104.22.14.154 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.22.14.154 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: balochistansuccession.nadra.gov.pk complaints.nadra.gov.pk public.biorender.com onlinemrp.nadra.gov.pk dev-icons.biorender.com payment.nadra.gov.pk blazebot.xyz www.nadra.gov.pk poa.nadra.gov.pk email.biorender.com help.biorender.com visa.nadra.gov.pk qa-nl-djo-caecom-2124-negativecomponentt.az.ssdgws.co.uk qa-nz-w40-caecom-598-orders-component-te.az.ssdgws.co.uk qa-au-0bq-caecom-513-replacebasket.az.ssdgws.co.uk sls.homedepot-test.suite.maximo.com marketing-site-worker.biorender.com shortlyai.com marketing-test.biorender.com marketing.biorender.com auth.homedepot-test.suite.maximo.com predict.homedepot-test.suite.maximo.com admin.monitor.homedepot-test.suite.maximo.com safety.homedepot-test.suite.maximo.com api.monitor.homedepot-test.suite.maximo.com manage.homedepot-test.suite.maximo.com main.home.homedepot-test.suite.maximo.com main.health.homedepot-test.suite.maximo.com homedepot-test.suite.maximo.com main-all.health.homedepot-test.suite.maximo.com main.manage.homedepot-test.suite.maximo.com messaging.iot.homedepot-test.suite.maximo.com iot.homedepot-test.suite.maximo.com maxinst-health.homedepot-test.suite.maximo.com api.homedepot-test.suite.maximo.com admin.homedepot-test.suite.maximo.com monitor.homedepot-test.suite.maximo.com home.homedepot-test.suite.maximo.com visualinspection.homedepot-test.suite.maximo.com help.shortlyai.com qa-no-pog-testfbmvp-7649-calendar.az.ssdgws.co.uk www.biorender.com nadra.gov.pk qa-dk-ki7-fbmvp-6546-tableindexing.az.ssdgws.co.uk staging-admin.biorender.com analytics.biorender.com app.biorender.com staging.biorender.com qa.biorender.com develop-admin.biorender.com develop.biorender.com develop-analytics.biorender.com biorender.com sindhsuccession.nadra.gov.pk sindhsuccession.nadra.gov.pk.cdn.cloudflare.net nims.nadra.gov.pk nims.nadra.gov.pk.cdn.cloudflare.net ehsaas.nadra.gov.pk.cdn.cloudflare.net usagermanyscholarship.org ehsaaslabour.nadra.gov.pk.cdn.cloudflare.net www.usagermanyscholarship.org thetrendspotter.net nphp.nadra.gov.pk.cdn.cloudflare.net taxnet.nadra.gov.pk.cdn.cloudflare.net www.ausbt.com.au www.nadra.gov.pk.cdn.cloudflare.net visa.nadra.gov.pk.cdn.cloudflare.net ausbt.com.au

Malware Detected on Host

Count: 56 9518f4fb04f96de94bc39a9d6108934423c61f7d9b50dfb2f78481c15677e17c df86dcda3102c775b0b3046f35bb44e1b141853293515c143298df33f743e37e 5ca052156be8069fb919565b0a14775cf2e4e1f07e0b2e17cea02679efb256c2 c3d01f6cd1264fa1e4c7f6c03cec4ed44cea4debe0816e4153113f31d00ed0a4 2359f5a0411a6746faf98d58cc2c585214f451b4920983b375f07bad44110502 e4258b2460d15b85bf75aef3c637f6bc3f6b472c6e90651f5a9b1e9f9b1625fa c6af7d053405a023dc8585cdb11173d2338525a3b542da1e327c582e7604ee66 3975d12249f10714096199250375923b59787a8a8e179c7de6868029a765e676 883be3ef2509f1d9af1f3efbbed333cf3c09c70307a4e9a00c42c5c3c97678c3 617418a343d6ff3e69590b4da406e70c281d29704715f8a4d2264fdc480c7584

Open Ports Detected

2052 2083 2086 2087 2095 2096 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22