104.16.37.47 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.16.37.47 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• JARM: 27d40d40d00040d00042d43d00041df04c41293ba84f6efe3a613b22f983e6

• View other sources: Spamhaus VirusTotal

• Contained within other IP sets: hphosts_ats

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: qur9j.cn www.whyk.net jsc.epeex.io www.yulanb.cn www.7hi8f.cn updates.maxmind.com fonts.maxmind.com geoip1.maxmind.com gcplab1-sandbox-datareview.maxmind.com tc.maxmind.com ct-geoipbuild.maxmind.com geoip2.maxmind.com rsc.maxmind.com uat.maxmind.com url9279.maxmind.com gcplab1-datareview.maxmind.com gcplab1-sandbox.maxmind.com gcplab1-geolite.maxmind.com pentest.maxmind.com gcplab1.maxmind.com github-test.maxmind.com gcplab1-datareview-sandbox.maxmind.com artifactory.maxmind.com blog.maxmind.com geoip.maxmind.com minfraud.maxmind.com geoip3.maxmind.com maxmind.com js.maxmind.com geoip-js.maxmind.com device.maxmind.com geolite.maxmind.com www.maxmind.com download.maxmind.com email.maxmind.com static.maxmind.com download.maxmind.com.cdn.cloudflare.net www.maxmind.com. js.maxmind.com. geolite.maxmind.com. forum.maxmind.com device.maxmind.com.cdn.cloudflare.net geolite.maxmind.com.cdn.cloudflare.net www.maxmind.com.cdn.cloudflare.net js.maxmind.com.cdn.cloudflare.net

Malware Detected on Host

Count: 503 f18fa04d4d4831606266b7dd13f4060c28115df78e1b88f4c1dc77430ea89ff0 4b2f3ae0c3dcc2ae0f9158aa7b35aaf75ab810aca3533e6dee138225a7d27437 43d66d75294bee4a27c1c6c7eaee67a56648c8b57e0834950d1bb819035334c2 22702883738fc2eb70cdc427913be66050925ecbe2837f95402b39af90cd91ad e8e50f34dc12e7056199d42fbfdbf62461854b67a5eed5cca2165c053f567023 d0c8f18c3ec0591bb06db4cdf0517cd791d0b1568ceb2949c2ace639a4ce697d 5d166b81c0dc7a7081b2f73164d6f5ab5e6fa8beab499c60b2b6ae6ef12f0cd8 9fdc2fd7a18cc4e2a90e4465dc518dc2c1ddcf911d8501431c0be5c4cc011c5b 2fae6b8b7cecfd722bf3b41976e9c5852b86b6d24cc63b2ad67a2a70c84190f1 d598ef9899f7e5150e62a170a0c8872b1fd8bead2f707740d67d4e50b3d56da4

Open Ports Detected

2082 2083 2086 2087 2096 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22