104.18.18.10 Threat Intelligence and Host Information
Jun 24, 2025
ipinfopage
General
This page contains threat intelligence information for the IPv4 address 104.18.18.10 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.
Possibly Malicious Host 🟢 10/100
Host and Network Information
- View other sources: Spamhaus VirusTotal
- Country:
- Network:
- Noticed: 1 times
- Protocols Attacked: Anonymous Proxy
- Passive DNS Results: oss.tospinomall.com.gh.cdn.cloudflare.net tustinlegacyplanning.com gear.de.playstation.com gear.de.playstation.com.cdn.cloudflare.net ampb9mya.data.cloud jinshan.data.cloud amprqqnu.data.cloud dfp.tapapis.com.cdn.cloudflare.net hvidevaregrossisten.dk mocreative.data.cloud power.data.cloud fsoft-academy.edu.vn arebor.xyz gpmautomotive.nl scotiabank-imp.penproplus.com vdps-002.data.cloud silurian.data.cloud ampnetug.data.cloud 58000game.com carboniferous.data.cloud bucket-5.data.cloud hdps-002.data.cloud new.freshfoodhub.co.uk eu.uk.upath.navify.com browsersconfig.roche.com cdn.ph.upi.com dumbledorecicd.data.cloud ampq1w7x.data.cloud hdps-035.data.cloud tesla.data.cloud ampkscif.data.cloud hdps-028.data.cloud bucket-two.data.cloud qa-nz-ubw-fbmvp-19236-releasenerstores.az.ssdgws.co.uk relytteam.data.cloud elementorstatic.com relytcicd2.data.cloud cy-001-test.data.cloud hdps-vector.data.cloud dbaxqingzi.data.cloud zlac378e3f71b035.data.cloud first.data.cloud bucket-4.data.cloud qa-fi-xj9-apd-292-pipelinefailover.az.ssdgws.co.uk qa-ie-7nb-apd-3766-updatedrupalhfkey.az.ssdgws.co.uk servicestreetthornton.com rcadeutschland.de data.cloud cs.data.cloud 66fun.bet about.upi.com www.offshore-mag.com.cdn.cloudflare.net arabic.upi.com oldhamgroupre.com www.swaco.org.cdn.cloudflare.net edit.biafine-lagamme.fr intl.orijenpetfoods.com ec2.wowandme.com www.wowandme.com pfizermedinfo.pe wowandme.com imdestinyrogers.com aa2.cert.digitalcardservice.com crossboundaryferryservices.mardep.gov.hk proappapi.altramotion.com www.altramotion.com proliteratureapi.altramotion.com proproductapi.altramotion.com altracentral.altramotion.com altramotion.com.cdn.cloudflare.net beta.prep.q8.dk workplace.q8.dk www.swaco.org www.speed-preview.red speed-preview.red pro-commande.biafine-lagamme.fr biafine-lagamme.fr www.biafine-lagamme.fr cdnph.upi.com myhubbleaccess.jnj.com dev.nwbitech.com www.a234kk.com api-eip.autoentry-platform-performancetests.com api-dea.autoentry-platform-performancetests.com webview.upi.com ekbet41.com www.upi.com www.friscotexas.gov qa-au-wwa-mcl-575-deliverymessagefix.az.ssdgws.co.uk upi.com www.friscotexas.gov.cdn.cloudflare.net getsmartaboutafib.com www.getsmartaboutafib.com qa-no-exx-fixfbmvp-11973-fixissues.az.ssdgws.co.uk qa-no-gff-abp-485-upscaleappserviceplans.az.ssdgws.co.uk qa-no-yub-fbmvp-10600-turnmonetateoffina.az.ssdgws.co.uk masisconvi.com pongii66.org qa-se-ybe-fixabp-395-tf-delay-cloudflare.az.ssdgws.co.uk ondaxraman.com copilottravelengine.com wt.azure-tiebreak-single-r.auth0c.com edge.tenants.azure-tiebreak-single-r.auth0c.com azure-tiebreak-single-r.auth0c.com nwbitech.com beta.inte.q8.dk workplace.inte.q8.dk allure.dexcomdev.com trianglemotors.com www.ascensia-diabetes.ch srsherkston.com www.srsherkston.com dxctngnadxc6yc2hprep.paastest.nl df95ebe00f541b8cc140b6a54503ec55316323db.vercel-workers.com customer-inte.royaltalens.com www.pc-hive.com corum-euro.nl rewards.sceneplus.ca alphadentalsavingsplan.com prod.royaltalens.com www.royaltalens.com www.skanskagymnasiet.se www.aroundtheworldl.com aroundtheworldl.com newplayable-new.dspunion.com f4.efocus.qa.finra.org www.motordoctor.pl motordoctor.pl test.motordoctor.pl mtest.motordoctor.pl yhelper.joy-kasino-online.net customer-prep.royaltalens.com.cdn.cloudflare.net www.pc-hive.com.cdn.cloudflare.net azure-api2test.sureprep.com.cdn.cloudflare.net azure-rwapitest.sureprep.com.cdn.cloudflare.net azure-binderservicestest.sureprep.com.cdn.cloudflare.net azure-apitest.sureprep.com.cdn.cloudflare.net azure-fileroomtest.sureprep.com.cdn.cloudflare.net sq.sureprep.com.cdn.cloudflare.net binderservicesstage.sureprep.com.cdn.cloudflare.net binderservicesonshoredev.sureprep.com.cdn.cloudflare.net RWServices.sureprep.com.cdn.cloudflare.net onshoredev.sureprep.com.cdn.cloudflare.net rwapionshoredev.sureprep.com.cdn.cloudflare.net rwapiqa.sureprep.com.cdn.cloudflare.net rwproduction.sureprep.com.cdn.cloudflare.net rwapistage.sureprep.com.cdn.cloudflare.net rwstage.sureprep.com.cdn.cloudflare.net portal-inte.royaltalens.com.cdn.cloudflare.net azure-stage-test.sureprep.com.cdn.cloudflare.net updatesproduction.sureprep.com.cdn.cloudflare.net azure-stage-api.sureprep.com.cdn.cloudflare.net Loadtestproduction.sureprep.com.cdn.cloudflare.net stage.sureprep.com.cdn.cloudflare.net azure-stage.sureprep.com.cdn.cloudflare.net stagecs.sureprep.com.cdn.cloudflare.net azure-stage-bs.sureprep.com.cdn.cloudflare.net azure-stage-rw.sureprep.com.cdn.cloudflare.net firesecurityproduct.se www.royaltalens.com.cdn.cloudflare.net prod.royaltalens.com.cdn.cloudflare.net prep.royaltalens.com.cdn.cloudflare.net specialtycarerx.com inte.royaltalens.com.cdn.cloudflare.net www.skanskagymnasiet.se.cdn.cloudflare.net newplayable-new.dspunion.com.cdn.cloudflare.net 201du.com www.discoverysport.net.cdn.cloudflare.net aocxh.top
Malware Detected on Host
Count: 6 7fe3d383b2bcc7062292d298c20844c930925a23bda72ed161bbb96874ee33ee ec5d1b0a2dfd966d7992465ed4d81a6ee4e891dd3b6701dd698ccd0ad1e014fe e850368edb7f2f6c7d196755a192d7de9b1f52cd79ec8a0faf0868180f05f333 3a3449776df8d89a721f8bd4dca6489cae78dc724a4632ee1cac9662378ac91a b0fa9d011c5e3685e071e7ecb1c014d60a98ac2fbde41be3ce1b33a0d0a5d42d 7474f9329d13231c1d9bfe72eb261fd8d7eb36414c3471abe51fcd4ce8e001cc
Open Ports Detected
2082 2083 2086 2087 2095 2096 443 80 8080 8443 8880
Map
Whois Information
- NetRange: 104.16.0.0 - 104.31.255.255
- CIDR: 104.16.0.0/12
- NetName: CLOUDFLARENET
- NetHandle: NET-104-16-0-0-1
- Parent: NET104 (NET-104-0-0-0-0)
- NetType: Direct Allocation
- OriginAS: AS13335
- Organization: Cloudflare, Inc. (CLOUD14)
- RegDate: 2014-03-28
- Updated: 2024-09-04
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
- Ref: https://rdap.arin.net/registry/ip/104.16.0.0
- OrgName: Cloudflare, Inc.
- OrgId: CLOUD14
- Address: 101 Townsend Street
- City: San Francisco
- StateProv: CA
- PostalCode: 94107
- Country: US
- RegDate: 2010-07-09
- Updated: 2024-11-25
- Ref: https://rdap.arin.net/registry/entity/CLOUD14
- OrgNOCHandle: CLOUD146-ARIN
- OrgNOCName: Cloudflare-NOC
- OrgNOCPhone: +1-650-319-8930
- OrgNOCEmail: noc@cloudflare.com
- OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
- OrgAbuseHandle: ABUSE2916-ARIN
- OrgAbuseName: Abuse
- OrgAbusePhone: +1-650-319-8930
- OrgAbuseEmail: abuse@cloudflare.com
- OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
- OrgRoutingHandle: CLOUD146-ARIN
- OrgRoutingName: Cloudflare-NOC
- OrgRoutingPhone: +1-650-319-8930
- OrgRoutingEmail: noc@cloudflare.com
- OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
- OrgTechHandle: ADMIN2521-ARIN
- OrgTechName: Admin
- OrgTechPhone: +1-650-319-8930
- OrgTechEmail: rir@cloudflare.com
- OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
- RNOCHandle: NOC11962-ARIN
- RNOCName: NOC
- RNOCPhone: +1-650-319-8930
- RNOCEmail: noc@cloudflare.com
- RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
- RAbuseHandle: ABUSE2916-ARIN
- RAbuseName: Abuse
- RAbusePhone: +1-650-319-8930
- RAbuseEmail: abuse@cloudflare.com
- RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
- RTechHandle: ADMIN2521-ARIN
- RTechName: Admin
- RTechPhone: +1-650-319-8930
- RTechEmail: rir@cloudflare.com
- RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
Links to attack logs
anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22
Share on: