104.21.18.42 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.18.42 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• Tags: tsec

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: pasar123vip.site 8mav578.xyz sekaislot.xyz gl1.guru saludcrm.com ent-3.com invest-nesst.com czbzg.asia zhangjingzhong.com alpha-tonicoffer.live itcybersecuritytraining369298.life photoboothseller.com tangletownfa.shop mediagrowthsolve.com luhuawx.com kb-cr-4.online oferr.site tomtv106.vip okuhy.online twgushir.top rnprodutosdigitais.com allpeopleblog.online onenginer.site patriave.com torbkjq.shop pooleducationandsafety.org nickb.pro facebookmail-support-100249865394296.com magirius.org dataug.store realityprotocol.shop upcrunchemails.com fairytale-bubblier.pics digital-marketing-courses-ind-402.today theelo.buzz waineacoussiweb.tk monnaiemax.top rdfb.online tigris-trade-report.liquidity.tools itdegreeprogram.today soarflight.link emperiorcraft.com contemptiblebarren.top uwyylwwi-d173-v9.aliochaboutique.ru duoying.vip capital-bit.com www.moneystree.com lanhaivp.com feelingshop.it www.usamedpremium-supplychain.com usamedpremium-supplychain.com money-easilpaq.buzz farmanimalcaretakerjobsfindnow.today lkmhle.sbs divanniykritik.fun addontome.com www.neveroff.lol aise317.xyz nnphotography.space interestpod.store rpemotes.com vavadaqt.com applink01.online sparbicuremac.cf toupeira.xyz synergykm.app yunikitap.com.tr www.cegv-dz.com trial.nimbl.one cuqakou1.site vmug.london jaggedly-consist.shop s.km7.eu moneystree.com cj0g6m.cyou 35knoe2o-d175-v9.aliochaboutique.ru mhxcpyxzw-d173-api-v1.aliochaboutique.ru master303.shop myal-fahad.com bfqlqwlwlzsbl.com guhhq.space ropotnayamechta.fun nomination-charms-us-52487.today millisshfx.info 303storeonline.com introductionmonotony.top hello-world-autumn-disk-3e5c.validpaydar1995.workers.dev hello-world-purple-frog-fda5.validpaydar1995.workers.dev qcganjumiao.com r13b365c.top gopade.tk maxluxess.top galal-1004.com lordfilm.work quiet-bush-ed8c.hamid1378.workers.dev fragrant-base-9e4c.hamid1378.workers.dev summer-sound-8190.hamid1378.workers.dev plain-boat-57d4.hamid1378.workers.dev nuuv.social bestemakelaaroffertes.nl snaclanresarghunsking.ml escortyaren.com stoon48.net stemcomunity.store aged-mountain-8fec.tolocah5599245.workers.dev icy-surf-2d9b.tolocah5599245.workers.dev purple-mode-f019.tolocah5599245.workers.dev mute-sky-523b.tolocah5599245.workers.dev hidden-smoke-8bae.tolocah5599245.workers.dev damp-fire-7c2e.tolocah5599245.workers.dev delicate-term-b3ca.tolocah5599245.workers.dev patient-mode-fb65.tolocah5599245.workers.dev jolly-tree-43c6.tolocah5599245.workers.dev old-night-a5c4.tolocah5599245.workers.dev calm-rain-7c66.tolocah5599245.workers.dev www.weshelfie.live weshelfie.live kickback.events blog.somat.id jacksonplayhouse.com simp.anaknya.icu ugameoffer.com mfbomjdj.xyz lavaya.store ogx.com.br jiuba5333.com lavivatv329.online idspotpuppy.com healthymindbody.life partyproductssale.com hippopower.id fitlifeoffers.com tiotaiflor.tk luckygacormania.com unitdesire.website affeckshun.com cano6161.online prtrefgdsfee.cfd msre-partners.net o.devg.ml consolationprotocol.top neveroff.lol evokingyou.com kynatech.co werribeeshopping.com hottestdealstoday.com wyyxrff5536.com applefcuh.top www.huntingtonnyhousing.org huntingtonnyhousing.org jewishkeywest.com jzycc.com mattahandladi.com intogphirodi.tk vizuvr.com garagedoorrepairwinthrop.com locksmith-avondale.com cdn-1.nextstopwdw.com cegv-dz.com 6ejaiq.cfd nimdl.km7.eu us-global-lenders.com www.us-global-lenders.com inisemestabet.info wieksystef.tk wilhelyito.site www.mylifemymedical.com.au 24tr-ua.com sakura188.net bakpaketaldim.net www.himekaperkasa.com haoniuyingshi3642.top wmv6gh.cyou giris.milanobeta.com carsamba-haber.com decompprophde.tk innovatech-maintenance.osoporteo1.workers.dev toptechnologys.tech domzeroenergetyczny.info wwuvrajjcd.com weltcars.fr bestemergencyroofrepairal.com emargyhost.com hamidm.hamid1378.workers.dev sparkling-wave-c288.hamid1378.workers.dev host.emargyhost.com s5eg.site agapehousecatering.com casinoonlineindonesia.cyou kjeyzf.xyz www.lcn.workers.dev dochoigiaitri.com psihoanalitic.ru aged-tree-c209.tolocah5599245.workers.dev yellow-bread-e571.tolocah5599245.workers.dev bitter-thunder-1a20.tolocah5599245.workers.dev muddy-hill-b2b3.tolocah5599245.workers.dev throbbing-art-6bc9.tolocah5599245.workers.dev old-mode-6ca9.tolocah5599245.workers.dev fancy-block-4539.tolocah5599245.workers.dev royal-tooth-0f7e.tolocah5599245.workers.dev soft-art-f166.tolocah5599245.workers.dev curly-rain-a629.tolocah5599245.workers.dev bitter-tooth-a8b1.tolocah5599245.workers.dev jolly-recipe-bfea.tolocah5599245.workers.dev long-poetry-f927.tolocah5599245.workers.dev small-dream-dd0a.tolocah5599245.workers.dev crimson-cake-17b5.tolocah5599245.workers.dev flat-bush-10b9.tolocah5599245.workers.dev broad-tooth-e497.tolocah5599245.workers.dev curly-haze-73ef.tolocah5599245.workers.dev dry-poetry-240c.tolocah5599245.workers.dev wild-forest-2056.tolocah5599245.workers.dev sweet-cake-dc53.tolocah5599245.workers.dev gentle-pond-009d.tolocah5599245.workers.dev lucky-lake-325a.tolocah5599245.workers.dev bold-sun-6e75.tolocah5599245.workers.dev little-sea-8af5.tolocah5599245.workers.dev gentle-darkness-d6e5.tolocah5599245.workers.dev super-butterfly-c6f4.tolocah5599245.workers.dev broad-paper-56f6.tolocah5599245.workers.dev rapid-queen-5a85.tolocah5599245.workers.dev divine-hat-4935.tolocah5599245.workers.dev tiny-surf-c056.tolocah5599245.workers.dev aged-mouse-a39c.tolocah5599245.workers.dev blue-waterfall-06e0.tolocah5599245.workers.dev hidden-band-83a9.tolocah5599245.workers.dev round-firefly-0292.tolocah5599245.workers.dev tiny-shape-fef4.tolocah5599245.workers.dev steep-cherry-e157.tolocah5599245.workers.dev floral-leaf-2ed4.tolocah5599245.workers.dev bold-disk-cc75.tolocah5599245.workers.dev cool-band-c55e.tolocah5599245.workers.dev twilight-bonus-a0ab.tolocah5599245.workers.dev wild-field-0ed4.tolocah5599245.workers.dev hidden-hall-245e.tolocah5599245.workers.dev billowing-tooth-d447.tolocah5599245.workers.dev patient-tree-90a5.tolocah5599245.workers.dev sweet-tooth-3eb2.tolocah5599245.workers.dev icy-bar-e52b.tolocah5599245.workers.dev winter-mode-3c2e.tolocah5599245.workers.dev withered-frog-85f9.tolocah5599245.workers.dev sweet-truth-0ae9.tolocah5599245.workers.dev purple-resonance-3fec.tolocah5599245.workers.dev damp-smoke-ac6f.tolocah5599245.workers.dev summer-forest-31d2.tolocah5599245.workers.dev super-wave-64b7.tolocah5599245.workers.dev polished-base-e9c5.tolocah5599245.workers.dev wispy-shadow-f365.tolocah5599245.workers.dev morning-haze-5b95.tolocah5599245.workers.dev billowing-bush-1235.tolocah5599245.workers.dev solitary-hall-e3c0.tolocah5599245.workers.dev summer-queen-d5da.tolocah5599245.workers.dev red-hall-932f.tolocah5599245.workers.dev old-leaf-2cd3.tolocah5599245.workers.dev bold-frost-9cb2.tolocah5599245.workers.dev delicate-salad-dc6d.tolocah5599245.workers.dev curly-hill-5113.tolocah5599245.workers.dev tight-boat-7c39.tolocah5599245.workers.dev flat-moon-d901.tolocah5599245.workers.dev proud-cell-ebfb.tolocah5599245.workers.dev frosty-wave-44aa.tolocah5599245.workers.dev nameless-wave-0ec2.tolocah5599245.workers.dev hidden-lab-163e.tolocah5599245.workers.dev calm-glitter-8fed.tolocah5599245.workers.dev bold-shape-1070.tolocah5599245.workers.dev cool-dawn-502e.tolocah5599245.workers.dev red-lake-af0e.tolocah5599245.workers.dev sweet-flower-6411.tolocah5599245.workers.dev misty-violet-3f11.tolocah5599245.workers.dev perfectgymacademy.com catchersuitgear.com rueposale.shop bottger.biz morrosanto.com.br carbullfluf.tk archaeoptology.com romancemoda.cl bro138kv.com dajvj.sbs betwon365.live sfnt-cirugia.lisandroagustin321.workers.dev duathlon.dandesign.co additixre.buzz hotelcolonnade.com aps-fhr.com ableolimpe.ru tasss.uk gene0.eu.org www.gene0.eu.org thesciencewueen.net sanrafaelcarpetcleaning.us telegrampremium.xyz pinup-reportqyzvj.site up-pinnyeni.click shayaridua.in seppora.com deriyol.com dawn-bird-213b.samc.workers.dev sonilp.wiki avengersrobotics.org aaakzvu.com weisucenna.gq tunazil.tk zeced.net highclasswhitetrash.xyz www.sfbairport.com bnmghyujk.buzz xn—-7sbeob4aj8ahk.xn–p1ai 6k3vi.cn theauthenticationprocess.com bestshampooforoilyhair.net devg.ml www.devg.ml asaibp.com lpstadochbygg.se irbis-mos.ru top.km7.eu ri.km7.eu mihara.info 22331213.com bodtsu.com data.km7.eu km7.eu pomx-asia.io defiwallet-lending.net emporioglobal.osoporteo1.workers.dev globaltoday.xyz super-thunder-20f1.mhnmjls.workers.dev vpn.mhnmjls.workers.dev mais-colors.shop st10krecord.fr poiuyai66.k-poyai26.workers.dev rjpoker88.me www.betexpertv80.live mansite.xyz glazierschandlerscross.co.uk timesocials.beauty haoxianggow30.com boqiu.fun cieregirtolec.cf digitaljaipur.com emgurn.sa.com espiaredescobrir.site thep545.cc specawexexovcap.tk klndarapp13.com www.forenandemotorsport.se forenandemotorsport.se betexpertv80.live inpepesu.tk wewuxojobs.info nemsasmiz.nasiimaosko.workers.dev arctodac.ml sustainability.wrightservicecorp.com kimyaa9.nasiimaosko.workers.dev mohiiasdb.nasiimaosko.workers.dev georgemade.com manworld.store throbbingbarii.nasiimaosko.workers.dev qisazastore.buzz franco.com.tr naturalfie.buzz trigger.ng firstoptionaltrade.com resumescencosu.com pajdowski.cloud vufzffg.shop pflege-mittel-box.de hbqombho.gq mylifemymedical.com.au www.centersmeta.ru mtvergisiodemelerinizin.net trohlacorocmagun.gq shelflys.com projectgrupo.com www.projectgrupo.com lindaajones.icu m4gaming.info zshn.info coolslimspa.com benich.xyz won-p-select.net bzrk.us turkiyesosyal-vllergicim.net www.biuvit4u.info whackmbnostra.click insinus.de elfriedadevantewu.cyou ceptlatichilboa.ga ilands.com www.wowgame88.net cdeg.cc xx66xx.rocks latlay.online weightlosslazy.com droneshow.me defleeworbi.tk dck3tz.cyou dk4fbk.tokyo hosting-area.ml reroswebtkunsmon.ga onedrive-proxy.itansuo.workers.dev velourcosmos.xyz threessoftdestgalperon.tk gemetdirenroron.cf debank-portfolio.com honc.xyz agxoconbodif.tk masterclone.my.id www.masterclone.my.id nariman.tk smfundaz.com nnabinteriors.co.uk dichvu24h.shop zaffrany.com benjoar.com aannemer-offertes.nl csmportfolio.click cx3.mooning.com ipurcorp.cc trucojuntos.com www.keithandlindsey.com rimallogistics.com www.mindsetisntjustformornings.com tricsispitankawor.tk tracker.cfcgrupo.com.br mindsetisntjustformornings.com additiondancer.gayguyfilm.site u2mubl.mmsaqzo.workers.dev redirect.mmsaqzo.workers.dev campaign.mmsaqzo.workers.dev dummy.mmsaqzo.workers.dev vanguard-forge-github.mmsaqzo.workers.dev geenlacusdiansidis.ga straitmerger.cyou www.produk.digital tmovaw.com qb0ks5.shop fearless-a.ml trikibcotinreso.ml dangerousilluminate.cyou old.3ba.com.au egwm6j.shop hwxkkknn.gq yizfgrlm.tk vgbdtpzv.ml cfcgrupo.com.br wowgame88.net ctqqhsjk.ga yfzsijer.ml 023rv.com tullanta.com.mx bty0590.com blintirechevhe.gq kxsc.info venubs.com pobierowo18a.pl thebore.shop ncarsowald.tk karmavrc.com www.arzyabi.rojdesign.com arzyabi.rojdesign.com murhebud.tk api.metrikfy.com w.maximeamodei.be naypoundhotlyrou.tk ys9mfif.shop channel-argovpn-falcon-join-plz.ml www.ellixar.com styleandrason.com authorizationallurement.cn aljhonaltiora.ml resuconfei.ml toibietossiddslockea.tk bubinafastlot.tk threatosok.ml paramjobsindia.com www.ranchotours.com homeofficelucrativo.site locksmithshavering.co.uk homeandart-construction.osoporteo1.workers.dev garigfa.com www.andrefrancisco.com.br mobifiles.top subsnacckopfrirab.tk ruvorsdebud.ml reshacatdioprov.cf frantare.tk 6klik365.com carf.manifest.ro divdevillepadi.ml dacmelo.ml stalunicerenin.ml liberbay.tk idmiborre.tk luzlaranja.cf anzeigen-und-bearbeiten-ihk-de.com biosylballkacame.ml urldal.shop

Malware Detected on Host

Count: 1 0833b455350e915ad02346b28db26476fecfa176b1c14d6cd4cf188d826ff778

Open Ports Detected

2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN