104.18.26.110 Threat Intelligence and Host Information
Oct 05, 2023
ipinfopage
General
This page contains threat intelligence information for the IPv4 address 104.18.26.110 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.
Possibly Malicious Host 🟢 10/100
Host and Network Information
- View other sources: Spamhaus VirusTotal
- Country:
- Network: AS13335 cloudflare
- Noticed: 1 times
- Protcols Attacked: SSH
- Passive DNS Results: www.car-tender.com car-tender.com customers.dev.instacart.tools.cdn.cloudflare.net cacti.dcsi.net.au observium.dcsi.net.au business.dcsi.net.au new.dcsi.net.au foperator.dcsi.net.au www.dcsi.net.au plus.outsideonline.com tys-01.com accounts.outsideonline.com dcsi.net.au cf.lampegiganten.dk simple.business.dcsi.net.au f45connect.com dalesqc.com gamepoint.hk flipswitchmktg.info login.humanaedge.dev edge.tenants.authorhealth-dev.auth0.com wt.authorhealth-dev.auth0.com edge.authorhealth-dev.auth0.com qa-ie-n6k-fbmvp-13047-sdisupplierlookup.az.ssdgws.co.uk thickfullbrow.com qa-gb-jno-dsi-2666-autotrimcommon.az.ssdgws.co.uk wt.test-aws-rapid-herring-8747.auth0c.com test-aws-rapid-herring-8747.auth0c.com edge.tenants.test-aws-rapid-herring-8747.auth0c.com beneficioslac.visa.com.cdn.cloudflare.net v2.f45connect.com www.falconflex.ai falconflex.ai wt.plf-metrics-importer-1.auth0c.com edge.tenants.plf-metrics-importer-1.auth0c.com plf-metrics-importer-1.auth0c.com authorhealth-dev.auth0.com www.twineaglesgrills.com.cdn.cloudflare.net iamc-pcs-sync.kt.portbase.com tollandct.gov qa-ca-htm-apd-1247-changebuildtagschedul.az.ssdgws.co.uk www.a123hk.com haltomcitytransmissions.com api.food-and-consumer-products.kt.portbase.com www.uwkans.com api.tte.export.kt.portbase.com go-playlist-renderer-staging.mycujoo.football pop.mg.gov.ua smtp.mg.gov.ua qa-nl-ozb-fixapd-903-changedeploystage-r.az.ssdgws.co.uk psy.net.cn.cdn.cloudflare.net vod.stream-as.mycujoo.football api.cf.cargo-controller.kt.portbase.com ceermotors.com refdata-sync.kt.portbase.com qa-dk-ojq-apd-303-unlock-tf-state-on-can.az.ssdgws.co.uk knaufdecken.com api.zhse.kt.portbase.com go-playlist-renderer-eu.mycujoo.football go-playlist-renderer-na.mycujoo.football vod.stream-na.mycujoo.football go-playlist-renderer-as.mycujoo.football harrisvotes.com sub.dxctadminisp6d49inte.paastest.co.uk preprod.cowab.se rto-passage-api.export.kt.portbase.com rto-audit-file-generator.export.kt.portbase.com api.inspectionportal.kt.portbase.com test.cfsaas12.shop go-playlist-renderer-sa.mycujoo.football vod.stream-sa.mycujoo.football h456z.com www.tollandct.gov.cdn.cloudflare.net qa-dk-dmm-caecom-3505-invalidateanonymou.az.ssdgws.co.uk bnvws.com customers.dev.instacart.tools mg.gov.ua userinfo-api.kt.portbase.com www.harrisvotes.com security-api.kt.portbase.com www.binnenhavengeld.kt.portbase.com noviyden.com www.noviyden.com catweb.chubbfs.ca www.beneficioslac.visa.com secure.beneficioslac.visa.com em.beneficioslac.visa.com absn.dominican.edu www.psy.net.cn lgn.brezan.nl api.danmurphys.com.au app.nyaludvikatidning.se www.nyaludvikatidning.se www.twineaglesgrills.com api.cargodeclarationexport.kt.portbase.com api.infrastructure.informationplatform.kt.portbase.com api.cbs.informationplatform.kt.portbase.com www.magnoliarestaurantsurabaya.com api.mydataportal.kt.portbase.com api.ws.mydataportal.kt.portbase.com www.tollandct.gov api-cloudflare.cbs.informationplatform.kt.portbase.com homexremoteassist.business kibana.portvisit.kt.portbase.com kibana.hcn.kt.portbase.com