104.18.18.209 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.18.18.209 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: accidentadvicelawyers.com www.townofwales.net.cdn.cloudflare.net horizonuag03.andersonregional.org www.verkehrsrecht-kanzlei-riefer.de verkehrsrecht-kanzlei-riefer.de ai.niuxuezhang.cn.cdn.cloudflare.net blog.globalwifi.com.tw 36.ladokad.com 9p23ex2v41.com bcoh.org qa-dk-kwi-fixclsp-7153-productdetailspay.az.ssdgws.co.uk gecpn.andersonregional.org faceswap-gray.top frontsface.com facekaeg.com reswapface.vip sursface.com facesquarely.com faceial.com facetoward.com wt.test-aws-small-snake-8294.auth0c.com edge.tenants.test-aws-small-snake-8294.auth0c.com test-aws-small-snake-8294.auth0c.com vidmimic.com refacevid.com qa-no-fnv-apd-4049-testminimalworkerbs.az.ssdgws.co.uk bostik-academy.us patients.andersonregional.org moloco-logical.com storeslulu.com rsrebikecommute.org model.niuxuezhang.cn www.niuxuezhang.cn.cdn.cloudflare.net niuxuezhang.cn.cdn.cloudflare.net model.niuxuezhang.cn.cdn.cloudflare.net 370080.com cbs.niuxuezhang.cn.cdn.cloudflare.net mediablog.prnewswire.com go.niuxuezhang.cn.cdn.cloudflare.net incabiam.gflenv.com www.kiehls.ca ai.niuxuezhang.cn devere-group.com api.adventistteams.org app.prnewswire.com app.adventistteams.org dev-admin.adventistteams.org tundrapicks.com qa-au-mwe-testfbmvp-13731-getstoresbynam.az.ssdgws.co.uk qa-nl-vgs-fixapd-17-addpoolsapacvto.az.ssdgws.co.uk content.prnewswire.com online.niuxuezhang.cn account.niuxuezhang.cn bhsi-test.com julianreim.com allestoringen.nl social.prnewswire.com visibility.prnewswire.com rt.prnewswire.com prayers-facebook-bot-dev.adventistteams.org landing-stage.adventistteams.org urls.adventistteams.org stage.adventistteams.org admin-stage.adventistteams.org api-stage.adventistteams.org www.wilmingtontwp.net admin.adventistteams.org dev.adventistteams.org api-dev.adventistteams.org mais.oantagonista.uol.com.br appdevpreview.prnewswire.com appuatpreview.prnewswire.com appqapreview.prnewswire.com autovisie.nl jacsports.ag photos.prnewswire.com dnk234.com prayers-facebook-bot-stage.adventistteams.org knauf-isolava.nl landing-dev.adventistteams.org urls-stage.adventistteams.org adventistteams.org urls-dev.adventistteams.org prayers-facebook-bot.adventistteams.org qa-dk-lu2-fixapd-936-housekeepingpoolobj.az.ssdgws.co.uk r.everdrivemail.com intersport.nl www.intersport.nl mma.prnewswire.com profnet.prnewswire.com zoobio.fr prnmedia.prnewswire.com northeugeneautomotive.com www.jdrs.mil cbs.niuxuezhang.cn update.niuxuezhang.cn go.niuxuezhang.cn ghautos.nl www.coe.int.cdn.cloudflare.net www.coe.int snelgarage.com brc-6034.bloomreach.io brc-5270-ac-2-ns1.bloomreach.io brc-6045.bloomreach.io customer6.bloomreach.io brc-6018-saas.bloomreach.io brc-6038.bloomreach.io brc-5629.bloomreach.io customer5.bloomreach.io test-ns.bloomreach.io brc-6030.bloomreach.io brc-5803-2.bloomreach.io brc-6036.bloomreach.io woolworths.bloomreach.io screwfix-sandbox.bloomreach.io brc-6025-saas.bloomreach.io brc-5686-oom.bloomreach.io hk-giftcards-51.com brc-5686.bloomreach.io edge.tenants.kahou-cnvg-1624-b.auth0c.com wt.kahou-cnvg-1624-b.auth0c.com kahou-cnvg-1624-b.auth0c.com www.niuxuezhang.cn brc-6008.bloomreach.io brc-5995-saas.bloomreach.io brc-6004.bloomreach.io brc-6003.bloomreach.io bk-brc-5998-ns1.bloomreach.io brc-5984-saas.bloomreach.io brc-5990.bloomreach.io woolsworth.bloomreach.io brc-5980.bloomreach.io brc-5803.bloomreach.io brx-ap-contentonly.bloomreach.io brc-5924-saas.bloomreach.io brc-5960.bloomreach.io techdoc-writing-gloo.bloomreach.io vuestorefront.bloomreach.io vuestorefront-sandbox.bloomreach.io brc-5984.bloomreach.io seniorweb.bloomreach.io brc-5021-saas.bloomreach.io www.basbarkarby.se brc-5786.bloomreach.io brc-5981.bloomreach.io brc-5975-saas.bloomreach.io oantagonista.uol.com.br.cdn.cloudflare.net brc-5933.bloomreach.io oantagonista.uol.com.br brx-content-training14.bloomreach.io brx-content-training16.bloomreach.io brx-content-training15.bloomreach.io brx-content-training13.bloomreach.io brx-content-training12.bloomreach.io brx-content-training11.bloomreach.io sandbox-epam.bloomreach.io brc-5971-saas.bloomreach.io brc-5943.bloomreach.io brc-5965.bloomreach.io brc-5956.bloomreach.io brc-5828-saas-2.bloomreach.io www.nla-eclips.com test-legacy-migration-ac-2-ns-2.bloomreach.io brc-5955.bloomreach.io brc-5828-saas.bloomreach.io brc-5927.bloomreach.io brc-5928.bloomreach.io brc-5926.bloomreach.io brc-5938.bloomreach.io brc-5930.bloomreach.io pdfsrv.niuxuezhang.cn brc-5925.bloomreach.io saascicdtest.bloomreach.io brc-5920-saas.bloomreach.io ct1-sc.pra.jnj.com ct1-dev.pra.jnj.com brc-5932.bloomreach.io sandbox-pansoft.bloomreach.io sandbox-minervavisuals.bloomreach.io sandbox-vass.bloomreach.io sandbox-valantic.bloomreach.io brc-5923.bloomreach.io brc-5912-saas.bloomreach.io brc-5909.bloomreach.io brc-5922.bloomreach.io brc-5886.bloomreach.io brc-5913.bloomreach.io brx-content-only.bloomreach.io brx-support.bloomreach.io dev.nla-eclips.com brc-5897.bloomreach.io playboy.bloomreach.io sandbox-sales11.bloomreach.io brc-5902.bloomreach.io brc-5884-saas.bloomreach.io www.kearney.se saas-nightly.bloomreach.io myjewellery.bloomreach.io garland.bloomreach.io ecwrap-dev.nla-eclips.com emersonecologics.bloomreach.io traceable.bloomreach.io brc-5866-fixes.bloomreach.io ecwrap.nla-eclips.com techdoc-development-gloo.bloomreach.io brc-5875.bloomreach.io brc-5775.bloomreach.io brc-5878.bloomreach.io brc-5831.bloomreach.io brc-5866.bloomreach.io brc-5874.bloomreach.io sandbox-miracommerce.bloomreach.io brc-5829-saas.bloomreach.io techdoc-development.bloomreach.io techdoc-writing.bloomreach.io sandbox-great.bloomreach.io brc-5809.bloomreach.io brc-5836-saas.bloomreach.io brc-5839-saas.bloomreach.io testcustomer.bloomreach.io testmig01.bloomreach.io brc-5821-saas.bloomreach.io brc-5785-2.bloomreach.io olegv12test.bloomreach.io ac-install-test.bloomreach.io brc-5773.bloomreach.io brc-5802.bloomreach.io pipoth-ns2-test21.bloomreach.io pipoth-ns1-test21.bloomreach.io pipoth-ns1-test22.bloomreach.io pipoth-ns2-test19.bloomreach.io pipoth-ns1-test19.bloomreach.io brc-5642-b.bloomreach.io pipoth-ns2-test18.bloomreach.io pipoth-ns1-test18.bloomreach.io pipoth-ns1-test15.bloomreach.io pipoth-ns2-test15.bloomreach.io sandbox-sales09.bloomreach.io sandbox-sales10.bloomreach.io sandbox-sales08.bloomreach.io boris-t1.bloomreach.io pipoth-ns5-test11.bloomreach.io pipoth-ns-test11.bloomreach.io brc-5642.bloomreach.io brc-5777.bloomreach.io brc-5654.bloomreach.io some-namespace-in-test02.bloomreach.io gloo-saas-v1-test-ns2.bloomreach.io ppe-service.nla-eclips.com ecwrap-ppe.nla-eclips.com brc-5769-saasci01.bloomreach.io brc-5769.bloomreach.io brc-5771.bloomreach.io v11-rc8-ns.bloomreach.io brc-5764.bloomreach.io gloo-saas-v1-test-ns.bloomreach.io v10-3-0-test-ns1.bloomreach.io c401ff04e8864005edf6480edd2848c5402a6148.vercel-workers.com brc-5739-test.bloomreach.io pipoth-test5-ns.bloomreach.io apis.niuxuezhang.cn brc-5553.bloomreach.io brc-5662-d.bloomreach.io brc-5707.bloomreach.io trial-wf8wb5ue.bloomreach.io trial-3csawakw.bloomreach.io trial-7olu3gpe.bloomreach.io okv1022-ns.bloomreach.io sandbox-sales04.bloomreach.io sandbox-sales06.bloomreach.io niuxuezhang.cn brc-5675-2.bloomreach.io trial-adwdoxwe.bloomreach.io okv1022-jannes.bloomreach.io sandbox-sales07.bloomreach.io sandbox-sales03.bloomreach.io sandbox-sales05.bloomreach.io sandbox-sales01.bloomreach.io brc-5662-c.bloomreach.io brc-5688-b.bloomreach.io brc-5682-b.bloomreach.io brc-5682-c.bloomreach.io sandbox-tfe.bloomreach.io brc-5688-test-ns.bloomreach.io brc-5688.bloomreach.io brc-5682.bloomreach.io brc-5712.bloomreach.io trial-tnk8sgqr.bloomreach.io brc-5676.bloomreach.io staging-screwfix.bloomreach.io brc-5675.bloomreach.io testikone82saasns.bloomreach.io brc-5685-ns.bloomreach.io trial-vquwseqc.bloomreach.io trial-1epi2zs5.bloomreach.io trial-v4chqgmt.bloomreach.io trial-sxlpl7i1.bloomreach.io trial-hxlhr1qt.bloomreach.io trial-4rliojkw.bloomreach.io trial-7c8uina3.bloomreach.io sandbox-ansira.bloomreach.io trial-bzaoiaoc.bloomreach.io trial-vnkyn2yt.bloomreach.io video.niuxuezhang.cn videosrv.niuxuezhang.cn pdf.niuxuezhang.cn mkmbs.bloomreach.io download.niuxuezhang.cn brc-5674-test-ns.bloomreach.io trial-c11dt83y.bloomreach.io trial-keenh2lq.bloomreach.io trial-n7r2nj4o.bloomreach.io trial-dhh5ttgz.bloomreach.io brc-5674.bloomreach.io brc-5673.bloomreach.io poc-peek-cloppenburg.bloomreach.io brc-5624-v10-2-1.bloomreach.io brc-5624-test.bloomreach.io poc-bauhaus.bloomreach.io brc-5602-3.bloomreach.io saas1testikone67.bloomreach.io saastestikone67.bloomreach.io bharath-test11.bloomreach.io sofology.bloomreach.io images.niuxuezhang.cn bauhaus-sandbox.bloomreach.io brc-5602-2.bloomreach.io nlaazweb02.nla-eclips.com nlaazweb04.nla-eclips.com nlaazweb01.nla-eclips.com nlaazweb03.nla-eclips.com sgt-ns01.bloomreach.io brc-5628-test4.bloomreach.io brc-5628-test3.bloomreach.io brc-5628-b.bloomreach.io brc-5628-test2.bloomreach.io brc-5628-test1.bloomreach.io sandbox-tacitknowledge.bloomreach.io brc-5488.bloomreach.io brx-content-training10.bloomreach.io brx-content-training06.bloomreach.io brx-content-training08.bloomreach.io brx-content-training05.bloomreach.io brx-content-training04.bloomreach.io brx-content-training02.bloomreach.io brx-content-training03.bloomreach.io shop.sedanos.com shop-preprod.sedanos.com cs-prod.sedanos.com cs-int.sedanos.com shop-prod.sedanos.com mobile-uat2.dbs.com uat2-mobile.dbs.com brc-5614.bloomreach.io brx-content-training01.bloomreach.io brc-5606-d.bloomreach.io brc-5606-c.bloomreach.io brc-5606-b.bloomreach.io brc-5573.bloomreach.io bharathg.bloomreach.io brc-5606.bloomreach.io bharath-sec.bloomreach.io falling-stars.bloomreach.io brc-5602.bloomreach.io brc-5509.bloomreach.io brc-5556.bloomreach.io saas.bloomreach.io brc-5591.bloomreach.io nightly-saas.bloomreach.io brc5544nd.bloomreach.io bharath-secrettest1.bloomreach.io bharath-secrettest.bloomreach.io brc-5574.bloomreach.io testikonesaasss42.bloomreach.io testikonesaas42.bloomreach.io sometestns.bloomreach.io sandbox-netconomy.bloomreach.io test-screwfix.bloomreach.io saas-gloo-patched-ns0.bloomreach.io baris-apa-saas-test.bloomreach.io saas-gloo-testing-2-ns0.bloomreach.io ma.visamiddleeast.com saas-gloo-testing-ns0.bloomreach.io acdv.pra.jnj.com mn1-acdv.pra.jnj.com baris-saas-test.bloomreach.io screwfix.bloomreach.io saasprodtest1.bloomreach.io brx-training.bloomreach.io certtest.bloomreach.io saasprodtest.bloomreach.io snap-on.bloomreach.io jannes-gloo-experiments-2.bloomreach.io incentro-sandbox.bloomreach.io osudio-sandbox.bloomreach.io brc-5474.bloomreach.io eng-ci.bloomreach.io nectonomy-sandbox.bloomreach.io wtc-sandbox.bloomreach.io ibm-ix.bloomreach.io ibm-ix-sandbox.bloomreach.io ac-brc-5407.bloomreach.io help.pra.jnj.com prep.basbarkarby.se inte.basbarkarby.se sh1-sc.pra.jnj.com be1-sc.pra.jnj.com mn2-sc.pra.jnj.com ra1-dev.pra.jnj.com pra.jnj.com ac-brc-5353.bloomreach.io sh1-dev.pra.jnj.com dev.pra.jnj.com mn1-sc.pra.jnj.com ra2-sc.pra.jnj.com be2-sc.pra.jnj.com accenture-sandbox.bloomreach.io accenture.bloomreach.io stage.burkeawards.jnj.com burkeawards.jnj.com dev.burkeawards.jnj.com delivery-tracking.api.uat1.dfs.co.uk pacific-saas.bloomreach.io pacific-saas-sandbox.bloomreach.io uspoc01.bloomreach.io uspoc01-sandbox.bloomreach.io confluence.us.ngridtools.com sg2-sc.pra.jnj.com sg1-dev.pra.jnj.com www.hk-giftcards-51.com jira.uk.ngridtools.com.cdn.cloudflare.net kearney.se toolstation-sandbox.bloomreach.io toolstation.bloomreach.io confluence.uk.ngridtools.com jira.uk.ngridtools.com profserv02-sandbox.bloomreach.io profserv01-sandbox.bloomreach.io profserv02.bloomreach.io profserv01.bloomreach.io www.mickaeldossantosofficiel.com cst.nla-eclips.com brx-saas-sample.bloomreach.io cfccst.nla-eclips.com customer2-sandbox.bloomreach.io elasticpath-preview-sandbox.bloomreach.io kinandcarta-preview-sandbox.bloomreach.io kinandcarta-preview.bloomreach.io developers-sandbox.bloomreach.io fei-sandbox.bloomreach.io mindcurv-preview-sandbox.bloomreach.io shift7-preview.bloomreach.io elasticpath-preview.bloomreach.io fei.bloomreach.io kenan-sandbox.bloomreach.io shift7-preview-sandbox.bloomreach.io nuno-sandbox.bloomreach.io brx-saas-eng02-sandbox.bloomreach.io diva-e-preview-sandbox.bloomreach.io brx-saas-eng02.bloomreach.io gorilla-preview-sandbox.bloomreach.io diva-e-preview.bloomreach.io born-preview.bloomreach.io authentic-preview-sandbox.bloomreach.io authentic-preview.bloomreach.io nuno.bloomreach.io born-preview-sandbox.bloomreach.io mindcurv-preview.bloomreach.io us-demo1.bloomreach.io mike-sandbox.bloomreach.io gorilla-preview.bloomreach.io brx-saas-sample-sandbox.bloomreach.io kenan.bloomreach.io customer2.bloomreach.io developers.bloomreach.io us-demo1-sandbox.bloomreach.io mike.bloomreach.io www.enzofit-demo.com enzofit-demo.com ecwrap-dev.nla-eclips.com.cdn.cloudflare.net www.mountainviewinnca.com.cdn.cloudflare.net pra.jnj.com.cdn.cloudflare.net cfccst.nla-eclips.com.cdn.cloudflare.net defigogo.com shop.sedanos.com.cdn.cloudflare.net cs-preprod.sedanos.com.cdn.cloudflare.net cs-prod.sedanos.com.cdn.cloudflare.net shop-int.sedanos.com.cdn.cloudflare.net 6blackclub.info www.ma.visamiddleeast.com.cdn.cloudflare.net ma.visamiddleeast.com.cdn.cloudflare.net partners.earlywarning.com.cdn.cloudflare.net cie7.com mickaeldossantosofficiel.com 7234cc.com dfssof.as kindrednursehelpline.com www.basbarkarby.se.cdn.cloudflare.net prep.basbarkarby.se.cdn.cloudflare.net inte.basbarkarby.se.cdn.cloudflare.net

Malware Detected on Host

Count: 1 9714f961e30c8a4223d648ef7024a5208eec04a01ceff3b274c7a30c5eaa540b

Open Ports Detected

2053 2082 2083 2086 2087 2096 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-21