104.18.27.43 Threat Intelligence and Host Information

Jun 24, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 104.18.27.43 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

View other sources: Spamhaus VirusTotal

Country:
Network:
Noticed: 1 times
Protocols Attacked: Anonymous Proxy
Passive DNS Results: www.nsm.no hdfnvnw.net win6hk.com mercury2.bid.cars 76p777.com hrssdsm2.douglascountycolorado.gov mercury.bid.cars dvess.douglascountycolorado.gov edge.tenants.patch-aws-4m7z-v202450-459-14.auth0app.com wt.patch-aws-4m7z-v202450-459-14.auth0app.com pomoc.bid.cars workflows.app.captivateiq.com bm-ent2.firewall.team pyess.douglascountycolorado.gov platnosci.bid.cars m.douglascountycolorado.gov sslvpn2.douglascountycolorado.gov hybrid.douglascountycolorado.gov mapit.douglascountycolorado.gov co.douglascountycolorado.gov mailman.douglascountycolorado.gov vc2.douglascountycolorado.gov edmontonchassis.ca cf-cdn.1plus.io www.pelhamtoday.ca schedule.bid.cars venus.bid.cars resetpassword.douglascountycolorado.gov ckm01.douglascountycolorado.gov ft1old.douglascountycolorado.gov data.douglascountycolorado.gov hrssstrix.douglascountycolorado.gov pmgw01l.douglascountycolorado.gov devapps.douglascountycolorado.gov prparser.douglascountycolorado.gov wp.douglascountycolorado.gov mpxdmzweb.douglascountycolorado.gov dcmv.douglascountycolorado.gov dcvpn.douglascountycolorado.gov funds.douglascountycolorado.gov lab-viewss1.douglascountycolorado.gov changepassword.douglascountycolorado.gov msoid.mailman.douglas.co.us.douglascountycolorado.gov ulftp.douglascountycolorado.gov sip.douglascountycolorado.gov qa-ie-jee-testfbmvp-21903-updateprecappa.az.ssdgws.co.uk rm.1plus.io.cdn.cloudflare.net kcl.de dashboards-1.og.captivateiq.com apup.1plus.io.cdn.cloudflare.net ynhhs.org douglascountycolorado.gov brandeditems.ynhhs.org 5starautorepairlex.com www.chesters.co.th.cdn.cloudflare.net c5.games jamaicabeachtexas.top www.bid.cars dvapps.douglascountycolorado.gov homebyknauf.hu benchmarking.captivateiq.com bcform.ynhhs.org creativeform.ynhhs.org test-aws-exciting-puma-8048.auth0c.com www.cbreglobalinvestors.com dvpubreports.douglascountycolorado.gov photos.bid.cars jp77dxctadmxu538prep-slot.paastest.epimore.com dashboards-0.app.captivateiq.com workflows.app-dev.captivateiq.com images.bid.cars logs.bid.cars app-perf-cdn.captivateiq.com app-perf.captivateiq.com uat-ke.imbank.com videoform.ynhhs.org dz0i4.copy.paastest.co.uk hyundai.joburg bid.cars imbank.com workflows.app-dog.captivateiq.com theway2b1.com mediaform.ynhhs.org www.gemswestminsterschool-sharjah.com www.airwallex.com.cn.cdn.cloudflare.net valentinobeauty.clubfidelidad.es cervelo-europe-dealer.nl edge.tenants.lfg-us-prod-1a.auth0app.com wt.lfg-us-prod-1a.auth0app.com ebooks.theeliteportfolio.com gemswestminsterschool-sharjah.com app-dr.captivateiq.com www.munters.co.za api-prod.captivateiq.com andysstatewide.com app-dev-drv2-cdn.captivateiq.com hubspotwtvendorapi.com ccwmoerdijk.com sorry-cypress.qe.captivateiq.com playhere247.com airwallex.com.cn smell-height-form.com nsm.no app-dr-cdn.captivateiq.com qa-ca-uzr-fbmvp-13580-prepodscaffold.az.ssdgws.co.uk dev.dol.plan-c-verstehen.de uat.dol.plan-c-verstehen.de dev.dol.sandoz-nordic.dk qa.dol.sandoz-nordic.dk prod.dol.sandoz-nordic.dk uat.dol.sandoz-nordic.dk www.mesbonsdachats.com static.clubfidelidad.es payeepreview.captivateiq.com app-chapman.captivateiq.com app-dog-cdn.captivateiq.com app-dev-cdn.captivateiq.com www.end2end-rfid-metabase.decathlon.com ralphlaurenfragances.clubfidelidad.es kb.1plus.io alb.clubfidelidad.es biotherm.clubfidelidad.es lancome.clubfidelidad.es cacharelparfums.clubfidelidad.es armanibeauty.clubfidelidad.es victor-rolffragances.clubfidelidad.es cms.clubfidelidad.es wind2market.com www.wind2market.com custom-logos.app-dog.captivateiq.com custom-logos.app.captivateiq.com lfg-us-prod-1a.auth0app.com app-prod-cdn.captivateiq.com prep6.hae.ee insurancesavingsfinder.com beast.qa.finra.org dashboards.app-dog.captivateiq.com custom-logos.app-dev.captivateiq.com afg345.com prod6.hae.ee app-prod.captivateiq.com dev6.hae.ee qa-au-8b7-fixfbmvp-11029-addmissingga4ev.az.ssdgws.co.uk trust.captivateiq.com qa-dk-mjs-fixecrp-9768-turnegtonforprodu.az.ssdgws.co.uk d123n.com dashboards.app-dev.captivateiq.com dashboards.app.captivateiq.com payee.app-dev.captivateiq.com abel-dev.captivateiq.com cloudflare-dog.captivateiq.com carlsberg.tw www.carlsberg.tw b6p44.com seller.blibli.com abc.pbis-cf.instacart.com tws-api.1plus.io appupgrade.1plus.io rm.1plus.io www.pennsylvaniagasprices.com pantoja.gob.do homxp.com clairelfh.com www.clairelfh.com app-dev-drv2.captivateiq.com d0c5cc9a266e0ebe408cc8e7f0d034c923b22e17.vercel-workers.com decrypt.1plus.io app-category-api.1plus.io verizon-rrlt.1plus.io app-category-sync.1plus.io apup.1plus.io onelab.1plus.io cf.1plus.io kb-ota.1plus.io inte6.hae.ee bienvenidxamontero.es dev.lyleandscott.info www.mosespelham.de www.kraffthestefoder.dk legacy-app-dev.captivateiq.com app-dev.captivateiq.com www.ibrancefirst.com www.itsnotmucus.com minterellison.co.uk app-staging.captivateiq.com www.statkraft.me app-qa2.captivateiq.com api.captivateiq.com api-dev.captivateiq.com api-test-mark.captivateiq.com amamoslosvinilos.com app-dog.captivateiq.com app.captivateiq.com dev.lyleandscott.info.cdn.cloudflare.net inte6.hae.ee.cdn.cloudflare.net prod6.hae.ee.cdn.cloudflare.net prep6.hae.ee.cdn.cloudflare.net cao3e2z4.com www.providenceaccesscare.com sub.dxctngnadxc65zrqprod.paastest.co.uk.cdn.cloudflare.net t.sidekickopen82.com 365sportplays.com www.itsnotmucus.com.cdn.cloudflare.net steelpacificrecycling.ca www.kraffthestefoder.dk.cdn.cloudflare.net pennsylvaniagasprices.com providenceaccesscare.com kr-cjzz-login.gztfgame.com.cdn.cloudflare.net kr-cjzz-pay.gztfgame.com.cdn.cloudflare.net kr-cjzz-center.gztfgame.com.cdn.cloudflare.net kr-cjzz-res.gztfgame.com.cdn.cloudflare.net login.cxiaormx.com cxiaormx.com newyorkstategasprices.com www.takeda.com.cn.cdn.cloudflare.net 92178a9.com www.ibrancefirst.com.cdn.cloudflare.net ibrancefirst.com itsnotmucus.com www.cb650friders.com.cdn.cloudflare.net www.flyfishbc.com.cdn.cloudflare.net www.newyorkstategasprices.com mosespelham.de

