104.21.20.8 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.20.8 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: qq88asiaid.net paratp-ao.com sultankoin99.space caoporn51.com jacketregimental.top tnecda.com dfrysd.top goldencompassmocie.com possiblesuit.com zerebifcommerce.shop shark68.asia emprendeconneumi.com 123lnd.shop my.contractorplus.app phl63.vip crv-exchange.com weirdstuffnews.com rakatoto30.org contractors123.today arvadainsulationpros.com g22666.vip aluisiovitorio.com stsybonus.com jhjy7.top dragonflypartner.com salestore-sports.com xn–hy1bm7mq3af1e9yan04a7ms.com playregal-all.com www.rebelate.info roguetheories.com invertirglobal.com 6bahisedair.com nextshou.com melhoresmalas.com uropiktge.best dianuar.xyz suv-info-jp.today ethereumcode.ai kexecwx.autos speedtest.vaughannasa.workers.dev newporn18.live cpapi.yunding88.com bestnailsclub.com gongkouxyx.buzz kettoc-loveing.vip hurycraft.shop chat.yunding88.com wthaicard.com hongmo.one yunding88.com amwuu.info dnsdemo.ykwbai.top fitmentsevacuating.click h1mp0.info gas-station-work.today majujitu5.xyz xuonginlichtet.com www.gc-hamburg-airport.de mydiet.coach bestserviceit.ru sundoro88.org chatwithaiapi.icu commafragile.top grimescountyjail.org catella.site moraex.net correos-cr-go.top wyyxaorr3193.com hntv6438.top www.pptmurals.com aaaaa-eoraaa.info 48kkk.biz ai11.ru uf48nx8.top seriesknife.com tomosgestsmbio.online superhoki89.com baharnewspaper-com.lat marketingboost.pro superspeed-racelook.com verbas.shop prunanenfulligh.tk rebelate.info haberci45.com www.waterloomovers.co.uk homeworo.shop waterloomovers.co.uk www.painttechnology.digital boxtrdsddss.g9fjr.tk roacarsasuc.tk 0ne.day public.0ne.day watch-emna19.pw nkhucar.xyz gc-hamburg-airport.de upbeatblog.com globiglo.website pephorealanrapo.ga executive-chars.cfd e-nvycrsmblr.net biostupmaransalz.tk vq7k1y.cfd torrenttt69.com unitnetwk.com colorfulchaussure.com steuerexperte360-dach.com wxhdgg.cn starbalpaja.cf helpusemotion.com bm319.com kimasites.es toddlerfashionary.com mnogoftd.com framaxglanorpocen.ga homee.homes dinner.taeho.io niebasa.tk kimijewelry.com wxtbbnnl.ga www.liberiashuttle.com registry.vincenth.de twilight-bonus-34b9.uifhzsrxwv7099.workers.dev lancastercawire.com pharrwire.com canadusi.tk congratxllf.click everyspace.ai jamesmbasherman.shop www.promoequip.com www.accre360.com lawgroupsa.com markizy-navesy-pergoly.ru thutrtiewrttr.cfd drago8476-sw-geo-redirection.remco-derksen.workers.dev ha.ppmt.org pa-proxy.openregistry.workers.dev jenkins.vincenth.de promoequip.com madhumusic.xyz eysbook.com s5xu.me widahae.fun jadid.navidvalaee.workers.dev bbbsteenwijkerland.nl tyms96.xyz nginx.vincenth.de qpsxr.xyz www.qpsxr.xyz odd-star-797a.slyshenko-ai4217.workers.dev goolin.co gbook-backend.vincenth.de baratomueble.com conpakupslisen.tk rakamatarigh.gq gorycucineiit.site securr938mail2.info secastsucsu.ml cdnzct.zctou.com urigftsnbdjwcz.cfd i8tzykskx2kbrfk684ue.college nacloud.ai trykalender13.com geniusbazu.click def-uvwxyz.homes clok.in therocksolidengineering.com luk8.xyz eatgrouup.com curly-sun-fde5.igu120n2402328.workers.dev broken-sun-83a0.igu120n2402328.workers.dev shiny-sea-7eb6.igu120n2402328.workers.dev orange-dawn-1a0b.igu120n2402328.workers.dev yellow-sunset-3c42.igu120n2402328.workers.dev tiny-frog-369a.igu120n2402328.workers.dev morning-tooth-2135.igu120n2402328.workers.dev jolly-flower-c3d2.igu120n2402328.workers.dev little-bonus-b7c2.igu120n2402328.workers.dev mute-salad-3589.igu120n2402328.workers.dev curly-firefly-ce60.igu120n2402328.workers.dev cool-pine-e539.igu120n2402328.workers.dev jolly-term-b839.igu120n2402328.workers.dev gentle-breeze-701b.igu120n2402328.workers.dev safepc.online proxmox.lesbowgeek.ovh epic.lesbowgeek.ovh domena-shop.cz smartbank.taeho.io im-forward.com holy-sunset-4013.anniesnyder1529082.workers.dev ceshi.anniesnyder1529082.workers.dev primeelevation.agency pepper324846gmail.com gostosodemais.com.br freetrial.nexttargets.com livesync.win sale-sport.com g51lfp.cyou www.nexttargets.com dry-boat-803f.zhaofjx.workers.dev mariemoonbeam.com www.cemu.download cemu.download kirasnirer.fun firstclasscarsofga.com painttechnology.digital nexttargets.com baabarvi.tk vermox.download gummiesmbfnth.best xsaxcn.shop rambutkriwil.com inveigphml.shop 10takeaways.com gestionescolar.digital lucky-credit-2109.yuxaktjgfp.workers.dev apngex.site perniniga.ga threedanesiniowa.org dickefrauen.eu bikinhebohtopan.site kphotel.ru jlpmnywz.tk www.sabrinacastro.com.br trial.nexttargets.com overteeplus.com geo-redirect.remco-derksen.workers.dev odd-sky-a766.remco-derksen.workers.dev welxgroup.com 8738loan.com kajilabar.world gospelbaptist.church aenaba.net www.sembroideredboutique.com asia-observatory.org www.rodajackpot777.com ketoudivibigsox.fun dustpealri.tk marquisofgranby-redhill.co.uk sivascicekgonder.com funneat.dk www.funneat.dk anyproject.net promokod-standoff.online roy-albc.com lovexdream.com snowy-base-15ab.digitalbr298.workers.dev invoices.ppmt.org divertbdvw.space kiss711.online gdqhek.xyz accre360.com avalarasaletaxs.com wwwwomanofelegance.com zee24h.com www.bababet777.com applyloan-online.com v6vps.com ripaddfestinis.tk semperhilaris.com omo88.club mailserver.vincenth.de vincenth.de centturneigas.ml ketoaqarypim.buzz konarkin.site www.konarkin.site notion.remoteworker.workers.dev bestdrillzone.com cutestchloe.com nottinghamstandard.co.uk binks.fit antelope-shoes.shop depilarte.pt innovativethinkerguys.com round-heart-2349.6vr7kj-o.workers.dev car.taeho.io irancell.navidvalaee.workers.dev ipad.navidvalaee.workers.dev navid.navidvalaee.workers.dev www.vagert.com theplayersnews.com serveriratel.site ppmt.org iparoznov.cz staging.taeho.io damp-cell-0f4c.jki8bduq62.workers.dev frndwrk.rshmsl.workers.dev haber-gurgentepe.com.tr imtokenn.autos dosucsegel.tk vagert.com criczone.org sandalshopus.com nteninenbrocuner.gq jleh.info tipsgen.nexttargets.com niftyoptiontips.nexttargets.com tips.nexttargets.com explore-smart.com videos81.com gonowabahis101.com www.gonowabahis101.com tol-kofkss.shop braincert.online pulsamaxwin.com nnxqignj.cf news.yaadcloud.net dreamseed.in 1on1.taeho.io aged-limit-7ea8.yfthgh.workers.dev www.selector-casino.team selector-casino.team privateerevents.com rigco.top ledger-mooney.com www.ledger-mooney.com 165756.org hi.usagi.workers.dev hey.usagi.workers.dev runwalmanpadathane.com rodajackpot777.com relax.funneat.dk prostinal.boats kougatourism.co.za ethereum.semperhilaris.com ipfs.semperhilaris.com ethereum-test.semperhilaris.com reecefootball.com theegg.online aazza.am raspy-sky-d60b.dobcho0d.workers.dev daisylreaves.icu ahrin.de bongdadzo.live atcbosenknocadal.tk 2023ketbaynowezotyk.cyou www.maxiahorros.com maxiahorros.com maparsfilloosavi.tk gemstecaple.cf notion-site.remoteworker.workers.dev freecasinogamesrealmoney.icu ralphrachellu.cyou iiwcvbvhjghdhs.ga www.canvadesignservice.com fracadinexer.tk bni-somme.fr esintili.tk congcentcoldi.tk ibelinvest-by.info neycountverbe.tk must-zdoroviy.ga ketobyqep.cyou grzxcxzx.work oloutxetiter.tk wores.xyz 9yq.mztreasuressurvey.top getonlinesupport.pro tulinsplinerikten.ml ef8.mztreasuressurvey.top zaw.mztreasuressurvey.top country-redirect.dobcho0d.workers.dev proud-morning-83ee.dobcho0d.workers.dev quick-personal-loans-td.life shanepaulus.uk chuangye08.com eju.mztreasuressurvey.top rantdetipsanctononc.gq longbonworkchilhaicoa.ga mortvidi.cf mvspcuyh.tk www.chutefortheskyrocketry.com trdlngvwpp.bond api.taeho.io ndigkingprinarib.gq usps-od1246.gq 1on1-staging.taeho.io api-staging.taeho.io taeho.io vr64.club tiktakgacor.xyz airquadd.com ooqnkw.com hmsdkj.cyou slotnotebook.com wsaqsnp.shop falcon-haye-bishtar-dar-nufilter.cf unasem.ml health.doaha.id ileamne.top iehny.info firstativant.bar mettavs.com hyr7awt.shop apatagao.shop wuxiants0.top questiotrye.ga albcrm.com tastpalthosatlade.cf requanolaneri.tk pgx4jg.cyou pornobul.click gvozdemaniya.ru plumbinghorndean.co.uk wkirjk.pw whhtiketous.ru.com doubleornothing.co superrun.net truspro.doaha.id swaptransitfinance.com 756zr.buzz findporno.com amarillo.ml articaprofile.com fuyestock-cn.com turkey-teslax.click crimrasitobur.ga 77888.eu frankltzip.ru.com billowing-tree-9f78.gezhazi.workers.dev flat-hall-118b.gezhazi.workers.dev puttheatartiba.gq account-reset.net krakenfutures24trade.com my-id.it yellow-king-dd36.ertyujhgfcv.workers.dev kjvkdc.com barubi.site toprezept.com donghanhtravel.com primedao.zone golfdide.gq tyhad.xyz stiminchamartbalti.ml mulainvest.com qaxabhxp.gq contentguru.xyz nejj.top remprosahypimalt.tk catlyveabola.gq ciepathou.tk xqepmoty.cf timesync.nekowabot.io hk.leehao.eu.org b94l.shop emphatheia.com hua-xue.space bababet777.com jfqtauea.ga giefecragacislo.gq x11v0x.shop pactasttittjunc.tk overwatch2-appeal-server-webhook.astrogd.workers.dev strikeclub.co.uk paytafecguigreatal.tk zysubyu5.site bikers.pe nsercalernwell.ml ekccltoc.ml mingskysnestty.tk gacentiahell.ml asledicont.cf pobelio.doaha.id url8mc.shop arclenungeesa.tk edomh.teendfet.site chilicconspongemo.tk prevmenma.cf lindwegstravaluras.tk www.apk.gen.tr www.higo709.altervista.org sunucuservisi.com happyday.ml takvim.com noreplapune.tk adarllevemte.ga kinlogistic.top dorsotalfiper.tk needsbeantakingmindna.tk www.algorithms-aviator-game-gu.space bigriverbrewery.net ininpay.gq sawhichadthina.ml garquitradlin.tk www.monumentvalleywiki.com lod-guest.xyz zharsmosganghidolpa.cf popjar.world nalotazgai.ga www.xn----otbhepg.xn–p1ai laminae-fleur.de wiebusdutan.tk lesbowgeek.ovh utcana.tk sabrinacastro.com.br flaggiodasatenge.gq wincentygrabowski.xyz 0769ry.com skyos.eu.org acimar.gq

Malware Detected on Host

Count: 1 c31871cc6b2050252bd7a619557bdb838ec7ad869494b39fbab30057fd715312

Open Ports Detected

2052 2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN