104.21.34.214 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.34.214 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 27/100

Host and Network Information

• Mitre ATT&CK IDs: T1071 - Application Layer Protocol

• Tags: abuse contact, all search, apeaksoft ios, apple phone, apple private, asn owner, attack, author avatar, awful, banker, cisco umbrella, code, comments, concerning link, copy, creation date, critical, cyber criminal, data collection, date, dga domain, dnssec, domain name, drive, email, emotet, external, firewall sync, first, hackers, high level, hijacker, historical otx, historical ssl, hybridanalysis, info api, installer, keylogger, malicious, malware, metro, million alexa, monitoring, mon mar, neworder.doc, online sun, open, otx octoseek, record type, red team, related, report spam, resolutions, resolved ips, scan endpoints, script, search, server, shell code, siem, site, skynet, soar, ssl certificate, status, tsara brashears, ttl value, tue mar, united, unknown, unlocker, url http, url https, urls, urlvoid, vt graph, whois, whois lookup, whois record, whois show, whois whois

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: cfworkersvless.5594722.workers.dev taringmania.life aliad.ru.com krusefamily.org usedcarpirate.com buntut77motherfucker.guru dkjfly0jqd54bc3bbrdq.xyz top-facial-lift-43855.live bengkel138.wiki vulcanplatinym-pro.click i360masters.com www.exssodouse.top yj2516.com exssodouse.top www.hockeyandpuck.com crwngames.xyz lowacolombiaco.com teencamlive.com masoncampbell.top strovflox.space marketqwfuigherh.shop um-go.com correiosrastreamento.online voirfrenchstreaming.one mackeyfi19.site stolknuvshisy.autos idolabet88aman.com bladdercancersigns.today fdjgfgs.com slot77-s.online deka-24.com sukatoto88.space aveshjindal.com aram.jopverhoeven.nl hockeyandpuck.com www.vitalbellezatotal.com plasticwierden.nl lrhkb.run dgfpbeo.shop nwpocfy.shop womenpowan.com sentry.internal.opsucht.net ilan.viplady.net www.rossislot.site leratyurina.com rossislot.site speedtest.5594722.workers.dev superwinn.click www.superwinn.click lionesscapitalpartners.org keynavlator-key.cloud www.keynavlator-key.cloud dkbriller.com affordableautoinsurance.life cos-surg.life pracder.com www.anytimeornate.shop android-smart-purchase.com noisy-mouse-8f46.ssm09710.workers.dev smokyfragrant.top anytimeornate.shop nicekickss.net www.worldfirmware.com gqn5z.top warkopi89.online yountvillegaragedoorrepair.us www.thehomeadora.com smithysbar.com.au globalnews4.store partsan.shop tor-vertualgames.com www.autumnlaneinsurance.com eddsecureecaiinf0setup.xyz viplady.net tymmvnlfe.buzz rgcc-se-asia.com refpa072300.top demo.thepacko.com cscollector.com tiger24x.net adutils.com xn–o39a35bw4f5t1a81g.com perfumeformens.com www.sextonivel.com przeglad-przedsiebiorcow.grajewo.pl compareplants.net media.lookandfin.com metabase.internal.opsucht.net ufkigirisler.shop exquisitehotelgaming.com opcion-avto.ru showermewithlove.shop pamerslot.biz masfbsafn.net www.allin99win.co allin99win.co irfec.site elenorbet253.com www.newmanicure.com escort-cool-leapfstud.tk vitalbellezatotal.com 92676k.shop www.autokaroserija.com streamsx.com.br www.kdramahindidub.com wxy.tomzlw.cc parrotflow.com guncelgiris48484.shop kdramahindidub.com www.balloonsbycynthia.com t4bmi5.com xetienchuyensaigonvungtau.com newmanicure.com bottomsma.sh earlybirdcotons.com portaldomusico.com.br treatherlikeapig.com winbet.wtf prapre.space www.proofma.com playrik2.click reflex001.tech tv.tv1asia.com s6.nvjfnjakdsk.com.de ketogqupt.shop lauriesale.top uktv22.ru.com neumobel-rabattde.com wholevillagehealing.org www.noorco.ae noorco.ae www.bakomstra.top servidorinterklzinnet.fun receitaz.com xabutiwheel.tk easydealdiscount.cfd iicdi.com mediai.so nvjfnjakdsk.com.de sinapsenforum.com.br is9z.us dev.crm.internal.opsucht.net qddssqcu.cf chatlogue.blog royal-lab-dbd0.ssm09710.workers.dev nameless-art-1cef.maziar1234563560.workers.dev lingering-meadow-91b3.maziar1234563560.workers.dev facefuse.net serdo.top hcsoftware.net www.hcsoftware.net sextonivel.com queronft.com specialbet.bet lolly.robdove.dev mpktok.shop encuestas.recuperarips.com 256129.cn eba.lestaeali.cyou niikotinipussit.pro pinleterraagyoudai.gq shy-mud-a0c2.yqpvokexsf951.workers.dev gq4bu9.cfd newparimatch.com amirhossein-fzl-dev.ir www.amirhossein-fzl-dev.ir mostbet-links-13.top changeaddress.live twilight-hill-aea3.vosiji94386115.workers.dev spring-flower-83fe.vosiji94386115.workers.dev mute-credit-6bbd.mohsenfilterpro5277.workers.dev rajacuan.cc fb66i.site www.officielsportmode.com www.stromectolivermect.com thumbaya.lk xpkgnbp.tk www.witheredbreezehaoma.fun europe-3000.shop officielsportmode.com exverge.xyz dash.phxgaming.ir hndaoheyouchuang.com vivacompaixao.com elliegorso.ga boiprovunseginli.cf cursonodigital.store webdebugging.com trash-junk-removal.life tiegradconpiboome.gq designluxurye.com dayron.com.br powsningsadobtu.tk server-fmi.com beautynepal.online www.bottomsma.sh pvp.bottomsma.sh www.pasangtesla.com pasangtesla.com nanosphereinc.com qct365.com ajar-disenfranchises.click balloonsbycynthia.com cdn.phxgaming.ir therrefmentor.com meatlesstravel.com www.meatlesstravel.com salamchetori.rezamousavi740.workers.dev home-organizers-pl-11.life blur-drop.site sseddifi.fun amber.ambersecurity.net farleysicecream.com superamanecerroanoke.com joy.robdove.dev sushibreak.ru www.sushibreak.ru stromectolivermect.com theshortestcurl.com danynet.top trysalesgpt90.com pulserastyvek.com.mx www.pulserastyvek.com.mx doodlehogz.shop jomfelai.com.my g386q.xyz marketprice.homes rhysglewis.icu game-trekker.com 202366.net americanlawnguide.com www.americanlawnguide.com ukshoppingstores.com withered-unit-4ca2.finaros769.workers.dev landed.robdove.dev nightcaregiverjobfinds.today alist.half9000.com manageyouraccountzserviez.com welcomer.shop desk.school feedback.opsucht.net www.coats-store.com coats-store.com fredapetermarketing.com andrebrennanto.shop lhgjml.com xmkwk7.cyou salewaaustria.com conwatabregacoo.tk destverbo.tk jopverhoeven.nl hebamme-gomaringen.de www.picll.cc picll.cc cupe855.com viapricfinco.gq bestsuvsguide2023.today quotehdist.ml elsumchecistita.tk pubmeutaringta.ml afpc83.com areocrypt.com web.areocrypt.com dewuzzcc.com rojgyan.com divine-violet-1e0e.ssm09710.workers.dev shiny-glitter-60ad.ssm09710.workers.dev orange-frog-9c11.ssm09710.workers.dev shrill-breeze-05c7.ssm09710.workers.dev tight-mouse-2b4b.ssm09710.workers.dev still-sun-453f.ssm09710.workers.dev donazteca.com gaugladpodi.tk lvejournal.com hdr.gg casinoper512.com www.beyen.shop late-snowflake-2f56.myson.workers.dev antoinechatras.fr all4mnd.co.uk renterinsurance.life www.thedomaintoregister123.com thedomaintoregister123.com delicate-snowflake-6618.amir-emad54.workers.dev solmarketing.com.br randysweet.com edujoyinnovaschools.com.co vchoolki.click fgzafn.xyz dailymotivationtab.com 31news4rowintermission.za.com bedsvaleg.ga 1winbet.site miadomotica.store ciamangparly.ml hlmsk22779.com bakomstra.top rickeyraykeytezino.com gg-4545.com www.mmoswap.com metavpay.biz store.opsucht.net ticl.lestaeali.cyou tibl.lestaeali.cyou rn.lestaeali.cyou arcticairfrtedom.com sioseythromlijaco.tk torinsingnonstood.ml test10.rezamousavi740.workers.dev mulhercomdicas.com getfreenode.dadashkayko.workers.dev freenode.dadashkayko.workers.dev iscaleco.com misdontdeg.ml beyen.shop goldengoosegpt.com dsvisiontv.com sasukmoeiwadi.com toknowsome.one www.bondmyanmar.com pp6.icu zapobedu.za.com xxkfcaa.top www.gtechpedia.com royal-leaf-f083.dosipa7650.workers.dev lukas-haering.xyz www.sahararadio.online sahararadio.online mesocializer.tk qfmarkets.com rubrandtwo.directory javgaixinh.com styleleatherindonesia.com am8-lhc.com www.therrefmentor.com matt.phxgaming.ir 8336025.vip spacedeskdl.com witheredbreezehaoma.fun nexotradinbtc.com www.geminihookah.com www.motissimo.es www.cavetalkradio.com a.server.homeserver.co.in mim.golf www.maxbikers.com 88ppp49.xyz jolly-boat-9af1.ema42ukp56.workers.dev api-aram.jopverhoeven.nl api.aram.jopverhoeven.nl www.bohoaffiliates.com worldfirmware.com demon-art.ru 1xslots-utk.top fyhwxjij.gq aofpootr.ga niplanit.com www.niplanit.com jasatoto88.xyz throbbing-firefly-0760.multipublicity.workers.dev patient-thunder-fbb2.multipublicity.workers.dev woldelaicate-waterfall-9dbfl.multipublicity.workers.dev mygovrfndau.com www.carbonsuppliers.com aquiz.us www.apolos.ru apolos.ru gsvsrew.buzz staging.wiki.opsucht.net creditcards.ke pinup-j21.click ahydek.click morganrepairservicesllc.com muscahome.com etnies-chile.net apps-gala-games-s.com hkk79.sbs e621.pl trinity-katy.org domenicawayneqi.cyou www.cialisdi.com lgatidexbreadin.tk expressdelivery425.online myonamancosebge.ml hotdrop.space mailsrvrworldw.com proofma.com kartof-is-dev.ml womanablealbi.store hsdongmun.net node.wizardrpg.pl panel.wizardrpg.pl bcoinbase.top www.siddharthashukla.in www.discountseries.com www.cult.altervista.org donotmissyourchance.bond bhbsciencesupplement.com jpeegenough8.xyz asotsidi.tk seducboyrislodi.ga alcelistrado.gq marpoonsgebi.tk georgiabmacarroll.shop mmoswap.com septfuzzti.tk iptv-4k.pro uptime.internal.opsucht.net siddharthashukla.in lemehard.tk amandisli.tk 1wcct.top www.feerverki24spb.ru autokaroserija.com bondmyanmar.com srimathacancercare.com 3ednplt.buzz selena.today inowtib.gq stoneclever.site solbahifecbiotrop.tk lady-boutiques.com pinnupbrsl-br.click munrenigasgsi.ga xiehuan.fun emahachterradah.tk haber-genc.xyz tinghensvesgoraly.tk tagdatacenter.com tmxd.info zielarzszczecin.pl esilarswatventhsyl.ga faiblocazlypo.ml ove97o.buzz vanillagift118.com soloads1.com 3aekz.buzz www.educesalon.com bysctosralec.gq gamesvalley.net eiaoy.site worldofpeak.site motissimo.es kiririel.gives muatz83.club campervanco.com www.campervanco.com brandxviii.com www.qwa3sde2rf3dvtoday.xyz ferencs.tk qwa3sde2rf3dvtoday.xyz beeoffo.cn congfoworcofirking.gq kilat77.cc pxnuu.shop o21d7l.shop fmb4l1.shop arestaus.store destinycharity.org sunddoodcont.tk taeweb.net gtechpedia.com onuludugox.tk bluestorm.shop lisens.eu qk56b.com portfolio.bardia.app idaabgwr.gq qimyjaoi.ml retihetoogperg.ml www.hireloyal.com hireloyal.com bubhappy.com dentistforums.com 2022ketotipebo.ru.com pagescout.info pmmuu2.gq cbzqqtvi.tk tovscerple.gq builderquotes.uk blowsale.live st01c.xyz sedesnofileda.gq zehnreabe.gq m2rjn5.cyou wafanea.click 9225e.com auron.xyz waste2energyhq.com monarca.info theopensiddwrobmat.ml traparperacerpers.ml wsadrvg.xyz runwardzelpo.tk cardboardpropel.cn itinourerntemov.tk alarehskatrel.tk 3455546787.xyz www.anderwosertop.com wedbaupredicav.tk

Open Ports Detected

2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN