.twitter.biz dev-login.dna01.test.cloudflare-poc.test.nvt.mckinsey.cloud pages-stream-demo.khayama.company 40785284efc4f48b2926cf57036a9e2572138ddb.vercel-workers.com 912cfac914af930e25e87ce566711dc99d53f612.vercel-workers.com s.smartrent-dev.com advanced.khayama.company pages.khayama.company smartrent-dev.com hydrologicsystems.co.uk docs-prod.mddxdt.com docs.mddxdt.com dy361.ku183.net khayama.company www.maispfizer.com.br mddxdt.com 4huy94.com phat-filter.net www.lighthousefinancialstrategies.com.cdn.cloudflare.net 1stnatbank.com www.regal.no.cdn.cloudflare.net girlband.ie 69aed.com ehstelemetry.lbl.gov.cdn.cloudflare.net 92zzm.com 4564mm.com oelpien.com jui1.com maispfizer.com.br www.maispfizer.com.br.cdn.cloudflare.net www.siyuvip.cn siyuvip.cn

Open Ports Detected

2053 2087 80

Map

Whois Information

  • NetRange: 104.16.0.0 - 104.31.255.255
  • CIDR: 104.16.0.0/12
  • NetName: CLOUDFLARENET
  • NetHandle: NET-104-16-0-0-1
  • Parent: NET104 (NET-104-0-0-0-0)
  • NetType: Direct Allocation
  • OriginAS: AS13335
  • Organization: Cloudflare, Inc. (CLOUD14)
  • RegDate: 2014-03-28
  • Updated: 2021-05-26
  • Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
  • Ref: https://rdap.arin.net/registry/ip/104.16.0.0
  • OrgName: Cloudflare, Inc.
  • OrgId: CLOUD14
  • Address: 101 Townsend Street
  • City: San Francisco
  • StateProv: CA
  • PostalCode: 94107
  • Country: US
  • RegDate: 2010-07-09
  • Updated: 2021-07-01
  • Ref: https://rdap.arin.net/registry/entity/CLOUD14
  • OrgTechHandle: ADMIN2521-ARIN
  • OrgTechName: Admin
  • OrgTechPhone: +1-650-319-8930
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
  • OrgRoutingHandle: CLOUD146-ARIN
  • OrgRoutingName: Cloudflare-NOC
  • OrgRoutingPhone: +1-650-319-8930
  • OrgRoutingEmail: [email protected]
  • OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
  • OrgNOCHandle: CLOUD146-ARIN
  • OrgNOCName: Cloudflare-NOC
  • OrgNOCPhone: +1-650-319-8930
  • OrgNOCEmail: [email protected]
  • OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
  • OrgAbuseHandle: ABUSE2916-ARIN
  • OrgAbuseName: Abuse
  • OrgAbusePhone: +1-650-319-8930
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
  • RTechHandle: ADMIN2521-ARIN
  • RTechName: Admin
  • RTechPhone: +1-650-319-8930
  • RTechEmail: [email protected]
  • RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
  • RNOCHandle: NOC11962-ARIN
  • RNOCName: NOC
  • RNOCPhone: +1-650-319-8930
  • RNOCEmail: [email protected]
  • RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
  • RAbuseHandle: ABUSE2916-ARIN
  • RAbuseName: Abuse
  • RAbusePhone: +1-650-319-8930
  • RAbuseEmail: [email protected]
  • RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN

Links to attack logs

anonymous-proxy-ip-list-2023-06-22