104.16.22.35 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.16.22.35 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: lyyisun.com speed-vn-1.tb.al speed-au-1.tb.al speed-us-1.tb.al speed-tw-1.tb.al cf.tsinbei.com speed-fi-1.tb.al xamth120.com api6.dnsapi123.com speed-hk-2.tb.al user.sckur.com speed-kp-1.tb.al speed-us-2.tb.al speed-tw-3.tb.al speed-tr-1.tb.al speed-de-2.tb.al speed-gb-2.tb.al speed-tw-2.tb.al speed-hk-3.tb.al nali.skk.moe theme-suka.skk.moe www.huangxin.dev huangxin.dev 302.moelab.top waline.xcnya.cn foxact.skk.moe md2bc.skk.moe disqusjs.skk.moe cdn.xcnya.cn dev.xcnya.cn nai.si skk.moe oc.skk.moe www.skk.moe go.skk.moe vercel-dns.skk.moe d.skk.moe doku.skk.moe debug.skk.moe registry.npmjs.com registry.yarnpkg.com api.npmjs.org www.npmjs.org yarn.npmjs.org registry.npmjs.org npmjs.org secure.addthis.com ct6a.addthis.com ct1.addthis.com edge.addthis.com s5.addthis.com cache.addthis.com s7.addthis.com api-public.addthis.com q.addthis.com ct3.addthis.com ct5.addthis.com status.addthis.com dashcache.addthis.com eu-test.addthis.com sharebar.addthis.com addthis.com.cdn.cloudflare.net cache-uat.addthis.com www.addthis.com m.addthis.com addthis.com su.addthis.com ct4.addthis.com ct0.addthis.com support.addthis.com eu-test.addthis.com.cdn.cloudflare.net www.addthis.com.cdn.cloudflare.net sharebar.addthiscdn.com s9.addthis.com s3.addthis.com s5.addthis.com.cdn.cloudflare.net ct5.addthis.com.cdn.cloudflare.net secure.addthis.com.cdn.cloudflare.net sharebar.addthis.com.cdn.cloudflare.net ct1.addthis.com.cdn.cloudflare.net s3.addthis.com.cdn.cloudflare.net q.addthis.com.cdn.cloudflare.net cache.addthis.com.cdn.cloudflare.net edge.addthis.com.cdn.cloudflare.net s9.addthis.com.cdn.cloudflare.net api-public.addthis.com.cdn.cloudflare.net s7.addthis.com.cdn.cloudflare.net ru.leagueoflegends.com eune.leagueoflegends.com

Malware Detected on Host

Count: 43 0e44557bd941c8c6f862a8c00d3e90c3a59d3a518a9697b485ecf1ac75b83ace b0c8cad644f981a092eed7e1f5d6c92e35c3c3c48e1c884693b8be392400d0bf 3e543b60254491654210a34005c6a7e9487426e715ee944a639bcfd2d064afcb 72733231647bad3382cf9c7d5927f0d37f28028964ecfa35d967588428a08dcc 236d7576f56602b07aad46643c1d173e03b326d1b0571ba66486e0e7a14335ca 8f2c8fa581e73fea3138e7d9f0a95578111a3366c0b3eb8df73ee1be68f014c4 0c69cfcca6f15233f528ccc0cfada4272d2c677b8836ee60f9f56408b85de2a8 03ada2b00e5c665a07fe8d739061f080cf4836ab90d26f3bc5f095d54c8e7cc1 9842983935c3c20eb7ea75e484ff6ad216a8a006f64802da96636a794604bd86 91302f2b1abfc7dcddba6490d89112303862ff9cb090ff4fa119ad82406dc6d3

Open Ports Detected

2052 2053 2082 2083 2086 2087 2095 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22