104.22.74.180 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.22.74.180 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 12/100

Host and Network Information

• Tags: tsec

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: bankofjordan.com.ps mnm001.com imgur-archive.ppy.sh auth-files.ppy.sh i.ppy.sh status.ppy.sh packs.ppy.sh amazonjogo01.com sentry.ppy.sh lazer.ppy.sh data.ppy.sh 48s48.com www2.tangshifu.cc tangshifu.cc www.tangshifu.cc dev-kubernetes-secrets-exporter.ppy.sh dev.ppy.sh tiles.helloretailcdn.com auth-dev.apixbet.com helloretailcdn.com access.apixbet.com event.apixbet.com qa-ie-89t-fbmvp-7519-deploysdilinkageton.az.ssdgws.co.uk bdzyimg.com www.67hu.com 67hu.com new.ppy.sh www.lrgrims.com old.ppy.sh b.ppy.sh ppy.sh s.ppy.sh www.theschooloflife.com www.theschooloflife.com.cdn.cloudflare.net a.ppy.sh osustats.ppy.sh assets.ppy.sh lrgrims.com www.lrgrims.com.cdn.cloudflare.net theschooloflife.com osu.ppy.sh

Malware Detected on Host

Count: 10 a6a88a895e492edd7628fffb862d294463753454fecdfb401aa1dc67bcd6551f b17ea252538bc3920b6fbbbd8ecfb05a9533523cc331cade46b08a52a68cc4a5 aede84c7a9d071553b1c28dacbdc16c2f4a12c30daf6706ada2475384f55fe94 d9d573cf291aca97f02d28168f172bb52efa14ebb9250f15f0ca2fb63223cb87 5529c68decff5f79e4c5b7e66526021821a8ae5ee728b6c36f470b126310f64f ebd0561e69f997473f71a5ffe9282b34393176a35406a811f8549f58716c578f d9012a0665841b622316bc500deb1d410117b5cd122b261685e34eb5b13cc9f6 71d2ae9c7395d6a07144502c5ea517fafb3d0843b0e0d166b978485a5331cc65 ff0a66deebbeb3ac64bc5e23dbacaf8ee92a9eea52e2e93ac06eb8d5c18334eb 43722dccf95c68d0e6acb1c66ce8c18874de9722a021227b5d81de23e2f84aaa

Open Ports Detected

2052 2082 2083 2086 2087 2095 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-23 anonymous-proxy-ip-list-2025-06-22