Open Ports Detected

2052 2082 2083 2086 2087 2096 443 80 8080 8443 8880

Map

Whois Information

NetRange: 104.16.0.0 - 104.31.255.255
CIDR: 104.16.0.0/12
NetName: CLOUDFLARENET
NetHandle: NET-104-16-0-0-1
Parent: NET104 (NET-104-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS13335
Organization: Cloudflare, Inc. (CLOUD14)
RegDate: 2014-03-28
Updated: 2024-09-04
Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
Ref: https://rdap.arin.net/registry/ip/104.16.0.0
OrgName: Cloudflare, Inc.
OrgId: CLOUD14
Address: 101 Townsend Street
City: San Francisco
StateProv: CA
PostalCode: 94107
Country: US
RegDate: 2010-07-09
Updated: 2024-11-25
Ref: https://rdap.arin.net/registry/entity/CLOUD14
OrgNOCHandle: CLOUD146-ARIN
OrgNOCName: Cloudflare-NOC
OrgNOCPhone: +1-650-319-8930
OrgNOCEmail: noc@cloudflare.com
OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
OrgAbuseHandle: ABUSE2916-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-650-319-8930
OrgAbuseEmail: abuse@cloudflare.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
OrgRoutingHandle: CLOUD146-ARIN
OrgRoutingName: Cloudflare-NOC
OrgRoutingPhone: +1-650-319-8930
OrgRoutingEmail: noc@cloudflare.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
OrgTechHandle: ADMIN2521-ARIN
OrgTechName: Admin
OrgTechPhone: +1-650-319-8930
OrgTechEmail: rir@cloudflare.com
OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
RNOCHandle: NOC11962-ARIN
RNOCName: NOC
RNOCPhone: +1-650-319-8930
RNOCEmail: noc@cloudflare.com
RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
RAbuseHandle: ABUSE2916-ARIN
RAbuseName: Abuse
RAbusePhone: +1-650-319-8930
RAbuseEmail: abuse@cloudflare.com
RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
RTechHandle: ADMIN2521-ARIN
RTechName: Admin
RTechPhone: +1-650-319-8930
RTechEmail: rir@cloudflare.com
RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22

Share on: