104.18.40.238 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.18.40.238 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 7/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: gb2b-ff.reclameaqui.com.br a9w206.store.vivo.com.br consent.shutterfly.com checkout.reclameaqui.com.br lnfmnpy.cn qa2.v2.kimberly-clark.com qa3.v2.kimberly-clark.com dev3.v2.kimberly-clark.com qa3-slrc.v2.kimberly-clark.com v2.kimberly-clark.com dev4-slrw.v2.kimberly-clark.com stage-slrc.v2.kimberly-clark.com aks-p.v2.kimberly-clark.com dev1-slrc.v2.kimberly-clark.com dev1-careers-kimberly-clark-com.v2.kimberly-clark.com www-slrc.v2.kimberly-clark.com green.api.store.vivo.com.br green.store.vivo.com.br z9w111.store.vivo.com.br prep.mammoet.com a9w211.store.vivo.com.br z9w108.store.vivo.com.br a9w209.store.vivo.com.br benelux.mammoet.com qa3-careers-kimberly-clark-com.v2.kimberly-clark.com linkex.us qa1-careers-kimberly-clark-com.v2.kimberly-clark.com consent-modules.backbone.com t.oursecret.com qa1-slrw.v2.kimberly-clark.com www.v2.kimberly-clark.com z9w102.store.vivo.com.br qa4.v2.kimberly-clark.com prod.urtekram.no dev3-careers-kimberly-clark-com.v2.kimberly-clark.com dev4.v2.kimberly-clark.com dev1.v2.kimberly-clark.com stage.v2.kimberly-clark.com qa4-slrc.v2.kimberly-clark.com qa1.v2.kimberly-clark.com qa4-slrw.v2.kimberly-clark.com reclameaqui.com.br quickexch.com prep-benelux.mammoet.com consent-modules.hagerty.com auth.reclameaqui.com.br usedequipment.mammoet.com.cdn.cloudflare.net consent-manager.etsystatic.com consent-modules.goshippo.com berkleyse.com commcloud.stg-bgzf-autographfashion-com-au.cc-ecdn.net ewi-qa.jp.lilly.com cdn.transcend-mobile-consent.com orthrus-api.reclameaqui.com.br z9w114.store.vivo.com.br api.reclameaqui.com.br.cdn.cloudflare.net www.vickhoad.com ramais.reclameaqui.com.br widget-premio.reclameaqui.com.br d1.emerson.com a9w214.store.vivo.com.br z9w103.store.vivo.com.br z9w109.store.vivo.com.br z9w110.store.vivo.com.br consent.costco.ca api.reclameaqui.com.br info.green-urbanscape.com www.emicrania.info conteudo.reclameaqui.com.br consent.playbackbone.com www.transcend-cdn.com staging.www.green-urbanscape.com www.reclameaqui.com.br cdntranscend.eventbrite.com prep.urtekram.no consent.lifetouch.com mais-demo.reclameaqui.com.br generalluna.gov.ph iointegration.reclameaqui.com.br 200jili.shop auth.reclameaqui.com.br.cdn.cloudflare.net api-prd-premio.reclameaqui.com.br www.reclameaqui.com.br.cdn.cloudflare.net consent-modules.playbackbone.com dirty-zone.com transcend-cdn.com gbc.staging-web03.com comparison.staging-web03.com pownall.staging-web03.com bounty.staging-web03.com bsvb.staging-web03.com staging-web03.com tktdevcon.staging-web03.com a9w204.store.vivo.com.br a9w210.store.vivo.com.br koalachu.reclameaqui.com.br heimdall-bff.reclameaqui.com.br raresponde.reclameaqui.com.br api-premio.reclameaqui.com.br manual.reclameaqui.com.br mais.reclameaqui.com.br api-empresa-premio.reclameaqui.com.br premio.reclameaqui.com.br oracle-bff.reclameaqui.com.br noticias.reclameaqui.com.br ramais-api.reclameaqui.com.br ws03.reclameaqui.com.br vote-premio.reclameaqui.com.br morpheus-bff.reclameaqui.com.br widget-api-premio.reclameaqui.com.br ws01.reclameaqui.com.br mais-elb.reclameaqui.com.br api.store.vivo.com.br www.louisianajobdepartment.com.cdn.cloudflare.net store.vivo.com.br.cdn.cloudflare.net store.vivo.com.br electionsnb.ca a9w2.store.vivo.com.br z9w104.store.vivo.com.br a9w203.store.vivo.com.br a9w213.store.vivo.com.br a9w201.store.vivo.com.br royalbank-usa.com superunion.co.za juice77.com gana247.com www.electionsnb.ca www.royalbank-usa.com vancomv.com ciceksepetidukkan.com attrcmfactory.com 2000kstreet.com schoenherrcarpetweaving.com orlandoadvanceddentists.com rouleaurealestategroup.com scottsautorepair.com www.visa.com.ru elevationsbywbs.com wallboardsupplyco.com rockmuziks.com indianheadoil.com stg.311.louisvilleky.gov 311.louisvilleky.gov government.malaysiaairlines.com photoapi.webmd.com www.visa.com.ru.cdn.cloudflare.net sexy-pr.de rmnj.ga cloud.gradyfinchum.com eatacademy.co www.eatacademy.co rfc-colorado.us conquerproudquick.monster warden.gradyfinchum.com gradyfinchum.com doorknenstile.ga tetdocago.tk greenleeroofing.com myspecialtylenscare.com quiplicelarnia.tk flitapnasacla.tk actisedanangyou.gq esimob.guru deuvede.tk biotarimiddeeco.tk encturevhelmahtbroc.tk pipisir.pw amuclazsa.cf vitpartnetve.gq www.captenhats.ca.cdn.cloudflare.net teholsymprasra.tk terpthevonpo.ml menassaltsuppplunes.tk distlorchiler.tk consdetsiepropevta.tk acwinpentde.cf duniagamessevenfreefire.com lispercsopitra.ml tulenewsvito.cf rappkettwealthcrow.ga saiglosal.ga imperatorkasino.club galabet253.com educamosenlinea.es www.educamosenlinea.es amnfdzenig.cf predexdee.tk vielyharri.tk backdabmu.tk orange9.club worbuojatochev.tk kissgracefulhooray.best ldolizetracking.online my-meetastic.de www.officegratis.online officegratis.online nhwxmt.vip iloveearth.us www.msqb.xyz surtunitamen.tk lokado.tk msqb.xyz sandltimazfreerooksuc.tk alnittigh.tk hiringprofile.com tiosneakin.tk inolret.ml emriakleen.tk orderrkproducts.com tiendasmarrizon.com clara.eloqasia.com cityofmarietta.net web.bemycall.com www.reminisceproductions.in.cdn.cloudflare.net reminisceproductions.in www.my102.fun.cdn.cloudflare.net my102.fun ditchdiabetes.co www.sonriemama.com ccleanercomp.site osolat.tk digitalzoneway.com vox.is www.vox.is hornpotalrawhi.tk gingladang.tk toloozu.cf www.nflso.info nflso.info alcobar3.ru civilizedbeauty.co enugir.shop www.strivedexecutiveasia.com.cdn.cloudflare.net strivedexecutiveasia.com dev.strivedexecutiveasia.com.cdn.cloudflare.net pefivowasaxi.gq ulifaxazyhak.tk toaforlemulcotua.tk glampremium.pl thedevtestsite.com funcblacedsauqueney.tk icinetic.com tedeheatleci.tk ouvunintiwork.ga maphotenthaholfound.tk deb1otech.com clinicotine.co acresompuscwoldown.tk firstreviews.space ps-trk.pebblepedalers.com prodininemun.ga officerfriendlygather.fun www.jprohomes.com mandmighgoldvificas.ml malechjebp.ru pondtesoftdatoot.tk bluewonder.org credittmaster.com catsouheapulrele.tk emre.best lauripobesrece.cf hyasocerdiapat.tk curriewines.scottishgrocers.co.uk www.scottishgrocers.co.uk mitamotorscycti.tk semanticbeauty.com worldwidedatingpartners.com www.liquidltd.co.ug rjq.us surehot.shop paterpweskoyclasmau.tk www.transport76.com srv.tweakhosting.org geacourviazarfora.ga tweakhosting.org bernadinaodeymegargee.club scottishgrocers.co.uk estoredev.myspecialtylenscare.com riskgestuwopelet.tk abthyfornirocti.tk www.everythingboatpartselectronicsj1189.info uniswap-app.com www.pcc-bldg.com journal.bielerwines.com wevaryo.xyz betshire24.xyz www.cloneyourselfuniversity.com www.rachaelwatt.com grovnonchoiverra.tk www.ragheehorner.com 9zz.xyz pcc-bldg.com ww10.bokunoheroacademiaepisode.com pjixuto.com deldesancspirho.tk bitiranex.com zamanana.site stealbirthsimpurpmade.tk mullimakowane.tk rahmt.tk jacknuvilisvala.tk evadoctor.com www.123ecast.com 123ecast.com selldebo.com lohelybaropi.tk quedays.com rachaelwatt.com alicemalturan.online cpcalendars.bestvillaslanzarote.com.cdn.cloudflare.net cpcontacts.bestvillaslanzarote.com.cdn.cloudflare.net vycjat.com ggl0oss.live ww6.bokunoheroacademiaepisode.com casaravillas.tk telugu.digitalbix.com tv.digitalbix.com www.digitalbix.com deals.digitalbix.com dir.digitalbix.com shop.digitalbix.com wvw-youia.ru alive.livinza.icu unaleputgu.ml bni-mosbach.de leonthailand.com dazu.ga webssagmipogangli.ml www.rockitwithrick.com rockitwithrick.com evaclinics.com.sa lafabricadesombreros.es www.reetukotwal.com stafgeibowkonami.ml pulcorntifehost.ml cpcontacts.evaclinics.com.sa cpcalendars.evaclinics.com.sa postlisesjoyprimul.ml ficheetinaca.tk daubrodlamegon.tk buykhajharvireho.tk recttrogserdebtgulf.tk orbitalsolution.com inantalsite.cf decmamondaret.cf tackjackgoveacsart.cf lejasmin.at unorclothalgo.tk teneshabook.tk biblex.us rebeccawest.me repsioraweeno.ml cigarractlici.tk transport76.com zjhengyi.com.cn bitcut.website haglemosace.ml nicholasbattey.co.uk reetukotwal.com speedaxditcura.gq sylfpmc.gq ingisoftlenna.cf pinkheist.com www.pathfiles.com.cdn.cloudflare.net pathfiles.com adnioprefocan.cf siotisecaperlink.cf ciohealthcappdrawepex.cf cpcalendars.nmtindo.com www.nmtindo.com cpcontacts.nmtindo.com service.colegioexphadis.com.pe.cdn.cloudflare.net humevapy.tk old-intranet.colegioexphadis.com.pe.cdn.cloudflare.net paablocutizanni.cf tentgolf.com lensragacussi.gq raislecunadmal.tk mailings.sphereexhibits.com.my microbes-game.com postnisthi.tk racounpoga.tk lagja.pebblepedalers.com methylcvarbonal.cf 721832.icu biznes.com.ge json-db.tk jonbomashost.cf quibondingfimafi.cf prehouteccupawork.gq eltonbook.cf locosporlasarepas.com comphostkerasen.tk townsellisoftve.tk ridrinafeno.ga soderinit.ga dvrsshop1.xyz xjrnzl.icu suppborgdandconsdere.ga ramucanlua.tk ph-dev.msbackoffice.com losthost.com.br proggenisbprop.tk icpmht.com wnemqyjw.icu rivercitychurch.co terspluntusfullmame.tk nundnyltbicmigito.tk abplive.xyz www.stategy.us mikeosfnews.online thighsout.xyz giphyaimgur.ml fortbubbhuche.cf miporpostkentca.tk aviatorssoccer.com lecrares.gq philtomsverdi.tk tempsoundma.gq 04df.buzz rockspinel.ga dershharteta.tk eseranmicu.tk rnavrufaho.tk slashribbon.top paylybolfaper.tk frigcontohefog.tk mensnecsetyci.ml quegapomargmunch.tk adycawym.gq www.gpgdistribuidora.com.cdn.cloudflare.net usa1choice.com krawigfeuprinil.cf mingcomroviness.tk apiqogeqewaq.gq dylaseqoki.cf flatterymenhaden.xyz ywysehehin.ga arizcredigspeed.tk www.sphereexhibits.com.my pruflandriva.tk battthakon.tk expresspetsmover.com tuharowasubi.tk yryqiwofit.tk ciriqyxale.ga tarmasugile.ml krakow24.info.pl goymenpe.cf ceplideno.ml iwefifyzun.ml edlasekoptical.com ysitecabir.tk geoligudiscmi.ga gootapersdijohn.tk winperesmitep.tk madthatingconkdest.tk cafergotm.com roediretryne.ml saibpale.gq lfilujv.tk kijxnie.tk ultrabincleaning.com parceltransferred.com tausteepipader.ga smarudusracga.ga qykarivycevi.gq retlitubarknu.gq thebellschool.org uyayi1.ga momulmontacargas.com.mx smolgenlekadul.gq nonbvabbethopo.ml ninirogixifu.ga dillygamer1.com perdedepoes.info digiwalker.net fetihy.ga nfcstatistiek.nl heimono.ml www.kanzlei-am-aegidiitor.de.cdn.cloudflare.net liturnpiterthams.cf www.yenlaptopreplacementparts.xyz yenlaptopreplacementparts.xyz thisismeandfood.theweightlossquest.com www.thisismeandfood.theweightlossquest.com msbackoffice.com zs6rybnik.pl ph-staging.msbackoffice.com lacourfleurie.be kethedar.website nsysfourthdustde.cf paullievicious.com test.easy-ssr.tk ww9.bokunoheroacademiaepisode.com blacdoucarymo.gq trk-au.pebblepedalers.com evjuicebox.se lesderptisicchancworl.cf allinoneweb.online

Malware Detected on Host

Count: 2 9eaf3a653c74ec45b20093ea01204b95d50ec4fb1231b822082a4a630368ccb4 0fd72bb9505beae32a2941aeb701c4b6756ef26211ffa7f5da30d777b89c28df

Open Ports Detected

2052 2053 2082 2083 2086 2087 2095 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-10-20