cloudflare.kibana.portvisit.kt.portbase.com cloudflare.kibana.hcn.kt.portbase.com cloudflare.portvisit.kt.portbase.com cloudflare.hcn.kt.portbase.com www.smebank.com.my ebc784c64d244749f34eb33f7b2930d6be362341.vercel-workers.com api.cargocontrollerexport.kt.portbase.com idxshanghai.com token.supporting.kt.portbase.com www.covidpillstudy.com.cdn.cloudflare.net chat.zhizun0001.com api.exportbilling.kt.portbase.com go-playlists.playlists-global-staging.mycujoo.football rancher-staging.mycujoo.football smebank.com.my www.covidpillstudy.com live.covidpillstudy.com covidpillstudy.com comparebettercoverage.com dev.osta.ee staging-cargo.westjet.com osta.ee trends.totvs.com talapro3clinicalstudy.com www.fortunadicto.com mitroche.dk insure-my-auto.com cascadecountymt.gov fortunadicto.com www.talapro3clinicalstudy.com www.cascadecountymt.gov mycujoo.football playlists.mycujoo.football publicholidays.co.za www.publicholidays.co.za r.comparebettercoverage.com video-waves-eu.mycujoo.football video-waves-sa.mycujoo.football video-waves.mycujoo.football video-waves-staging.mycujoo.football www.qatr.com.qa.cdn.cloudflare.net beneficioslac.visa.com staging-cargo.westjet.com.cdn.cloudflare.net blackmonster.com ckk37.com motorworkswest.com guthealthresearch.com kindredhealthcare.xxx t1av.reforeperc.pro emxt.reforeperc.pro nn1v.reforeperc.pro q76h.reforeperc.pro y8p0.reforeperc.pro i69l.reforeperc.pro o3xf.reforeperc.pro od4g.reforeperc.pro reforeperc.pro hemopatch.com 322ei.com www.322ei.com 137bu.com
Open Ports Detected
2052 2082 2083 2086 2087 2095 2096 443 80 8080 8443 8880
Map
Whois Information
- NetRange: 104.16.0.0 - 104.31.255.255
- CIDR: 104.16.0.0/12
- NetName: CLOUDFLARENET
- NetHandle: NET-104-16-0-0-1
- Parent: NET104 (NET-104-0-0-0-0)
- NetType: Direct Allocation
- OriginAS: AS13335
- Organization: Cloudflare, Inc. (CLOUD14)
- RegDate: 2014-03-28
- Updated: 2021-05-26
- Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
- Ref: https://rdap.arin.net/registry/ip/104.16.0.0
- OrgName: Cloudflare, Inc.
- OrgId: CLOUD14
- Address: 101 Townsend Street
- City: San Francisco
- StateProv: CA
- PostalCode: 94107
- Country: US
- RegDate: 2010-07-09
- Updated: 2021-07-01
- Ref: https://rdap.arin.net/registry/entity/CLOUD14
- OrgAbuseHandle: ABUSE2916-ARIN
- OrgAbuseName: Abuse
- OrgAbusePhone: +1-650-319-8930
- OrgAbuseEmail: abuse@cloudflare.com
- OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
- OrgRoutingHandle: CLOUD146-ARIN
- OrgRoutingName: Cloudflare-NOC
- OrgRoutingPhone: +1-650-319-8930
- OrgRoutingEmail: noc@cloudflare.com
- OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
- OrgNOCHandle: CLOUD146-ARIN
- OrgNOCName: Cloudflare-NOC
- OrgNOCPhone: +1-650-319-8930
- OrgNOCEmail: noc@cloudflare.com
- OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
- OrgTechHandle: ADMIN2521-ARIN
- OrgTechName: Admin
- OrgTechPhone: +1-650-319-8930
- OrgTechEmail: rir@cloudflare.com
- OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
- RAbuseHandle: ABUSE2916-ARIN
- RAbuseName: Abuse
- RAbusePhone: +1-650-319-8930
- RAbuseEmail: abuse@cloudflare.com
- RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
- RTechHandle: ADMIN2521-ARIN
- RTechName: Admin
- RTechPhone: +1-650-319-8930
- RTechEmail: rir@cloudflare.com
- RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
- RNOCHandle: NOC11962-ARIN
- RNOCName: NOC
- RNOCPhone: +1-650-319-8930
- RNOCEmail: noc@cloudflare.com
- RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN