104.18.40.229 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.18.40.229 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: testordervalidator.mediahuis.com prod.centurycommunities.com qa-gb-jtg-apd-7154-successendjobjiratkts.az.ssdgws.co.uk nl-dev-ad-refresh.mediahuis.com annual-report.mediahuis.com www.iccgolf.com login-tst.mediahuis.com dev.restasis.com qa.restasis.com dgvb.mediahuis.com narrator.qa.ameriprise.com ops-tools.corp.8x8.com staging.impactondemand.aon.com prep2.centurycommunities.com api.restasis.com prodcms12.eubiocoalition.eu demo-staging.corp.8x8.com dgvb-uat.mediahuis.com deze-uat.mediahuis.com betsmart888.com stg.dol.zivotvhlavniroli.cz admanager.corp.8x8.com shares.stjude.org dxctrunnerie4j6lproductioncompleted.paastest.nl dev.portal.standards.tech.gov.sg docs.standards.tech.gov.sg ctrportalacc.tva.com login-dev.mediahuis.com content.yankeecandle.com nl-ad-refresh.mediahuis.com harley.hu supplier.tva.com hk.warrants-uat.dnssecdbs.com prep.centurycommunities.com carrierequipment.com beta.standards.tech.gov.sg www-prod.securitas-australia.com.au biomedicine.video promotions.tigergaming.com q.restasis.com my.mediahuis.com www.tigergaming.com kidde.co.uk www.carrierequipment.com staticimgs.titan.co.in dev2.titan.co.in crsga.tva.com lakeinfo.tva.com customer-supplierregistration.tva.com jdbbqflq.com help.tigergaming.com www.zivotvhlavniroli.cz.cdn.cloudflare.net uat.dol.zivotvhlavniroli.cz portal.standards.tech.gov.sg be-ad-refresh.mediahuis.com crsg-training.tva.com hema.amsterdam www.hema.amsterdam fuzzyfrienddeals.com dev.dol.zivotvhlavniroli.cz matrixprofessional.pl icpub.ameriprise.com ctracc.tva.com ctr.tva.com customeranalytics.tva.com tva.com ws.tva.com ctrportal.tva.com auth.tva.com joaaccp.tva.com crsg.tva.com erem.tva.com pq.tva.com connections.tva.com integ.centurycommunities.com 3sodo.com www.titan.co.in dev.dol.nuclearmedicineandyou.com pfizer.ba www.pfizer.ba narrator.ameriprise.com narrator.ameriprise.com.cdn.cloudflare.net staging.mediahuis.com herzenssache-amyloidose.de silverstatevolleyballacademy.com www.biomedicine.video www.zivotvhlavniroli.cz www.harley.hu seminolecoconutcreekpoker.com assurant.pe www.assurant.pe map.corp.8x8.com tableau.corp.8x8.com oig.tva.com www.eubiocoalition.eu prod.dol.zivotvhlavniroli.cz radiantateveryage.com www2.radiantateveryage.com boroughofdanielson.org.cdn.cloudflare.net firm-queues.gateway-qaint.qa.finra.org www.shootingillustrated.com shootingillustrated.com www.eubiocoalition.eu.cdn.cloudflare.net www.tva.com www.centurycommunities.com.cdn.cloudflare.net www.mediahuis.com mediahuis.com connext-services-dev.garmin.com qa9msupport.restasis.com losadminapi.prereo.com losbuyerapi.prereo.com helcim.net qa9m.restasis.com qa9es.restasis.com qa99.restasis.com qa9supportes.restasis.com qa9mytearssupport.restasis.com qa9api.restasis.com qa9supportm.restasis.com qa9mytears.restasis.com qa9.restasis.com qa9support.restasis.com www.restasis.com andino.sandoz.com www.srhaybay.com srhaybay.com ada.new cycoaustralia.com edge.tenants.doma.auth0app.com doma.auth0app.com wt.doma.auth0app.com rvresort.com www.rvresort.com manpower.lu feed.manpower.lu www.foresto.elanco.com www.tiergesundheit.elanco.com newissue.qa.dr.finra.org www.ro.foresto.elanco.com www.meinhaustierundich.elanco.com www.growsolutions.elanco.com www.kedvencemesen.elanco.com www.vetcentre.elanco.com www.cvbd.elanco.com www.au.dab.elanco.com www.au.accelerate.elanco.com www.columbus.api.elanco.com www.cz.foresto.elanco.com www.mypetandme.elanco.com www.chikusan.elanco.com www.hr.foresto.elanco.com www.meupet.elanco.com www.th.accelerate.elanco.com test.mojzdrowyfutrzak.elanco.com dev.mypetandme.elanco.com test.srd-smart-compare.elanco.com test.meupet.elanco.com dev.hr.foresto.elanco.com mypetandme.elanco.com dev.mojzdrowyfutrzak.elanco.com test.au.dab.elanco.com acqra.au.accelerate.elanco.com vetconecta.elanco.com au.dab.elanco.com test.meinhaustierundich.elanco.com dev.ro.foresto.elanco.com acqra.mx.mimascotayyo.elanco.com test.icowntbrd.elanco.com vetcentre.elanco.com test.vetcentre.elanco.com chikusan.elanco.com au.accelerate.elanco.com dev.ca.monanimaletmoi.elanco.com test.kedvencemesen.elanco.com test.hr.foresto.elanco.com dev.au.accelerate.elanco.com dev.tiergesundheit.elanco.com growsolutions.elanco.com ro.foresto.elanco.com dev.au.dab.elanco.com acqra.es.mimascotayyo.elanco.com acqra.mypetandme.elanco.com mx.mimascotayyo.elanco.com test.mx.mimascotayyo.elanco.com acqra.mojzdrowyfutrzak.elanco.com test.th.accelerate.elanco.com test.cvbd.elanco.com cvbd.elanco.com acqra.kedvencemesen.elanco.com dev.mx.mimascotayyo.elanco.com dev.meupet.elanco.com acqra.fr.monanimaletmoi.elanco.com dev.icowntbrd.elanco.com test.ro.foresto.elanco.com test.au.accelerate.elanco.com dev.th.accelerate.elanco.com test.tiergesundheit.elanco.com fr.monanimaletmoi.elanco.com meupet.elanco.com acqra.vetcentre.elanco.com dev.chikusan.elanco.com acqra.th.accelerate.elanco.com cz.foresto.elanco.com acqra.cvbd.elanco.com acqra.chikusan.elanco.com tiergesundheit.elanco.com test.chikusan.elanco.com dev.cz.foresto.elanco.com columbus.api.elanco.com acqra.meupet.elanco.com acqra.ro.foresto.elanco.com acqra.meinhaustierundich.elanco.com acqra.tiergesundheit.elanco.com acqra.vetconecta.elanco.com dev.meinhaustierundich.elanco.com kedvencemesen.elanco.com acqra.cz.foresto.elanco.com test.cz.foresto.elanco.com dev.vetcentre.elanco.com hr.foresto.elanco.com test.ca.monanimaletmoi.elanco.com test.es.mimascotayyo.elanco.com dev.fr.monanimaletmoi.elanco.com www.es.depuy.com mojzdrowyfutrzak.elanco.com www.mojzdrowyfutrzak.elanco.com www.sa.sandoz.com sbx.andino.sandoz.com dev.sa.sandoz.com stg.sa.sandoz.com prod.sa.sandoz.com es.mimascotayyo.elanco.com www.es.mimascotayyo.elanco.com test.growsolutions.elanco.com www.sandoz.com.cdn.cloudflare.net meinhaustierundich.elanco.com.cdn.cloudflare.net estrelladammoffer.com jbimportauto.com stg-edit.sandoz.com dev-edit.sandoz.com uat-edit.sandoz.com a.namshicdn.com.cdn.cloudflare.net luisterboekjes.nl a.namshicdn.com test.pt.vetconecta.elanco.com pt.vetconecta.elanco.com dev.pt.vetconecta.elanco.com asaflorida.org dev.us.sandoz.com pb.namshicdn.com activatelyrica.com www.pristiqoffer.com testing-a.namshicdn.com d.namshicdn.com sage-institut.com www.activatelyrica.com pa.namshicdn.com testing-pa.namshicdn.com bb85588.com uat.us.sandoz.com uat.sandoz.com www.bb85588.com www.uk.sandoz.com uk.sandoz.com stg.sandoz.com us.sandoz.com www.sandoz.com prod.us.sandoz.com www.us.sandoz.com dev.sandoz.com prod.sandoz.com www.syngenta.com.ph casinodeal.co.uk www.casinodeal.co.uk economistgroupcareers.com www.cac.sandoz.com dev.be.monanimaletmoi.elanco.com test.be.monanimaletmoi.elanco.com acqra.be.monanimaletmoi.elanco.com inenchoi.ml tastyphoto.ru mynew.bismarteurope.com terlicatarfnorth.tk ratersimitroruck.tk pensiwemamuli.tk www.minimalmass.earth ehsanburger.com www.letstravelsmartly.com.cdn.cloudflare.net thepartnerindex.com reasironocon.ga pigiggposo.tk tirawoor.tk haqihuia.ga minsrisin.tk karolwojtylaoperamusical.it www.karolwojtylaoperamusical.it bierootsdussla.tk pcservice.bismarteurope.com emme2servizi.bismarteurope.com www.newtopmarket.com newtopmarket.com track.newtopmarket.com test.simplyprint.io simplyprint.io docs.simplyprint.io api.simplyprint.io creamydairy.com viachaouturtter.tk giteamkorepete.tk rebilentspeedim.cf www.lawsonstreeservice.net.cdn.cloudflare.net tiokibe.ga barenofi.tk www.learningbuddy24by7.com learningbuddy24by7.com thefoundation.al neeleazsisocpha.tk brokerdellatelefonia.bismarteurope.com uptime.bismarteurope.com kalitatourtravels.com got.amently.xyz silvics.amently.xyz foodkhojo.online paituterbi.ml prudy.amently.xyz bershulsihajutgist.tk scanbergmetomifa.tk rentigar.tk maipitsopo.tk yfieghjriz.tk noiragehrbe.ml raffdigifcontpenhoo.tk jalingwealthvick.tk patch.vegaragnarok.com rotito.ml nejdn.com a2.namebofi.xyz a3.namebofi.xyz a4.namebofi.xyz buying.iceshyme.shop www.rocketfuel.com.au www.tripways.biz dibartyczlafi.cf amently.xyz www.lonestarinnelcampotx.com lonestarinnelcampotx.com eninotcatate.tk bunhoderisfyo.gq beropap.xyz koz-divan.de cpcontacts.kelebekhaliyikama.web.tr cpcalendars.kelebekhaliyikama.web.tr kelebekhaliyikama.web.tr www.kelebekhaliyikama.web.tr spincity-casino-online.ru bistcarkodergballgi.tk huonchenard.xyz quantixemarketing.com finecoolcampaigner.top firstinclass.com testareariservata.bismarteurope.com lenvevenomoweak.ml ibizayachts.club contwendtrimmoichi.gq www.drg.lu.cdn.cloudflare.net diasndt.com lanicowamlittplic.tk referral.bismarteurope.com egiris-sosyaldestekbasvuru.com milesmoeller.de grafana.simplyprint.io directi0nsmag.com netflix68.com hzert.info datatimelit.website chongkenmontsara.tk bombyao.com mondbankdrearlydingmes.gq riapauvicotmingga.tk ansaficlovin.tk edu.simplyprint.io download.simplyprint.io admin.simplyprint.io www.spirulifestyles.com at-50.com mebel54.com yl13.buzz www.playmoweb.com user-updates-co-jp.today peut.se status.simplyprint.io testes.fragmentoweb.com services.fragmentoweb.com www.fragmentoweb.com halmpy.com permacultureisrael.org dioperkyleame.tk ai-doctor.com.br aluronmousla.tk tradesuper.site juicers.co sherpa-bv.nl saglikmeyvesi.space tripways.biz wilensjo.se testadmin.bismarteurope.com test.bismarteurope.com www.guiafazenda.com.br jeffrykilhoe.live wwa-333.com ccc928.com www.ccc928.com fourthdimen.com qinzhoua.tw www.fourthdimen.com.cdn.cloudflare.net pornoringlicomno.tk vewagrimamy.tk cherikais.monster drufy.online cpcontacts.bismarteurope.com www.bismarteurope.com cpcalendars.bismarteurope.com gadismeabarfullna.ga blutusinelge.ml pablopafrozy3.buzz channels24.co.za outenuncanleten.tk mysterydev.com iconikmarathi.com bupi.es liliputin.ru www.allerleipreiswert.ch.cdn.cloudflare.net grampasgaming.com betmas.bet teima.ir dowolnienakon.pl www.tyleantuijl.com.cdn.cloudflare.net ceylonchateau.com 73996z.com www.investinbrazil.co.uk 07-59-am.ru www.coin-cazino.com kuttymoviesz.net ll11-ll1.top k5u8v0wlx.xyz sultada.live bjhcyd.com.cn.cdn.cloudflare.net travtelcadanboa.tk neyfulnegarboa.ml furttsalhensicul.ml namebofi.xyz geo.bellmyer.me urnit-zinar.cyou cpcalendars.nursingopedia.com cpcontacts.nursingopedia.com www.nursingopedia.com ocltce.club zinna.pro insatusosa.ml hoccicalterppreg.ga flunmesabharbka.tk pleasteufortowho.cf bartvincontguan.tk etmynoluttcal.tk chrisbrewer.co sofinesjoyfulmoments.com www.sofinesjoyfulmoments.com strap-on-porn.com aromseclexbca.ga cerasourdeta.ml inmanconnect.com initialcloudflare.spiritbodyearth.com.cdn.cloudflare.net onworlds.top tabchicomnali.tk monsackspitetec.tk hotftibcentsnoopmar.ga vihumrepickco.ml www.projectfreetv.help projectfreetv.help motoangola.com account.legendz.cf q8pc5dmz6.xyz znj1ui.com salzhalamanextthe.cf btradium.io tateandlivingstone.com growth.clashperk.com amunfangoodptin.ga 4012dd.com alothmimith.cf alscelarlifeter.tk tiocontioferta.tk cfxsupport.com incaibronli.tk ddosstress.ru scapq.com epejunyfejapu.tk fuxaekzr.icu waytolimaspau.tk psit.se

Malware Detected on Host

Count: 4 930d8b44560e21545f36490a00971dc8e62b8e06d36ab928c535ecd6baf44e8a 452fa7f97dc9dd608d1aa7c592dfeccabbcd407631e51aa8395f992d64b8ff2a 0c155225decb539720d4fa2b7ab037e351f89e77e29efe34cc717ffcce2cdb67 92a8b5e6ab410fec34ecb0435575e1d4228405f13304c39b97912052309f8d37

Open Ports Detected

2052 2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-10-20