104.21.17.70 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.17.70 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 37/100

Host and Network Information

• Tags: agent tesla, april, attack, august, auto-generated security, colibri loader, contacted, contacted urls, copy, core, december, download, emotet, execution, formbook, goldbackdoor, hacktool, hijacker, historical ssl, korplug, malware, march, metro, monitoring, nanocore, october, qakbot, relic, remcos, skynet, ssl certificate, threat roundup, tsara brashears, whois record, whois whois

• View other sources: Spamhaus VirusTotal

• Country:
• Network:
• Noticed: 13 times
• Protocols Attacked: Anonymous Proxy
• Passive DNS Results: 201843471.xyz reviewtopwnews.com www.breadbasketdelimenu.com owebinu.top draggerqw.live coigomuca.store 9955betlogin.com rummyltd.com familyfirstwellness.us ronaldo4d.vip kexilumqu.shop papsma.my battlecoregem.com aurona.watch milyon88gems.com almesb.rocks tiopr.top buku303-mantul.xyz morejens.com e-firmi.com hoki381.com 6680bet-j.com michaelbakerengineering.xyz tickstats.com doctorveena.org talentacquisitionch.com betd8-m.com trade.bscapital-ltd.com gojek200two.site kvut.org jubi7.wang 5699b.top coincbq.com rtpg77game.com zaplane.store niatklik6.pro slotozal123d.buzz packages-vgp.com 84ldno.info flarbonive.sbs arosin.com mwbjoy.sbs dnhblog.com gp-777d014.com gcs5f.lol biakhtisar.com goscalo.info telegpkjol.monster xcasinodfg6.buzz incesaengenharia.com.br cougarspain.com steadypathvacay.live kkk389.com casinera-team.com goldschmuck-auf-raten-de.sbs bscapital-ltd.com e-zpass.com-ofy.icu heartfern.com wealthplanpipeline.com pylvaldra.xyz hyparlane-foundations.lol nonexps.app kaufpierone.com geng500jp.xyz halocuan98.quest 6873ll.com com-ofy.icu systemizd.fr indahenak.xyz k779101.com bm-clothing.pl ksdpb.club ft969.fun globalstratergysummit.com card-box-x.com getindacloud.com bestwaytobiz.com arizonahomeloanpros.com api.trendofx.com baoholaodongminhthong.com ufaluck7.info flagman-casi511.top tryreachr.com vibranttalent.pro vz99.boo solanify.io librariavagalume.com afcvk.info kasviskeidas.com mytrendno.shop sefakoyvinc.com www.oregonprogear.com sb9800.com www.epbestdriveraward.com split-credit-card-for-gaming-pc-no-jp.today iqcent.net www.crystal-chandelier.org crystal-chandelier.org chatgpt.1732031447.workers.dev npirih.com ozugom.work j5jili.com hsfygfey22uwgywe.rest xoooom.com ukcasinoroulette.com maintg88.cc www.ibubisnis.biz.id ibubisnis.biz.id luck199.pro telegtalg.hair cronsieure.com glucksrausch.space www.heartwheels.site totoluna88naga.pro wynmaxgame.com ariranhapg.com seboweb.com www.cyrilbdfnbdl.shop wtkunzer.xyz omergida.com none-red.com liman.lol tofibit.com quantummarket.link tema5.kuningtotomax.one tema.kuningtotomax.one j777a26.com betaaldirect-belastingdienst.sbs fabnh.club cerezhuk.com rwtirz.shop canecasdascaldas.store wkqsgpyn.xyz truckdrivers1g0x7g7g1i2z.today qalurea6.pro cire-saudi.com www.jenniferdepriest.shop corrootophelp.lat old-lake-c782.okysmilee.workers.dev drsecuritysystems.homes xn–72c1ahj0cv8ona3c0a.fun xrea.top lafok.top sacredmountainceremonies-ca.com growthtrial.com mokkasolutions.com hematahli.com ltdbkk.top semesta88k.online tenupr.com super88vip.website haveteknikdenmark.com hello-first-ad85.sepandarmazgon.workers.dev mtjrgotofa.com mvpspeed.net hello.wjj959.workers.dev thedesigncanopy.com ahgh.top cubik.studio opcio-nv.org greenstarvietnamshipsupply.com forsythia-blinking.click purpleoctopus.pro rupiah126santai.xyz b52club2.lat kkkkjogo8.com hart-vloed.com sewsaf.com 470tt.com 88king88.co.com www.88king88.co.com tree-care-marketing.com rastreia-pedidos.shop leadingjewels.com ikshop.shop lmtin.info fran-y-jorge-casamiento.org ufaguli.info bb.wtlh.us.kg thlteop.info cars-deal-fr3.today quantum-pro.live sdxjo.com onbuyshopping.top tellini.co oilpaintingrestorer.com nefeshguf.com roienema.com hotman88.lol hot58slot10.com cdn.moytus.dev 1xbet-yw49.lol authcsrun.com desa4d-jp.xyz kasietra.shop therebottles.com erigotogel.skin sboslot99gacor.site telagrem.fund forcina777.fun cbd-pt01tr.online mariowin338.com www.globalstratergysummit.com www.5movierulz2.ws goiw.site gentechnology.website freshvisionnewpaths.com glasser.ind.mom cadpakket.nl du-stage.vieespoiretverite.org dionneprotocolmigrationhub.com mysarisaristore.com www.greenlifebrasil.com opolta.xyz noirstitch.com 84live23.com crithub.shop jenniferdepriest.shop scuffersitalia.com revolut-app-uk.com www.flourishfables.com etail.me cable1828.top pulibet652.com sogesfurnitureshop.shop none139.top fairspin-anl.top www.dqelo.eu.org dental-implants-us-1130.today acorn287.click credit-card-unitedkingdom.today openai.cnchatgpt.eu.org worker-frosty-math-66f3.mahdiwt66613.workers.dev kmdental.com.ua jolly-sky-f7ff.fhvxsvk.workers.dev teigermq-tx.club smtp.delhimedia.blog www.delhimedia.blog ftp.delhimedia.blog pop.delhimedia.blog zebracross.site www.aaronindustrialsolutions.com cyrilbdfnbdl.shop cilik4d1.rest longinossuarezafe.shop nadim356367lunas.site afroegypt.net miwya.info qsymurlnzwb.beauty ssintell.com.cn prostatetreatmentpujpxs.today charmingnewtab.com centerlinkservices.com the-symbol.ru w96v15l.cn www.primooon.shop weinuo.shop bobbymerch.com grraff.com square-boat-7b77.searches.workers.dev 99ab19.com angrylolcat.lol 25217.mom sssok.com.cn getpersonalloanspr.today q-zone.shop unstethoscoped.com canepi.com omgomgxxx.co la-mano.be advokaty-kaluga.ru vivsection.click caregiverjobstraoo.today dreamforward.ru discountdeskusa.today wonyjao4.pro securepayments324.com drcastro.org vigor-xpert.click jackpot-quest.buzz cwin1s.com secureconnects.us pensiondivision.co 1xslots-aau.top rss.lovechenzhi.cn holodok.blog real-estate-experts.today niubiav.pro bbtmedical.com 787781.com www.billionmaker.com 4404127499.homes anvat.co aircraftproducesuccess.com planetario.pro pawezyy9.fun vutisdyxghb.beauty hollo-bunias-greet.shop cambiaso.com.ar keepa03.groupbuykings.com sarcaardente3iepsa.com.br 25southboutiquesoutlet.shop heavy-duty-lift-chair.today infoenvivo.com nokwe.top www.zoroto.mom docker.512219.xyz yutianfuwu.com pikaslottbg00.pro starrynift-binance.xyz brian.ph spiralion.com jwtogelnew7.com tatixec.xyz stepgurmnoon.homes hubsfromhotels.com proxy.lovechenzhi.cn worker-maintenance-test-trucker-se.michael-56b.workers.dev tekoslot.site tawno.xyz sparkbang.live everythingine.shop jonsdelli.com sonicinfuser.xyz interview-pv.xyz agen288info.com en-normandie.com bts-win.com baolibaoqi.com turkrutvu.online lovechenzhi.cn qqslotone.com pachinko132.xyz replit.a7694697987557.workers.dev 52rtpedwinslot.xyz ideabuyerfeedback.com xiongyuqy.com pin-up-casino-site4.top meacodeaqui.xyz protean777.xyz pafimedandeli.org vertigo-kinetic.rest prislos.shop trph.shop demonbells.com biggamods.com globalsansar.com jbr888.com s63jogo.com midearesmi.com hightractor.com inboxbluesignal.com nicesimplegame.com gmacstreams.com wslot425.com dudoan3mien.com dumanbetguncelgir.com nodepositscasinobonuses.com acquashowclub.com pickleballmiddletownny.com luxuryyachtsasia.com grow01.groupbuykings.com vduq.top hizocye2.pro chepushkar.com contributor.25care.com sawan66.info primooon.shop hellokikinsolar.phipham0134.workers.dev fqtz.yg1ijngp.workers.dev www.swiftshare.net tiankuangsuo.com dinyue.a7694697987557.workers.dev e-pourashava-sanad.com 44boston.com gisel88c.store dixon.com.au www.dixon.com.au dappadar.exchange turluindirimler.xyz ecoovision.com burnshieldonlinestore.shop nakexy.com genie-jackpots.com noname888.co cartooncandy.club panel.groupbuykings.com scooters-new.today xiaoxtzxsph.buzz kkpireborn.com moytus.dev cdn1.tgfish.dog careglowing.shop fitness-apps-ss.today newbottomzmey.shop weesmakanj.click pdd8.ink auxilio-carro-esp-ok.today us-usps-himiao.xyz loginkongsi88.pro farmroket.com putri4dpro.com ez686.com www.garagedoorrepairpaoli.us processor.mx mftuat.xyz thw11.xyz selpemair.com break-on.de staysblindlodge.pics green4georgia.ge 1271.io delhimedia.blog www.chilismenuprices.online chilismenuprices.online pho28ut.com burbank-pestcontrol.com imbos.gr www.imbos.gr web.tudou.run ainsearl.site yiewokrme.info mamhc.xyz gemini-pro-proxy.mxy.workers.dev png2data.searches.workers.dev myinvlun.info shop-th.cfd pricingredirect.byword.workers.dev www.saastronomical.com doctorimage.cn admivi.com hello-world-silent-moon-5ceb.dseveso.workers.dev ohi01.groupbuykings.com img.1d2a1f.cfd igjuwqgquwgqiuowqg.xyz kaszkazmleczkiem.pl 3cdbxi8.xyz heartwheels.site rp-cuan.online khanggtivi.xyz autorunner.eu.org www.kooinbay-exchange.one kooinbay-exchange.one chengdulaw.com xdelta.org ahlibett88zero.live doedads.shop allyandsteve.co.nz tour.pjharvey.net www.yeswedo.fr yeswedo.fr derzhavaviplataobse24.online mari-1004.com redacaoegramatica.com.br zhricj.online sriramsurya.au aonmicdxlg7hp2.xyz controlaccesssupport.eu tycyl69.com betflik64.net lnhrp.cfd landers.searches.workers.dev portal-noticias-hoje.online pengendalimamakmu.click vipot365.com jyp.asia 0520.512219.xyz masalbetrotator77.com ntsteal.com filmkio15.cfd madisurebonecare.com kwr61.com sirkusmahir.com rk-reemskitchen.com mietotoaja.wiki shopsinakoladas.site chatgpt.lovechenzhi.cn toptube.sbs drivewaywashingindependence.com actusdesign.pl novinkolitne.eu dehardloopshop.nl talousmajakka.fi greatgentleman.shop silakesatu.com losolivooqxpalhfs.site athleticgearx.online samurai188.baby firstworker-cake-f815.sepandarmazgon.workers.dev worker-first-c5a3.sepandarmazgon.workers.dev slotagen108.fun jy.a7694697987557.workers.dev www.pasifikslotf.xyz inz9basketball.com yourcustomwear.com noposat.top www.7ssc8qh.top www.niberailway.com daya-lenses.com rappscdn26.ru.com

Malware Detected on Host

Count: 2 5fd8310234a953fcfe9dfe3cd1ac6735b371088785e22d00ad8f6a8b53546017 1cb9b9a0e0fb0dd2c536c0750e4b0cd376d44d5de25f951c9d4aaa62de6f563a

Open Ports Detected

2082 2083 2086 2087 2096 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2024-09-04
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Comment: Geofeed: https://api.cloudflare.com/local-ip-ranges.csv
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2024-11-25
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-06-21