JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.21.40.154

104.21.40.154 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	Cloudflare, Inc.
Usage Type	Content Delivery Network
ASN	AS13335
Domain Name	cloudflare.com
Country	🇺🇸 United States of America
City	San Francisco, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Important Note: 104.21.40.154 is an IP address from within our whitelist belonging to the subnet 104.16.0.0/13, which we identify as: "Cloudflare Reverse Proxy".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 104.21.40.154

Whois 104.21.40.154

IP Abuse Reports for 104.21.40.154:

This IP address has been reported a total of 8 times from 1 distinct source. 104.21.40.154 was first reported on August 23rd 2022, and the most recent report was 3 years ago.

Old Reports: The most recent abuse report for this IP address is from 3 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2022-08-25 12:23:26 (3 years ago)	From: CVS <[email protected]> Subject: {username) You Have Won! We have been tryi ... show more From: CVS <[email protected]> Subject: {username) You Have Won! We have been trying to reach you - {username); Please respond! Received: from 194.242.46.45 (EHLO sequiapzjl.yhajugkhil.live) MAGIT'ST SRL Header yhajugkhil.live = 194.242.46.41 MAGIT'ST SRL Message URL pornfucknwos.com = 193.32.161.38 (previous tosbackrido.co.uk, serbyakos.com, candyerax.com – same IP) – redirect BOT: - urgentuslime.com = 195.133.83.157 Baxet Group - malicious - lobotomistic.info = 104.21.77.211, 172.67.211.197 Cloudflare - bottomlesen.com = 104.21.40.154, 172.67.154.100 Cloudflare (previous: mannedwheel.com, TRANSPORTERS.LIVE, quibbledeal.live, vaseopresso.com, JEWELIMULI.COM) - trk-praesentium.com = 104.21.65.180, 172.67.165.74 Cloudflare - a.mgid.com = 104.19.132.78, 104.19.133.78, 104.19.134.78, 104.19.135.78, 104.19.136.78 Cloudflare show less	Fraud Orders Phishing Web Spam Email Spam Spoofing Bad Web Bot Exploited Host
Anonymous	2022-08-25 07:29:06 (3 years ago)	BestBuy spoofing - RU reward scam From: Confirmation Needed <[email protected]> Su ... show more BestBuy spoofing - RU reward scam From: Confirmation Needed <[email protected]> Subject: Celebrating OnlineBuy anniversary with an Samsung Neo QLED 8K Smart TV Received: from 113.23.212.81 (EHLO nihilflxve.quertnacho.com) Extreme Broadband Header quertnacho.com = 113.23.212.78 Extreme Broadband Message URL candyerax.com = 193.32.161.38 (previous tosbackrido.co.uk, serbyakos.com, pornfucknwos.com – same IP) – redirect BOT: - urgentuslime.com = 195.133.83.157 Baxet Group - malicious - lobotomistic.info = 104.21.77.211, 172.67.211.197 Cloudflare - bottomlesen.com = 104.21.40.154, 172.67.154.100 Cloudflare (previous: mannedwheel.com, TRANSPORTERS.LIVE, quibbledeal.live, vaseopresso.com, JEWELIMULI.COM) - trk-praesentium.com = 104.21.65.180, 172.67.165.74 Cloudflare - a.mgid.com = 104.19.132.78, 104.19.133.78, 104.19.134.78, 104.19.135.78, 104.19.136.78 Cloudflare show less	Fraud Orders Phishing Web Spam Email Spam Spoofing Bad Web Bot Exploited Host
Anonymous	2022-08-24 18:02:50 (3 years ago)	From: Shell Gas Station Winner <[email protected]> Subject: Reminder about your $500 Shell Ga ... show more From: Shell Gas Station Winner <[email protected]> Subject: Reminder about your $500 Shell Gas Card Reward Received: from 113.23.212.78 (EHLO quertnacho.com) Extreme Broadband Message URL pornfucknwos.com = 193.32.161.38 (previous tosbackrido.co.uk, serbyakos.com, candyerax.com – same IP) – redirect BOT: - urgentuslime.com = 195.133.83.157 Baxet Group - malicious - lobotomistic.info = 104.21.77.211, 172.67.211.197 Cloudflare - bottomlesen.com = 104.21.40.154, 172.67.154.100 Cloudflare (previous: mannedwheel.com, TRANSPORTERS.LIVE, quibbledeal.live, vaseopresso.com, JEWELIMULI.COM) - trk-praesentium.com = 104.21.65.180, 172.67.165.74 Cloudflare - a.mgid.com = 104.19.132.78, 104.19.133.78, 104.19.134.78, 104.19.135.78, 104.19.136.78 Cloudflare show less	Fraud Orders Phishing Web Spam Email Spam Spoofing Bad Web Bot Exploited Host
Anonymous	2022-08-24 11:23:41 (3 years ago)	From: Lowe's <[email protected]> Subject: You have won an Dewalt Power Station ... show more From: Lowe's <[email protected]> Subject: You have won an Dewalt Power Station Received: from 194.246.100.35 (EHLO pariaturhiylf.boklenparo.com) MAGIT'ST SRL Header boklenparo.com = 194.246.100.26 MAGIT'ST SRL Message URL serbyakos.com = 193.32.161.38 (previous tosbackrido.co.uk, candyerax.com, pornfucknwos.com – same IP) – redirect BOT: - urgentuslime.com = 195.133.83.157 Baxet Group - malicious - lobotomistic.info = 104.21.77.211, 172.67.211.197 Cloudflare - bottomlesen.com = 104.21.40.154, 172.67.154.100 Cloudflare (previous: mannedwheel.com, TRANSPORTERS.LIVE, quibbledeal.live, vaseopresso.com, JEWELIMULI.COM) - trk-praesentium.com = 104.21.65.180, 172.67.165.74 Cloudflare - a.mgid.com = 104.19.132.78, 104.19.133.78, 104.19.134.78, 104.19.135.78, 104.19.136.78 Cloudflare show less	Fraud Orders Phishing Web Spam Email Spam Spoofing Bad Web Bot Exploited Host
Anonymous	2022-08-24 07:15:57 (3 years ago)	From: CVS <[email protected]> Subject: {username) You Have Won! We have been tryi ... show more From: CVS <[email protected]> Subject: {username) You Have Won! We have been trying to reach you - {username); Please respond! Received: from 113.23.212.84 (EHLO dolorqrcof.quertnacho.com) Extreme Broadband Header quertnacho.com = 113.23.212.78 Extreme Broadband Message URL pornfucknwos.com = 193.32.161.38 (previous tosbackrido.co.uk, serbyakos.com, candyerax.com – same IP) – redirect BOT: - urgentuslime.com = 195.133.83.157 Baxet Group - malicious - lobotomistic.info = 104.21.77.211, 172.67.211.197 Cloudflare - bottomlesen.com = 104.21.40.154, 172.67.154.100 Cloudflare (previous: mannedwheel.com, TRANSPORTERS.LIVE, quibbledeal.live, vaseopresso.com, JEWELIMULI.COM) - trk-praesentium.com = 104.21.65.180, 172.67.165.74 Cloudflare - a.mgid.com = 104.19.132.78, 104.19.133.78, 104.19.134.78, 104.19.135.78, 104.19.136.78 Cloudflare show less	Fraud Orders Phishing Web Spam Email Spam Spoofing Bad Web Bot Exploited Host
Anonymous	2022-08-23 18:07:39 (3 years ago)	From: Shell Gas Station Winner <[email protected]> Subject: Reminder about your $500 Shell Gas ... show more From: Shell Gas Station Winner <[email protected]> Subject: Reminder about your $500 Shell Gas Card Reward Received: from 113.23.212.78 (EHLO quertnacho.com) Extreme Broadband Message URL candyerax.com = 193.32.161.38 (previous tosbackrido.co.uk, serbyakos.com, pornfucknwos.com – same IP) – redirect BOT: - urgentuslime.com = 195.133.83.157 Baxet Group - malicious - lobotomistic.info = 104.21.77.211, 172.67.211.197 Cloudflare - bottomlesen.com = 104.21.40.154, 172.67.154.100 Cloudflare (previous: mannedwheel.com, TRANSPORTERS.LIVE, quibbledeal.live, vaseopresso.com, JEWELIMULI.COM) - trk-praesentium.com = 104.21.65.180, 172.67.165.74 Cloudflare - a.mgid.com = 104.19.132.78, 104.19.133.78, 104.19.134.78, 104.19.135.78, 104.19.136.78 Cloudflare show less	Fraud Orders Phishing Web Spam Email Spam Spoofing Bad Web Bot Exploited Host
Anonymous	2022-08-23 15:01:18 (3 years ago)	BestBuy reward scam From: Confirmation Needed <[email protected]> Subject: C ... show more BestBuy reward scam From: Confirmation Needed <[email protected]> Subject: Celebrating OnlineBuy anniversary with an Samsung Neo QLED 8K Smart TV Received: from 194.242.46.43 (EHLO voluptatemejbeg.yhajugkhil.live) MAGIT'ST SRL Header yhajugkhil.live = 194.242.46.41 MAGIT'ST SRL Message URL candyerax.com = 193.32.161.38 (previous tosbackrido.co.uk, serbyakos.com, pornfucknwos.com – same IP) – redirect BOT: - urgentuslime.com = 195.133.83.157 Baxet Group - malicious - lobotomistic.info = 104.21.77.211, 172.67.211.197 Cloudflare - bottomlesen.com = 104.21.40.154, 172.67.154.100 Cloudflare (previous: mannedwheel.com, TRANSPORTERS.LIVE, quibbledeal.live, vaseopresso.com, JEWELIMULI.COM) - trk-praesentium.com = 104.21.65.180, 172.67.165.74 Cloudflare - a.mgid.com = 104.19.132.78, 104.19.133.78, 104.19.134.78, 104.19.135.78, 104.19.136.78 Cloudflare show less	Fraud Orders Phishing Web Spam Email Spam Spoofing Bad Web Bot Exploited Host
Anonymous	2022-08-23 08:35:59 (3 years ago)	From: Lowe's <[email protected]> Subject: You have won an Dewalt Power Station Received: f ... show more From: Lowe's <[email protected]> Subject: You have won an Dewalt Power Station Received: from 194.246.100.26 (EHLO boklenparo.com) MAGIT'ST SRL Message URL serbyakos.com = 193.32.161.38 (previous tosbackrido.co.uk, candyerax.com, pornfucknwos.com – same IP) – redirect BOT: - urgentuslime.com = 195.133.83.157 Baxet Group - malicious - lobotomistic.info = 104.21.77.211, 172.67.211.197 Cloudflare - bottomlesen.com = 104.21.40.154, 172.67.154.100 Cloudflare (previous: mannedwheel.com, TRANSPORTERS.LIVE, quibbledeal.live, vaseopresso.com, JEWELIMULI.COM) - trk-praesentium.com = 104.21.65.180, 172.67.165.74 Cloudflare - a.mgid.com = 104.19.132.78, 104.19.133.78, 104.19.134.78, 104.19.135.78, 104.19.136.78 Cloudflare show less	Fraud Orders Phishing Web Spam Email Spam Spoofing Bad Web Bot Exploited Host

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇿🇦 197.95.35.234

🇧🇷 191.35.128.147

🇨🇴 190.90.79.26

🇧🇷 177.39.123.71

🇩🇪 155.117.127.214

🇩🇪 151.242.147.40

🇫🇮 147.185.133.243

🇫🇮 147.185.133.111

🇨🇳 139.170.73.111

🇳🇱 91.92.40.50

🇱🇹 81.30.98.144

🇮🇳 2409:40c4:3c:acd3:a4eb:2af5:b050:a598

🇬🇧 195.96.139.119

🇭🇰 150.5.154.160

🇻🇳 103.48.192.48

🇳🇱 95.97.20.138

🇨🇦 85.217.149.65

🇨🇦 85.217.149.1

🇦🇺 80.240.118.169

🇺🇸 50.174.226.42