104.21.2.196 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.2.196 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: 5ng387.com northsecurity.xyz seremana.com otakuoa.com ypdid.com jagriculturalsciences.com zmz72.com www.renovation-services-ontario.ca candibeton888.com www.pinebushdelipizza.com coveredbyblue.com gspartners-login.xyz ezplay.app thpel.link datastorageencrypt.com pedia4dhoki.xyz olivenolie.shop nvirndrmztizsinw.net peachery686.top pdoozj.com friend-claims.tech baybahis329.com capitalfx.net alaswar-alarabiya.com ncveai.betatrue.top maniabet.cfd worldofsymphony.org uniquebuddyresist.click bsnguyenthithuhuong.com www.tommyres.com pondox.life novaukevents.com uwcfhf.com passcode-login.com jp.zhan9xin.workers.dev thetechbuddies.com flaggingdown.com bepwin.com chnll-ma-poroxyplus.gq betmanhome.com cosplaycla.shop www.cosplaycla.shop new.supun80001.workers.dev xkhlf4g.top ae533.com flindergijes.tk senggoldonk.click kaiber-tools.com ryrteno.shop cvetsworld.com wdtwbs.sbs preetsuthar.me www.ylierie.org ylierie.org limekey.life reskrim.id qifuj.com novelrelease.com takefast.space camilasecrets.com indopedia77beta.com www.themakritis.gr tinez.shop test.hopintest.workers.dev themakritis.gr fysiodeventer.nl bioskopkeren.gold climat-iso.com behind.swearcheese.site posidocasino.top arkkcopenhagensneakersoutlet.com ompinahywallfreeb.tk absorb.swearcheese.site noisy-night-018a.hopintest.workers.dev sqaret.com pokkawin.cc muskreward.net mdcm6.top zenifygroupmaill.com novayogashop.net apposchooldistricthomeslist.com unawaresavings.com adspintar07.click to467274.cfd activitiesshopofficial.com aslibandar.net playpix.sbs moeworld.tech tmlori.betatrue.top www.eurekaspringsbakery.com eurekaspringsbakery.com keytone.org www.kitchencountertopsauburn.com limpexbig.com wedrownyzakladkultury.pl ndst.swearcheese.site ai.moeworld.tech www.juragantaxi.lol juragantaxi.lol joycasino-zq17.top leghigh.com www.leghigh.com igxeround.com stiralka34.ru uzbvxz.store raisethird.space workers-todo-empty-pine-d89f.supun80001.workers.dev masterecodesign.com cvoulsmjw.store biologyinfo.com www.biologyinfo.com techsensehub.com bursalokerbaru.com listerhero.com mundobet.vip fkbahiml.ml accessvozip.com qvxevqsy.work 7jkg45.cyou gaestehausgerdes.de www.thevermillionfox.com thevermillionfox.com wonderlandstore.store ar.headrc.com smsnotification.tech dream-marketing.site hinpajin.cf sweet-bonus-17c2.hopintest.workers.dev nstylemag.com.au snowy-cherry-d71e.hopintest.workers.dev 3789985.com gold.kmclient.com drone.promethix.net www.evandrocarlosimoveis.com.br evandrocarlosimoveis.com.br cronos-ext.org www.quantum-service.online quantum-service.online tuqzyq.vip ftp.mkezh.com masfisand.tk www.innerunioncollective.com www.gf125.com gf125.com wisesolutions.space info.bursalokerbaru.com openredirect.hopintest.workers.dev nckd6e.cyou planilladeluz.online wf3a6l.buzz marketclixtrack.com corvixx.kmclient.com mirstihov.ru lgn178.com insurance-agent-licenses-search.com 2x17ca0o3uoy.site www.insurance-agent-licenses-search.com 5hz706.cyou novisto.co hermanyau.com base.swearcheese.site 8g57i.xyz www.cokfinancialservices.com irembahar.com enzatcloud.com csmen6.com orquestraada.com.br pomoshch-sertifikat-tr-ts.ru snowy-sun-0f32.m1-fallahi-mf1288.workers.dev cuanhom.funi.one cvqead.xyz tfrxbh.store de-2514-r5e.xyz scorriehackrecvami.tk energy.swearcheese.site telewizjaprzemyslowahd.pl parkett-dresden.eu wamwgh.xyz 1win-ddd-official8.xyz gatelb.store dclz.de adsnoobteam3.click thisonapr.autos kazingame.space nickelphobias.ga jnhsoftware.com.au broad-glitter-f1f5.iubmuyp9332.workers.dev lzone.moe www.theevertees.com gratefuldeadpaintingartbastard1965-2020.com phone.hamedof.ir mobile.hamedof.ir sg.apk-live.com ca.apk-live.com dypywfpfwc.com bluepenguindesign.com selector-casino.top ynjuilxt.xyz excryptomarket.com touslesbillets.eu scarboroughcarwash.store cheapplaystation.com www.hentaix.tv usanursejobs.life privetdeslight.site answerclubquizthink.com www.privetdeslight.site enrqisty12.buzz todalyzqox.com blueportaletreat.com cejiqeo.info www.ytube.xyz crownmemorialcenters.com gotaxfile.com kmbhua.bar erdan111.top www.dcompact.nl buycannabisonlineusa.net kolejowa13.com dfpack.cn upcodeline.sa.com www.homeinspectionsgreenville.com magazynogrodnika.pl skybluefence.com evsig.com www.n3lotto.com n3lotto.com valueadvisors.fr hamedof.ir tiny-haze-c712.alterconstraint.workers.dev imhullu.net ray.gw.to aloraprints.com 2tajisabong.online thisiskeane.com hopintest.hopintest.workers.dev ignidyspyrrclawug.ml mario.cards wyyxstores7568.com connect.gotaxfile.com us.apk-live.com www.mail.ojashealth.co.in twintowerauto.shop xe6.shop boosterproject.shop www.7335colgate.com riobet.buzz digitalofferbnnance.online ylji.org 88a80.com www.w0iiieokksjwe.ru w0iiieokksjwe.ru iadsus.com catapp.tk www.1yuan.shop 1yuan.shop bgl-lu.pw checkout.linaclothes.com www.funi.one funi.one shopbedskirt.com xn–gteborgstorget-vpb.se www.healthdoctor.my.id www.bettermentventures.com healthdoctor.my.id kijijihost.com renttopgkotsifee.gq clicktimes.buzz rowthautos.com eeb-obb.com line2048.com newfreenodes.alirezahashemnejad.workers.dev ggjjnx.com journalistfabrication.cn tokenpocketwine.club www.tushargupta.in zuvtu.com matarsak.mehran1371998.workers.dev cpnjsj.com mashnol.org www.mashnol.org 7335colgate.com rss.moeworld.tech www.secretionrich.shop 751ubk.com muzikaskolekcija.lv tomvnfcaeqrmesgh.mom dev.gotaxfile.com admin.gotaxfile.com cdn.gotaxfile.com doc.gotaxfile.com maximwdk.fr 6klxa.com www.newpolitic.com pornopunish.com pinebushdelipizza.com dcompact.nl us-thunderbird-soft.com back-likely.click www.emcinstallation.com kg666.cloud kszclfg.tk counterstrike16download.org rigidtopalata.cf engineerbleak.cn officialtembusugrand.com prostalis.life topyourcoffee.com flgma.space layprocbutt.tk viatical-plans.life gurstellaw.com www.somerfordequipment.co.uk www.plategarden.com plategarden.com level.host 1.leaan1577.workers.dev assault.biz.id 789bets.global www.789bets.global leibata.ml xn–h1adke.xn—-8sbajm1airp8a0b.xn–p1ai xn–80aax1cva.xn—-8sbajm1airp8a0b.xn–p1ai tusura.tk www.quickclicksystems.com quickclicksystems.com www.sriganeshfoods.in elgranbambooonline.com www.milkwoodhernehill.co.uk obsmtix.xyz www.diallself.cloud www.freedommap.cloud caiwie.com eduai.uk berlinworld.ml 826michigan.com inphibottcest.tk 74sp.top berktedri.tk www.primus-fremdsprachen.de.cdn.cloudflare.net www.cricketmatch.co.in rtp.egxl.tk dha.my.id qorxqz.cyou downpasmoitaco.ml crystalklenoty.sk 8857088.com misty-lab-2868.youtubu.workers.dev animaleofficial.buzz gombi.store marknoful.tk abtracculif.tk upreri.tk kraghorn.sa.com fb88casino.com christinotto.de srv.funi.one www.coloradodealz.com.cdn.cloudflare.net indygrowth.com zuulhome.ga bestfamily6.online www.mahad.fun mahad.fun dogennatefo.tk bettermentventures.com hanraravame.cf hvknpmk.ga miningbet.io www.escolacaminhosuave.com.br diallself.cloud freedommap.cloud u78.tw democraticen.co www.herbscycle.com thisoldman.live comingsoon.thepcpart.com img.thepcpart.com sr91boet.buzz ilovepdf.io dinkerdestroyer.xarolia.ga bm6.xarolia.ga audit-wuff.claritytechnologies.com audit-wuff-staging.claritytechnologies.com jaqc.info scoredsets.org iwbt.info trounponquire.ml brushhygienic.cyou neyfrehboluhacu.ga prettymagnet.online tl-bacnam.info inankapatdi.tk app.catalog3d.com.br www.thefreedompost.net n7hasz113088.com jharkhandsuda.co thefreedompost.net fundzutfi.tk b4scooperate.shop xarolia.ga sjrwhlf.shop r.lobbyseduce.cn mvzketoeke.bar direc.ca bakeloyz.cf 70avnf81.shop storejackjones.com korjbfjhueh.com msidwayusa.com gwsbsbtl.ml reabikel.tk inopoph.gq zulovykamen.cz ojashealth.co.in www.ojashealth.co.in rurvdqwo.club dcqrtxnp.cf ep6tez.cyou www.huaban9.app formulationcaption.co fashionss.top asanayogaclub.shop brewnubarechtpsychev.cf neoflufisan.cf erphenerpho.gq clockstrikestenfunclub.one 88871.com.cn settdupontccu.top guehaca.tk tiridiresyref.tk vltozddx.ga sphinatbedlistbuport.ga topraimi.tk moukhkeltiopres.tk pisgalllivestzo.tk docs.cryptodealer.app bilhasbwoverro.tk www.apkmode.fun apkmode.fun xn–80ajirdw.xn—-8sbajm1airp8a0b.xn–p1ai wikfureg.ru.com square-mouse-7ac0.emcglynn9440.workers.dev sculolar.ml zcdn205.ml hous3s9.vip tllllsdsfdsf.buzz dehkadeh.de 84nqh.asia rorakerspha.gq spiderman-c.tk presivenbratag.ml aneka-piring.com usgennaman.ml weetymemleigaski.tk hallatasbuspback.ga storatlokatrari.tk bestratagasa.gq akuku.com.pl nitabcont.tk conthytirali.ga incomvomannthic.ga osstoropbhawefun.tk cricketmatch.co.in whetherstate.top iscotitisi.ga luxlucent.shop startergp.kmclient.com lopalanpubbdispridg.gq apspeeds2.com dostavoda.ru www.dostavoda.ru qvufip.id sunfall.be sodajerksrestaurant.com www.primus-fremdsprachen.de urlm84.shop somerfordequipment.co.uk bronbabbmapakyno.tk tushargupta.in carcaderwind.tk www.cazimbosocial.com borcutthmenpoysnoram.tk calpprofpenhighre.cf mehoreecombe.tk waycencdernajusym.gq erraclittlincahw.tk taidadredssangta.tk everydaysavingpremiumapparelshop.com blumen-rasper.de 664240.com hzefqmvu.tk dauresubg.tk onezos.com photobatljrmb.tk pinkpower.xyz luolibii.top valheim.russelsbasement.com beagleoculxati.tk oyptcd.rest heizung.us

Malware Detected on Host

Count: 1 6b4336956dfc4e362742daf700345a073f87dc52ae4b21506d3b040914bab498

Open Ports Detected

2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN