104.21.1.199 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.1.199 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: healthdoc.us bjwan7.com merah88.com moonxmusk.com dc205.org invertmerchandise.top ser22mft.one loginhoki28.live gainanautoloanace.com shopeight-x.shop cleanbreakers.online yusdhfjskg.cloud inmediato-numeros-telf.cfd filashopping.vip ourfirstfed.icu fsfjsj.com zerkalo-bk-leon2.site astralgrowus.shop cacaniqueis-brasil.vip rtproyal633.org travelpickerd.com car-accessor.today nlofvkq.shop reward-optimism.org frighthodi.name visionpapers.net elijahjasmine.com assumenda-qui.com theslimminggummies.shop tunridacraft.com esportsfeverhub.website endertopluluk.com sofas-pe.today vtstat.com inteqma.com mydressco.site rawmystic.com www.sliipee.info www.mamim.homes jichang.bbq168.workers.dev cs-2invites.site cold-thunder-900f.ajjfael.workers.dev stefanik.shop fintech-insights.cc neng4d.cc www.colombeiaweb.com whm.colombeiaweb.com colombeiaweb.com recyclingshopes-shop.com criscarrosrj.com bbt-cyber.co.uk viepretcomcentsur.cf loja-starlink.shop mihf.us vavada-jvsa.sbs autoglass-palmbeachcounty.com www.sceltatappetoelastico.it skywok.online 1080best10.com www.wazefnecv.com wazefnecv.com lendercontentme.store bluewhalefinance.io canizella.net novaexperiencia.link phxqdkbqol.com tck.capitalrechargeplace.com osintguide.com o2-co.jp wovead.us sosparebriseplus.fr wgy.dlepoh.com wgt.dlepoh.com tipcoastor.cf igv.dlepoh.com pgqe.dlepoh.com pgc.dlepoh.com pgx.dlepoh.com pgj.dlepoh.com 8mav1260.com pgs.dlepoh.com www.shoespecialized.com freebeta.pro shoespecialized.com www.carbonsteelsupply.com smoothatdi.site shop-top-10.com laehegn.dk cof.sameeraml.workers.dev constargames.store ea888.top fhh.dlepoh.com www.youtubevideosdownloader.com twprofit.net www.mielan.shop mielan.shop rubytrade.com www.latifurrehman.com ambatakam.com fhf.dlepoh.com www.loveandspunk.com youtubevideosdownloader.com trafikskolafalun.se qycd.dlepoh.com dahfx.dlepoh.com www.pubgmobileori.com haoniuyingshi9861.top www.umr171-cnrs.fr umr171-cnrs.fr pubgmobileori.com fastcdnlin-13.online fhu.dlepoh.com mancity888.top www.mancity888.top xiayitv.com fhw.dlepoh.com vnnrg.dlepoh.com wyyxryy6392.com workfatibeloca.tk kassirmaster.com kxo.dlepoh.com kxi.dlepoh.com ketokmiks.cloud www.cheapstersf.com edolgi.ru danielleadaly.bio accyteccali.org a09vw.shop blackspruty4w3j4bzyhlk24jr32wbpywn4ckwylo4hkcyy4yd-onion.site kcoinspeed.com berchiktrading.com 3dny.us kedaicuan.xyz sedately-praised.life hdjphvpy.ml langglutabco.cf prestaprime.com ouradvancehealth.com admin.diarionaranja.com www.diarionaranja.com isringhausenmotors.com e365254.com mmfilmeshd.pro www.mer-tv.com mer-tv.com casinojc1688.com millwoodsmusic.com getmoeny.com.tw slotsbag.lol reviewsvoyage.com prosto-estate-msk.ru efifact.com www.efifact.com erywyrwryet.xyz panel.lania.online forwardfyzm.xyz ml.estesis.tech whalemerya.click outreachingpro.shop deleeshops.com mylocalhuntingdale.com.au mgrpms.crystalbit.tw kogler.tech xn–80aawgchndbdrz4l.xn–p1ai glavsnab.com.ua hamrah.lania.online iledecasino.top irancell.lania.online jxhkq37.top latifurrehman.com oapteki.com iranmtn.mrjackdaw.workers.dev dnrtestmetrics.cloudflare-security-playground.workers.dev hiddify.lania.online 288267.top hazturismoencoahuila.com.mx www.salemodelaircraft.com djkdsmkmblsb.net bdsellers.com.bd exen.com.py atomicredtest.cloudflare-security-playground.workers.dev automate-gcr.cloudflare-security-playground.workers.dev mhmjzs.com young-block-c8f0.cloudflare-security-playground.workers.dev de-dlkbl.com capitalrechargeplace.com www.velos-completsfr.com m1kl.online sceltatappetoelastico.it velos-completsfr.com fapay.info ketoafotocu.cloud hongbo163.com aviator-fortune9gtjyeisd3.site kamsnhyakar.xyz mondaybaltic.online www.358-sa.monster 358-sa.monster marketbizweb.com limespot.com demo.barneklokka.no tivabooks.gq xdal.ru.com sgfqaq.xyz royal-term-caeb.uptake8476.workers.dev dokumentasjon.barneklokka.no www.jzrhyz.com green-brook-f3d8.uptake8476.workers.dev floridapythoncollection.com loddbybetong.com www.loddbybetong.com kinjuicy.com ci.crystalbit.tw nameservers.top diarionaranja.com raspy-credit-3ff5.uptake8476.workers.dev black-moon-2b8a.uptake8476.workers.dev ancient-hall-8e88.ibrohem29252.workers.dev new2.entertainment4all.ir empty-forest-715f.uptake8476.workers.dev doran.madreseha.store strapi.blpr.pro polished-bread-acba.uptake8476.workers.dev sparkling-cloud-dc01.uptake8476.workers.dev sokrostream.win kitchen.sirburr.com investorsstartpage.com mylespatterson.co.uk www.tructiepkeonhacai.org beta.barneklokka.no muschiclub.net carbonsteelsupply.com destdlhh.buzz delicate-butterfly-339a.uptake8476.workers.dev 63589563.com hs-secure.com rhemamedia.com.au regenbogenfamilien-stuttgart.de terracorehub.com www.comprarcartadeconducaocomish.com 90tercukofnekls.cc dawn-limit-444f.uptake8476.workers.dev xuekaili.com monroelocalchools.com rivieredunord.net xn—-dtbhohuvccnk.xn–p1ai 3535jkl.life rltjrww.xyz www.theprimaryholistic.com mobiilbahis833.com profitbuildap.com xtstoday.com www.mycomputermarket.com quiet-cherry-8a15.uptake8476.workers.dev jobsaqua.co.uk ironthemes.dev new3.entertainment4all.ir auchecocitoyenne.com www.abigailarobertson.icu round-tooth-8761.mrjackdaw.workers.dev jugaj.one mute-shadow-6186.uptake8476.workers.dev solucionacredito.com.br broken-wildflower-986b.uptake8476.workers.dev mute-pond-5f04.uptake8476.workers.dev fragrant-sunset-bef9.uptake8476.workers.dev old-art-eb9c.uptake8476.workers.dev freenodes.entertainment4all.ir shiny-dew-37be.uptake8476.workers.dev mah.madreseha.store roman.madreseha.store auto333.cn stouff.io techinup.online www.eu-financial-system.org riftland.com pony.biz.id makeupmingle.com sliipee.info branditparty.com david-jung.de turancyberteam.org evemeet.com eu-financial-system.org pramatv.com mkwsuccess.com jafojo.info guven.pw w.garlicbotany.cn robsadler.com neshan.madreseha.store madreseha.store instagxram.com adrian3.madreseha.store quantum-tallspy.com mamim.homes kavbet316.com playprime.thefinishingtouchties.com wellness.thefinishingtouchties.com 25lqyc.site grandbet88bf.com zebradestinations.com worker2.cloudflare-security-playground.workers.dev xn–114-vg9ll3qikl7vgs4g.net fancy-bread-9a18.cloudflare-security-playground.workers.dev socket-test.cloudflare-security-playground.workers.dev bpfm.in abigailarobertson.icu stage.blpr.pro worksection.dev redularizasitedescos.co.ua variflexmeserbia.shop salemodelaircraft.com 51cg1.online piko-play.com www.tatooine-rz.online 787655.xyz twocor.org fradogletighpos.tk littresmyo.tk delvi01.tech noisy-hall-a00c.cloudflare-security-playground.workers.dev www.radioescotismo.com.br dagrserv.com kryptondesign.co.uk www.kryptondesign.co.uk or-leyisrael.org.il ftp.or-leyisrael.org.il pop.or-leyisrael.org.il www.or-leyisrael.org.il smtp.or-leyisrael.org.il www.team-neutronic.eu team-neutronic.eu speedycars.tk fragrant-wildflower-3109.uptake8476.workers.dev kotlet.madreseha.store winter-dust-aeb2.divansalaran.workers.dev bhanidu.eu.org mobileminor.com newfree.pouyaj266.workers.dev zcard.com.pl maroonlabs.uk antalyaegesigorta.com smtp.wpuser.ir www.wpuser.ir pop.wpuser.ir www.thefinishingtouchties.com jira-automation.cloudflare-security-playground.workers.dev proud-dust-dce0.cloudflare-security-playground.workers.dev laethopepohel.tk myhomeserv.net saastoccost.tk wpuser.ir doremy.fr eaglesocceracademy.com www.usavanguard.com bleneprabnico.gq fifth3nd.xyz www.ipecus.ar aihunt.app throbbing-waterfall-0eb3.us-us.workers.dev wbfotostudio.ru app.nqoodx.com weakatox.space sina.sina85-15.workers.dev qa.ipecus.ar quarryhoa.org spiraltechies.com 9ekka.com nezhla.divansalaran.workers.dev zjcrm.net.cn brianaerjones.shop 30betkoliktv.com round-silence-8d64.uptake8476.workers.dev baewkx.com tight-rice-2337.nazmi-nadiha.workers.dev gitlab.estesis.tech enahanur.mom teslacomplainthotline.com stilgedanken.de tokenization.cloudflare-security-playground.workers.dev ceramid-elmid.pl bbb.sibunglon.com dzcart.com www.dzcart.com mos.spirt-pro-bf.site www.spirt-pro-bf.site abayaonix.com rtplapak303asia.org bbgulfstates.com lisinopril.monster laisblumkadvocacia.com.br oykkcipq.cf tructiepkeonhacai.org www.lawinkme.com lawinkme.com funwards.dev lascopevecdufor.tk beistagvastelivoul.ml csyestarwzx.com espeamth.gr bigboobsandhotsex2023.com aeluruspublishing.com herplace.online thereviews.uk scapintipquetihip.gq lesalonmartignas.fr lightspeedfinancial.com haier.click rtpcakar76.com enghoiqz.work hhk040.xyz neverperchamongs.top quideckmagrent.ml kalendai47.com messr.biz.id siberrsec.h2010155.workers.dev events-guru.com qity.eu.org hmysss4.buzz tioblaceajdurowsmys.tk golbyte.com 1080p.power2098.workers.dev mijnwolkje.be alyssondominiquelu.cyou jlakul.cyou dark-silence-eaaa.us-us.workers.dev baba-ghadimi-asli.xyz testnet-be.futurise.ml ethitjeuslipal.ga webtop.sirburr.com comprarcartadeconducaocomish.com www.funwards.dev umttaction.xyz irrue.tk jerkmorttu.ml samanalaya.xyz stingrayspirits.com darkflowrs.click damground.buzz www.expired.co.id expired.co.id muavaltcoltyiored.gq joelmiller.icu chdsaumv.com steep-dawn-a250.uptake8476.workers.dev dawn-band-9de5.uptake8476.workers.dev hanipers.ga internshipabroad.de tradladesunsio.tk anenimalbar.tk jzrhyz.com mycomputermarket.com k9jc6a.us wheelmigelamgu.tk www.togelhkpools.top topan77cool.lol dribdispglycualacop.tk 8u7makeup.shop ciabigjohntecaca.cf amrbdr.com audiobooks2.sirburr.com frxcj9ozt.rest zam27.com vikale.ug tienacon.gq tersnegepatab.ga cooltagblog.website lumuzye.boats cannabisversity.com ipouncastejere.cf untancingswancatar.gq terimeridoriyaan.net www.warzywkobus.pl elhawt.com xiyehz.com warzywkobus.pl cryptotoken.cloudflare-security-playground.workers.dev www.subnhanh.us tranebar.com chainllst.com orange-goldfish-learning.ml www.asaladcater.com cludialso.com sueislandmarina.com holy-hat-57ce.us-us.workers.dev uaaa.us-us.workers.dev burgrodsappforhau.tk o6koz6r.buzz zmz5as.tokyo react.blpr.pro imyme.cn usavanguard.com www.akhealthcare.in valhosi.tk jellyalien.tk www.jellyalien.tk subnhanh.us sc11ziorf.buzz arazz.xyz

Malware Detected on Host

Count: 1 05b11715a031401d9af8c44b70b828326930a1ab94dd11cd96063919c4c3102b

Open Ports Detected

2053 2082 2083 2086 2087 443 80 8080 8443

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN