104.21.31.7 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.31.7 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 25/100

Host and Network Information

• Mitre ATT&CK IDs: T1059 - Command and Scripting Interpreter

• Tags: 0x104, 0x11a, 0x12b, 0x14a, 0x14e, 0x228, 0x97, 0xc6, 0xe1, 0xf5, aafunction, afunction, android, april, array, array int8array, b1342177279, bad event, bad idp, child, class, closure library, cnzzdata, copyright, crios, customevent, czuuid, dafunction, date, edge, element, embed, error, fafafa, function, gc, gc3w7t6h5qw, gtmmdcvhgd, ienew ca, iframe, internal, invalid attempt, kafunction, kfunction, kkfunction, lh, meta, mit license, most, nkfunction, node, null, number, object, overlaylevel, p420, path, pseudo, public, qkfunction, quota, reduceright, regexp, rkfunction, sdkversion, skfunction, span, string, swiper, sxa0, symbol, template, this, trackevent, trackpageview, trident, typeerror, typeof, typeof b, typeof d, typeof define, typeof e, typeof enulle, typeof n, typeof r, typeof symbol, typeof t, ufunction, uint8array, umdistinctid, vd, version, void, win32, xlfunction, zdhxiong

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: simplysalema.com goldfishka-txv.top inquisitivetravels.com yuvaarts.com alalamonline.net emmalineeve.com linkjazz188.pro dodateknewsy.click yecthai.com openvelocitywave.com audiofantasy.org snowyguard.xyz ismitchsingle.com rajagame138.info draincleanup.today 88681382.app 7891a8a0.com slomining.top bnd-cf.com melbet-bigf.sbs lp.gnosisbrasil.com qrjmyzw.com istatementi.online gajian123.lol playtime3.fun markethwerutcvb.shop tuiyus.vip ertepecorpol.com benounonads.com lvxd.lvxd920221.workers.dev cyber-distribution.org nefritsolomone.com duct-repair-miami-dade-county-fl.com redcarpetrumors.com cs.louruisen.link waresgolf.com quickerbuzz.com app.whatsappweb.work cacingnaga05.click youngsautotech.com ytyygb.shop luminae.org phonesexhistory.com colorsignsny.com oiltrades.store crosby.ex-ogg.sbs beyondintl.org catspringtexas.net unaverageempire.com hk.louruisen.link new.russellandroots.com cf03.louruisen.link www.320-studios.com laluna.click hitluban59.com lutz-arlo.ex-ogg.sbs tidespsych.com.au www.planmatrix.club nodeboost.biz muster-schreiben.com www.muster-schreiben.com yska-makelaardij.nl via-informacion-telf.buzz yyphygu.top moramcm.life riobet-bael.sbs siteimprove.online whippanys.live leluxechauffeurs.co.uk staldaekamasra.cf kinmuseum.ru partner.biregra.com app.biregra.com ty6215.com holasunshines.com bahramnet.site wineshop.prefr.co acheeses.shop nickalos.ex-ogg.sbs culinary-mastery.com planmatrix.club slot4d1.xyz rdpocean.com www.rdpocean.com rocketprinting.eu ii1l.site www.sohib21.vip jydejusi.online www.jydejusi.online signgovdocu.info lucky88.onl kristina-goldbach.ex-ogg.sbs recommendaspnetrealized73.fun saunaparilka.com ind66.com argumentswyomingiceland52.fun pismaputra.com t-rglob-lb-nb.net gnosy.online thecasinoooze.com fairplayforpeace.com www.sweettoothcandyshop.shop sweettoothcandyshop.shop exploreindonesiancoffee.com f.supremacygrowth.com alcedobungalov.com cirudas6.ru sleepdiamoand1.com yiwangzb.com easttexaspropertyonlinenow.com wennishpo.com hxc154.xyz erajaya-gedget.com woodenpuzzlessale.com canadianpharmpl.com test-owner.flight-dev.com test-admin.flight-dev.com test.flight-dev.com funsizerli.gq www.answerdk.com veysourceibimi.cf tt3b.com espressofoamers.com smithing.co bongda.fan isagogo66.com cbynkgur.top ultimatesms.supremacygrowth.com areiletexcuse.top msytwz.xyz 4k6dq1n.top digitalmindai.com 99re9389.xyz aappcash.com blockchaie.info kxnzxrnf.ga onwqltfh.gq sanselighting.com adminmangovoice.com textthelp.com toyparadise.store 2382978.com uiinnovate.sbs tianlonghu123.top isabelleclaudel.com bisniskeuangan.com qerpz.buzz ecranelnamakmu.xyz authenticityicon.top autumn-recipe-797a.mpk5h-51.workers.dev floral-feather-5fab.mpk5h-51.workers.dev cepdelivery.com.br restaurantjulien.com nttinterconnected2023.cl old.russellandroots.com ndvdgchj.tk machinurde.tk discount-app.cartscaler.com thinktank.t-sources.com belorusskie-kuhni-perm.ru lywoliy.fun letterboxedsolution.com sg.zijieniubi.top hxc101.xyz be-cn-ok.degree 1whih.xyz berkeleyandbear.biz a6tk222.com www.ogcrypto.in www.flamingocommunications.in flamingocommunications.in shopashley.shop www.connatsolucoes.com.br cyberccayecaulker.com nkp7el.buzz blaj.app laundryojol.shop dark-mud-9b18.gfizvjyqxr5131.workers.dev mgdg-iot.com oadfsp.xyz auth.jwjenkin.com www.bookishcoven.com kreatiad.pl fragrant-poetry-c956.www-kttn90523.workers.dev k8ccjidw8.co almutsoupansupp.gq long-bird-5a08.laityn-afnan.workers.dev scwaterpolo.com www.scwaterpolo.com staging.livingposters.fi diotima.org.gr r2871.xyz payferraco.tk 98tang999.xyz oiieyd.xyz webcosme.com carinsure.asia daily-water-intake-for-weight-loss-b.life silent-bread-f19e.libaxuann9490.workers.dev chat.libaxuann9490.workers.dev monstrscientistion.com ketouvozel.cyou itsnotyourfault.co shadowing.top lmjjc.com bncrebieminute.baby qlska.online www.supremacygrowth.com young-limit-7f20.sedighzadeh649.workers.dev mustafakeremtanriverdi.com supremacygrowth.com peardonvue.com osissmart.vn old-wildflower-2590.info626.workers.dev poetwool.pics sweetgoldendoodlepaws.com itnxd.cn 320-studios.com noreply-services.com ak16.info unknown1223321.bjpro139.workers.dev silent-cake-0a3a.bjpro139.workers.dev quindo.id 4yowkmx07.cfd luckytoken.click skinhairtrade.com academiesplus.com nameless-meadow-6f75.mahesh-k.workers.dev frenchyou.com www.frenchyou.com www.allmusicpk.in sg.xkhlogistic.com cartscaler.com www.pronkdigital.com autoconfig.mhapt.org mx2.mhapt.org mx1.mhapt.org soft-bar-fabb.laityn-afnan.workers.dev www.n0ok.net mm.kvrgic.se eventbloom.agungtsp.com ketoyqudofobyb.fun yka873.com volterz.club golosuzbekistana.ru refstorevip.com www.xc056.com derowhacly.ga connatsolucoes.com.br pxhjjhnp.xyz caca7erisim.com.tr claw-sro.online sacrificialvirgins.com formuladaleitura.shop entry-site.com.de free-prontable-paper.com sjdsbrewers.com proud-feather-dc0e.mpk5h-51.workers.dev snowy-snow-9826.mpk5h-51.workers.dev muddy-hat-045b.mpk5h-51.workers.dev round-sky-e41a.mpk5h-51.workers.dev cold-tree-bc11.mpk5h-51.workers.dev rough-frost-409a.mpk5h-51.workers.dev morning-king-8bec.mpk5h-51.workers.dev bb.mochakoshki.ru bombateklif.com garcont.site www.focusframe.lv steep-feather-aed9.www-kttn90523.workers.dev broad-sun-f3c5.www-kttn90523.workers.dev theyur.dev raspy-mode-af42.www-kttn90523.workers.dev bold-breeze-e538.www-kttn90523.workers.dev throbbing-mountain-fa52.www-kttn90523.workers.dev elyassingeleh.www-kttn90523.workers.dev nubolig.xyz hobbtetearathinla.tk www.marketingmix.lv marketingmix.lv www.dubaitop1.com dubaitop1.com adulttwitter.com goldenpeachshop.com freenetcom.mohammadnikrad9.workers.dev tiny-term-754b.ly7384947.workers.dev seedmoneyautoloan.com freenod.mohammadnikrad9.workers.dev florainu.com getfreenod.mohammadnikrad9.workers.dev elslugle.tk flowisclev.ml lublox.tk foaywskmy.cyou ambassadorinnok.com windowsofaz.com apartments.prefr.co www.lisenbybeautysupply.com timezone.cpamaster2022.workers.dev fighpergiacacabb.ml ariapaydar.aria-paydar.workers.dev www.jeans-onsalestore.com hydra.mhapt.org kopf-an.de shopallrighb.com excocredaghe.ga yvjff.com www.lizetteclothes.shop lizetteclothes.shop www.chemoresistance.vn.ua auqyko.xyz mhapt.org www.udostoverenue-ohrana.com russellandroots.com www.russellandroots.com get.papajonesdelivery.com papajonesdelivery.com globalynews.com irrigafjlx.space www.cjgfx.com.au yctt.net mega888apk.fun learn.o0i.net laow024.com urdant.com henbaneyhumane.pics lindamarieramunno.com whm.extreme-phonesex.com www.extreme-phonesex.com cltx79.fun shawnhalloran.com cenvardbe.cyou kimai.prefr.co sohib21.vip hr.prefr.co yoshida-chiropractic.com sms-market-00.com lndexcoop-index.com firledecresultui.gq matchmyanchors.com emgeofil.ml papasfreezeria.lol nataliedestinyqa.cyou all-intl-fast-business-analytics-masters-onlines-ok.live staging.prefr.co xceniadriftedstore.com nteh-itzehoe.de winter-glitter-d0d5.info626.workers.dev proud-snow-d53e.amir-1606sadeghi.workers.dev deanlandry.com brandfolder-webhooks.hercampus.workers.dev gxizvdiw.bar focusframe.lv www.terracescondo.com jalonmiraclece.cyou japanese91pron.com safe-advert.ru premium.210226.xyz image2.210226.xyz github.210226.xyz blog.210226.xyz artedeitraslochi.it feedbacktoinfosys.com 210226.xyz wwwtexasassessment.com reyjtdhrgset.shop 1wjwd.top reha-heidelberg.de meana.biz.id www.healthmetric.us obeczw.com www.coverecruitment.co.uk fishfinderkey.com gebaeude-dachau.de mgrok.com vashaptekar.com salttertplor.tk www.gang-bang-alicante.com gang-bang-alicante.com hitvtc.com xkhlogistic.com web.xkhlogistic.com ceccimdas.com suongchuacon.net cloud.fabri.workers.dev totopol.com sub-web.ytt.yt www.interviewqn.com delphinejewello.cyou breaktalnonshe.ml www.kursiplastikantipeluru.xyz allmusicpk.in strongheart.za.com www.afleming.org.uk fitga.com.hk natura-active.ru krsk-renault.ru book.taoqicun.cn love.taoqicun.cn tatweerdynamics.com headsc.dev diapicaconsfrut.tk prodcale.cf ketoxybany.cyou vergixalanodmes.net ovblubanle.ga ketofejedea.cyou allfreefilms.work preserco.gq regidarsi.ml ovsismi.tk es.axiomfer-wiki.com officialofferwhiteguarantee.help kerman-zarin.tk viablegarments.com xaqlyd.shop jeans-onsalestore.com oohx8hj0.buzz www.ertymanagement.xyz njskxxxx.tk l33ts.club frenet.sbs gerqonline.com qnwan22.com prow.si organicrecyclinggroup.com.au chemoresistance.vn.ua l04lfy.tokyo soneseg.com caradano.com kursiplastikantipeluru.xyz imperial88.fun elab.prefr.co skvnhye9.buzz croadcollection.shop ap8vynj.buzz getmy3kfast.com ilmilife.com isleep.us trininat.gq brateamminstry.org blog-365.xyz kudaboa.autos beisat.shop 2023ketemeeekalyxek.cyou 758mm.info leads.pronkdigital.com cron.panelorder.com chat.morphite.io yourafriexpress.com zehnsoundfiddmissdagood.tk lite-connect.pro jsd2ys3.shop morphite.io diyideas.online amprogtempkarttide.tk olympussports.com.au au-income717.shop familytree.prefr.co wp.prefr.co feed.prefr.co cfo.prefr.co test-worker.curaytor.workers.dev gamedare.one ezwashinc.com data.fabri.workers.dev livaduhami.ga greenwichtritons.org.uk essentialscrap.top klnft.space travabmata.cf kiwuva.buzz bluebudgerigarage.co.in royalbull888.com ajpithsts.cfd feltrighs.com cosyhousecolleftion.com premiertech.mx thous.shop mwlpd.top zmsccdf010.com motorcycle.yctt.net bestsalon.fun bottquadtahelmrep.ml ogromna-moneta.pl www.trustwaltlet.com trustwaltlet.com sywp.info www.mixera.com.ua mixera.com.ua prazdnik-opt.ru newsvip.co.uk exfanote.cf xj9e5b.cyou bapogoldwhylomis.cf simpul.xyz apjeepli.tk prevanscenditar.tk www.marybijuh.com.br marybijuh.com.br heartsongconnections.com

Open Ports Detected

2053 2082 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN