104.18.16.65 Threat Intelligence and Host Information
Jun 24, 2025
ipinfopage
General
This page contains threat intelligence information for the IPv4 address 104.18.16.65 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.
Possibly Malicious Host 🟢 10/100
Host and Network Information
- View other sources: Spamhaus VirusTotal
- Country:
- Network:
- Noticed: 1 times
- Protocols Attacked: Anonymous Proxy
- Passive DNS Results: www.mpsomaha.org reagan.mpsomaha.org dxctayli138v1di2prodfo01-slot.paastest.epimore.com dxctayli138v1di2inte.paastest.epimore.com b.glowssip.com motocitysoweto.co.za 88clb.esq business-closer.de julia-stritt.de dxctngnak2b2f95zinte.paastest.epimore.com developers.intility.com bvcha.com atgtire.com booking.stenalinetravel.com travel-bff.stenalinetravel.com book.stenalinetravel.com atablogs.atgtire.com csxfiber.com xtvplay.com hinessolutions.com www.alliance.co.il www.atgtire.com whereapk.com bienvenido.decathlon.net dxctadmini6oqj53prep-slot.paastest.epimore.com www.coolminiornot.com uat.trgrc.com c359q.com qa-gb-ucz-fbmvp-14508-sceoverridefordyna.az.ssdgws.co.uk w2cuat.tmmatravel.com racqdev.tmmatravel.com racqqa.tmmatravel.com racvuat.tmmatravel.com ractqa.tmmatravel.com racqa.tmmatravel.com dev5-view.cerosdev.com ractuat3.tmmatravel.com aantuat3.tmmatravel.com racuat3.tmmatravel.com www2qa3.tmmatravel.com aantqa3.tmmatravel.com pasqa3.tmmatravel.com ractqa3.tmmatravel.com w2cqa3.tmmatravel.com racqqa3.tmmatravel.com dev.coolminiornot.com coolminiornot.com pasdev3.tmmatravel.com raadev3.tmmatravel.com racqdev3.tmmatravel.com aantdev3.tmmatravel.com racdev3.tmmatravel.com ractdev3.tmmatravel.com www2dev3.tmmatravel.com ci.tanihub.com awsdynuat.hcch.com qa-nz-luo-testfbmvp-13715-manage8integra.az.ssdgws.co.uk w2cprod.tmmatravel.com www2prod.tmmatravel.com racqprod.tmmatravel.com raaprod.tmmatravel.com pasprod.tmmatravel.com aantprod.tmmatravel.com cm.tmmatravel.com prod.dxp.forumbostonlanding.com blog.coolminiornot.com pre.dxp.forumbostonlanding.com int.dxp.forumbostonlanding.com dev.dxp.forumbostonlanding.com advancedhairtech.com 70n8z.copy.paastest.co.uk backend.coolminiornot.com cdn.coolminiornot.com qa-nl-kja-fixdsi-2320-circularreferences.az.ssdgws.co.uk www.ipvanish.com qa-se-3cq-fbmvp-9868-refactorwiremock.az.ssdgws.co.uk qa-no-qlf-fixecrp-9968-timeouts-revert-v.az.ssdgws.co.uk channel.coolminiornot.com shopadmin.coolminiornot.com old.coolminiornot.com anti-spam.coolminiornot.com shop.coolminiornot.com crystalbrush.coolminiornot.com retailerpledge.coolminiornot.com oldblog.coolminiornot.com qa-gb-jik-ecrp-9616-testingfordupeventhu.az.ssdgws.co.uk ms-teams.qumu.ninja teams-test.qumu.ninja racpredev.tmmatravel.com racvpreqa.tmmatravel.com paspredev.tmmatravel.com www2predev.tmmatravel.com paspreqa.tmmatravel.com racqpredev.tmmatravel.com raapredev.tmmatravel.com aantpreqa.tmmatravel.com www2preqa.tmmatravel.com ractpreqa.tmmatravel.com raapreqa.tmmatravel.com w2cpreqa.tmmatravel.com racqpreqa.tmmatravel.com racpreqa.tmmatravel.com teams.qumu.ninja pfqabf-pf.qumu.ninja racprod.tmmatravel.com ractprod.tmmatravel.com raadev.tmmatravel.com raaqa.tmmatravel.com www.uncoveredskincare.com staging.willsmithee.com raauat.tmmatravel.com ractpreuat.tmmatravel.com racvpreuat.tmmatravel.com paspreuat.tmmatravel.com www2preuat.tmmatravel.com racpreuat.tmmatravel.com racqpreuat.tmmatravel.com aantpreuat.tmmatravel.com w2cpreuat.tmmatravel.com www2uat.tmmatravel.com pasqa.tmmatravel.com ractdev.tmmatravel.com racuat.tmmatravel.com racquat.tmmatravel.com aantuat.tmmatravel.com racdev.tmmatravel.com ractuat.tmmatravel.com aantdev.tmmatravel.com pasuat.tmmatravel.com zoom-docs.qumu.ninja originmc.qumu.ninja motownbikeshop.nl pfapprc-pf.qumu.ninja vcc.qumu.ninja www.ipvanish.com.cdn.cloudflare.net ipvanish.com jitorigin.qumu.ninja originbf.qumu.ninja www.sunoutdoorswellsbeach.com lyncdiscover.sunoutdoorswellsbeach.com enterpriseenrollment.sunoutdoorswellsbeach.com enterpriseregistration.sunoutdoorswellsbeach.com sip.sunoutdoorswellsbeach.com sunoutdoorswellsbeach.com ctownbets.com autobedrijfhalewijn.nl wbckk88.com uncoveredskincare.com 5fdbe2beb3a7fdb179f64e6676f0615a2f0c15e9.vercel-workers.com www.skretting.cz m.leihuo66.com www.leihuo66.com qarc.qumu.ninja www.wool4school.it signer.qumu.ninja register-farmers.tanihub.com geolocate.qumu.ninja www.svenskdam.se holding-page.qumu.ninja.cdn.cloudflare.net kungligabarnbloggen.svenskdam.se bakomkulisserna.svenskdam.se image.svenskdam.se qxsqlvcc02-vccpf.qumu.ninja demovcc10-vccpf.qumu.ninja qa.qumu.ninja integrations.qumu.ninja pfmc.qumu.ninja demo-pfmc.qumu.ninja analytics.qumu.ninja www.pfpartners.net origin.qumu.ninja originrc.qumu.ninja pf.qumu.ninja mentormate-qa.qumu.ninja pfapprc.qumu.ninja vccpf.qumu.ninja logs.qumu.ninja pfapp-pf.qumu.ninja cdn.qumu.ninja holding-page.qumu.ninja svenskdam.se apprc.qumu.ninja www.eg.visamiddleeast.com zoomproxy.qumu.ninja fifeqa.qumu.ninja app.qumu.ninja integrationsrc.qumu.ninja compostingsolutions.com integrationsbf.qumu.ninja qabf.qumu.ninja mg.adskeeper.com servicer.adskeeper.com c.adskeeper.com staging.blog.tanihub.com stat.microvirt.com www.microvirt.com s-img.adskeeper.com cm.adskeeper.com blog.tanihub.com widgets.adskeeper.com qa.qumu.ninja.cdn.cloudflare.net www.microvirt.com.cdn.cloudflare.net stat.microvirt.com.cdn.cloudflare.net www.wool4school.it.cdn.cloudflare.net www.jbl.mx.cdn.cloudflare.net worldexch.com jsc.adskeeper.com integrationsrc.qumu.ninja.cdn.cloudflare.net adskeeper.com www.adskeeper.com api.tanihub.com poc.tanihub.com vendor.tanihub.com staging.tanihub.com internal.staging.tanihub.com internal.tanihub.com internal.pr.tanihub.com vendor.staging.tanihub.com api.staging.tanihub.com cf369cai.qanyxs.com.cdn.cloudflare.net tanihub.com www.eg.visamiddleeast.com.cdn.cloudflare.net eg.visamiddleeast.com.cdn.cloudflare.net casinomadamechance.com cashbets7.com superlinescasino.org originmc.qumu.ninja.cdn.cloudflare.net pfmc.qumu.ninja.cdn.cloudflare.net qamc.qumu.ninja.cdn.cloudflare.net harthatforsin.pro leihuo66.com m.leihuo66.com.cdn.cloudflare.net www.leihuo66.com.cdn.cloudflare.net analytics.qumu.ninja.cdn.cloudflare.net tionspillorkol.info www.pfpartners.net.cdn.cloudflare.net origin.qumu.ninja.cdn.cloudflare.net vcc.qumu.ninja.cdn.cloudflare.net logs.qumu.ninja.cdn.cloudflare.net cdn.qumu.ninja.cdn.cloudflare.net webcasting.qumu.ninja.cdn.cloudflare.net app.qumu.ninja.cdn.cloudflare.net ucgbridge.qumu.ninja.cdn.cloudflare.net vccpf.qumu.ninja.cdn.cloudflare.net apprc.qumu.ninja.cdn.cloudflare.net originrc.qumu.ninja.cdn.cloudflare.net pf.qumu.ninja.cdn.cloudflare.net www.superlinescasino.org m.superlinescasino.org sandiegogasprices.com
Malware Detected on Host
Count: 3 2379c49f5b1c89b2e3c0b7a40f4dccc516f7521661ac705e86fbe807443fe85e 38b33d0678b16c690c66ed33ada3dcd3be882f167d58ac4e60140684dfe044ee fec5a9657c52573ffcd9ae3c60b36489b4b403107c35e94e921c826cc11118db
Open Ports Detected
2052 2053 2082 2083 2086 2087 443 80 8080 8443 8880
Map
Whois Information
- NetRange: 104.16.0.0 - 104.31.255.255
- CIDR: 104.16.0.0/12
- NetName: CLOUDFLARENET
- NetHandle: NET-104-16-0-0-1
- Parent: NET104 (NET-104-0-0-0-0)
- NetType: Direct Allocation
- OriginAS: AS13335
- Organization: Cloudflare, Inc. (CLOUD14)
- RegDate: 2014-03-28
- Updated: 2024-09-04
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
- Ref: https://rdap.arin.net/registry/ip/104.16.0.0
- OrgName: Cloudflare, Inc.
- OrgId: CLOUD14
- Address: 101 Townsend Street
- City: San Francisco
- StateProv: CA
- PostalCode: 94107
- Country: US
- RegDate: 2010-07-09
- Updated: 2024-11-25
- Ref: https://rdap.arin.net/registry/entity/CLOUD14
- OrgTechHandle: ADMIN2521-ARIN
- OrgTechName: Admin
- OrgTechPhone: +1-650-319-8930
- OrgTechEmail: rir@cloudflare.com
- OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
- OrgRoutingHandle: CLOUD146-ARIN
- OrgRoutingName: Cloudflare-NOC
- OrgRoutingPhone: +1-650-319-8930
- OrgRoutingEmail: noc@cloudflare.com
- OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
- OrgNOCHandle: CLOUD146-ARIN
- OrgNOCName: Cloudflare-NOC
- OrgNOCPhone: +1-650-319-8930
- OrgNOCEmail: noc@cloudflare.com
- OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
- OrgAbuseHandle: ABUSE2916-ARIN
- OrgAbuseName: Abuse
- OrgAbusePhone: +1-650-319-8930
- OrgAbuseEmail: abuse@cloudflare.com
- OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
- RNOCHandle: NOC11962-ARIN
- RNOCName: NOC
- RNOCPhone: +1-650-319-8930
- RNOCEmail: noc@cloudflare.com
- RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
- RAbuseHandle: ABUSE2916-ARIN
- RAbuseName: Abuse
- RAbusePhone: +1-650-319-8930
- RAbuseEmail: abuse@cloudflare.com
- RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
- RTechHandle: ADMIN2521-ARIN
- RTechName: Admin
- RTechPhone: +1-650-319-8930
- RTechEmail: rir@cloudflare.com
- RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
Links to attack logs
anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22
Share on: