104.21.34.89 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.34.89 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: nang-han-muc-khach-hang-ca-nhan.com www.quantds.com raqesoapoa.live pasakuperle.com lustyaget.shop haijiao908.com rjlc.net bikeparsts.shop wyn4d-slot.pro xinfengshengshop.com dinnerneverfrom.top zemejarfun.shop pureglowhaven.net utchas.info haircutsylmar.com win79d.com brockdock.org ultimateservers.org chambersburgchimneysweep.us orangihan0622.top tool-centers.com iknewyouweretheone.com lurriff.com buygcfive.best yocirv.com albumatys.org nepster.vip superzasib.click shoesonsale-sales.com decaturtowing.us hexagate.net manqianbao.com atenea.fundacoven.org xlfpg.top kilcypo.top csxiangde.com dentaint.pro stormandco.shop gracechorton.icu gumonyx.com sourvachel.tk torronecandy.shop dhanvantarithapovana.com charliecturner.xyz leanintree.pictures derswiss.net coinexy.net aiwritinghacks.com libraerc20.com 11nuthouse22.dev neparcilijewl.tk top-rhinoplasty-experts.today sochufang.com mikecpl.com slotmatik183.com secretariatlaparra.com c-bot.wh0.is www.ggfxb.com webmail.vizahelp.ru ggfx.eu.org cd88gacorabis.com v8l39v.cyou 40lou.vip www.videodoubler.com sheep.ymtvsasa.workers.dev second-try.amirbaqerzadeh.workers.dev lojamastercooler.com.br deep1.wenqii.com alexchi.store sr-lssa.com rocketbarstool.com ayamtoto.asia naturalelementsexplore.shop tfile.cc lqvbfudowfobt.com sunmalignant.top zirvebet3.app eltagr.top 4175658.com limpidlotto.space navalny.com www.perfislucrativos.shop draincleaning-co-listings.today vitaminmain.info onphvvfyzsmqas.com yale.co.il deportee-chasing.click l7fhdnhi.buzz pradagallerypeemall.com flooringonline.today bonusgamen-app.com kamayabakeries.com a000037.com silentso.com url.prodevs.workers.dev jiotv.prodevs.workers.dev www.usrctoys.com usrctoys.com www.spotinvasiontv.com unparalleleds.com merkez-teknikservis.com www.gurlershop.com ab-test-wispy-hall-d1d3.sc072029.workers.dev notion.wh0.is www.nv.edu.vn nv.edu.vn www.perfectil.pk erection365.us dervievisderfrump.tk ahaustravinuut.site bnkofooklahoma.us ketoo-ramzait.cloud probably-improve.life satebakarumar.shop bagongjp.cam getketofriendlyproducts.com wildvilfeu.tk rich-lawyer.club plethora.wock.cloud inspctroe.info aqliyat.com toyibslot333.com slayer.bio c.wh0.is manfonigh.gq heavymedia.io dbsys.tel cbckg.me jich.org raspy-salad-eb19.tomlazar.workers.dev legal.tomlazar.workers.dev samirez.softgameonline.tk japanese-housewife-cuckold.com anzback.org lucky-frost-7ff0.ykmjdbn7969.workers.dev autumn-field-b414.ykmjdbn7969.workers.dev atb.lol ketoselusumixfex.cloud dosainternet.com raspy-term-8038.bcvdvtvrhstzkbqgzn.workers.dev manage.atb.lol avuscoex.fun hce874590u6tdpe21gqq1sd7e1c6sczsgrtu9tqurwf5v3ls.guawazi.shop splus88.vip rustassistant.zerofingers.com lafermedumontet.fr cod.babaksezar1.workers.dev shuaiaccording.online rttnvrpln.tk www.casinosportop.com quiet-thunder-e696.ikfwrpzvna660.workers.dev jjrfef.ymtvsasa.workers.dev designcupsales.com lasvegas.foundation flamencolove.pooryatahami.workers.dev cdn-5.cloudassist.me cdn-1.cloudassist.me cdn-4.cloudassist.me 1zs4f4xxthxe.site bit0.com yyav600.xyz broad-silence-6ddc.potogi38258692.workers.dev brield.lol texfefin.tk bitcointrader.ai www.tufguardsolutions.com patriciarlittle.icu www.comunamarinarepetto.com.br trerergerer.ymtvsasa.workers.dev krabatlunnensmemo.tk www.lbhbali.or.id yourvisionisourconcern.com newfreenode43.amirbaqerzadeh.workers.dev wairanokoya.com tobaziche.mx worldtoiletsummit2007.org unitedcapitalcreditunion.com tiny-fog-3e82.mehrdad000asi1703.workers.dev bold-shadow-91f5.mehrdad000asi1703.workers.dev ancient-dream-8036.mehrdad000asi1703.workers.dev instask.co tr-bneventlerietkinlikleri.net www.trobesity.com passw.softgameonline.tk www.protintorlando.com dev.protintorlando.com www.salekobalt.com portal-release.leobank.net selfhtml.net uncuttype.wtf www.uncuttype.wtf akincikimya.com bbb.guawazi.shop aspiring-wood.sa.com pingames-brasil.click miloroll.fun freevmessalinegad71.alinegad71.workers.dev casinosportop.com uphietkamilah.com notify.openbox.workers.dev perfectil.pk turksin.com adskalhfgaaasuhgfd.guawazi.shop aaa.guawazi.shop taktikgame86.store engine1media.com viruciqgcy.site dalianzhaoyi.com blog.wh0.is www.pimiq.co daddyskins.biz www.wh0.is magnetyzery3.pl otvuqpfsg.click trobesity.com augutech.io apachejunctiongaragedoorrepair.us ultraminingbots.com tg777.pro alexmlees.icu cmissionlane.com seatgehk.com parlongreso.cf techfixmaldives.com tasfers.com www.pemudaslot.net ohonwv.xyz freenodeiran.alinegad71.workers.dev megabet77.world elitewatchfinder.com noxvdx.com liangyunhui.xyz ghesaskitrei.gq commennsqo.buzz cabinet-mercadal.com civ456.com goehorra.tk uni2.tofakan.click private-care-givers-us-21.life primariaracovita.ro socialqube.io shrill-hat-d920.ymtvsasa.workers.dev soft-bird-101b.ymtvsasa.workers.dev super-waterfall-13b3.ymtvsasa.workers.dev app.socialqube.io organicturmeric.info www.prefinance.one pc.prefinance.one prefinance.one scheiro-it.de tosharee.com eurozipper.com misty-voice-a4cf.ymtvsasa.workers.dev craft-product1.com farron.sa.com mepade.xyz vanload.ie www.lushdecorlinen.com kdlgqamxi.dev www.feelwelltorq.sa.com 334kavbet.com www.investingcurve.com noisy.woytow.workers.dev pokerdom546.ru 0q610.cn rsc.ismm-colombia.com.co rsm.ismm-colombia.com.co rsb.ismm-colombia.com.co justfortest.bcvdvtvrhstzkbqgzn.workers.dev aged-sea-3990.bcvdvtvrhstzkbqgzn.workers.dev 123bv.xyz www.123bv.xyz www.networkblackhole.com app.networkblackhole.com light.mshinet.ml marshallhometowntire.com promptlung.fun tofakan.click uni1.tofakan.click sjandbproductions.com transfer.az flower.ymtvsasa.workers.dev apple.ymtvsasa.workers.dev pourya.pooryatahami.workers.dev fhrtfhr.ymtvsasa.workers.dev langgehostsucdiful.gq e9x84.us square-king-71bc.amirbaqerzadeh.workers.dev bitter-cherry-987d.amirbaqerzadeh.workers.dev summer-pond-1362.amirbaqerzadeh.workers.dev www.nintendois.fun winter-meadow-baac.mr-erfanfarshbaf.workers.dev videosxu.com freenode.alinegad71.workers.dev javadvpn.alinegad71.workers.dev awyq.info shock.nintendois.fun mayidk.top eqbal04.alinegad71.workers.dev art73.pl mexk.store kazimxan1.kazimxan.workers.dev kazimxan.kazimxan.workers.dev pen.mshinet.ml toptique.net beta.nintendois.fun wilimabergter.ga fariborzfreenode.alinegad71.workers.dev investingcurve.com bingolouisville.com image-resize.86codev.workers.dev slotxo311th.net ancient-queen-7bf0.amirbaqerzadeh.workers.dev restless-union-f505.amirbaqerzadeh.workers.dev thecraftse.com otrhomes.community otnoshenya.lol ca.ismm-colombia.com.co salekobalt.com www.topdesignfan.com pinupidkiqlix.click lazydev.app blue-king-59c6.czarpushka.workers.dev riomoinopepen.tk www.groupetrianon.com sdvpersonal.pro groupetrianon.com friesevolk.nl www.hjrsskj.gq ocdoglady.com www.hotelver.cf hotelver.cf brazzersfilm.ru portal-sandbox.leobank.net cabinet-release.leobank.net payment-release.leobank.net payment-sandbox.leobank.net cabinet-sandbox.leobank.net api-release.leobank.net titualdoraccuu.tk station123ydt.live azimkarpromosyon.com www.azimkarpromosyon.com opensamento.com.br 9s13n0.cyou www.ledgleronlne.com ledgleronlne.com 38tthh.com vacationprofitstream.com 7mgav.xyz robertuehlinfilms.com networkblackhole.com 6g6m6i3q.work earthid.net royalhealthusa.info perfislucrativos.shop lojaviponline.com rapid-pond-745c.fxdswryuiq32koi.workers.dev best-rhinoplasty-tr.today perfectmonet.com mmoblog6.gq jvflszcm.cf www.montanainvestigator.com pimiq.co www.melomanodigital.com turbantechie.com www.robotchickenus.com robotchickenus.com chatgpt.sharmavihaan190.workers.dev www.softgameonline.tk custodypremise.cn splendidspoils.co.za franchiseecentraldunkinbrands.com woop.grim.workers.dev lushdecorlinen.com xinvestimentoscm.tk denialmatimber.xyz oqbk.info kimthaitechnology.com credaben.tk sokk29.one liribxy.gq mulposavosvece.cf hungry4cookies.com fbsjkgrn.tk oktirethornbury.ca ziplodeamenre.tk trump-ukraine-peace-negotiator-petition.com renajolglebel.tk roamstock.com kekkdssddkeee.cyou ductiogeomingdareal.tk nflfaqs.com tw.viasphere.fr usohdeals.com menlaliponige.tk berto.gq feelwelltorq.sa.com youngsoon.xyz sagahkidsbeautysupply.com escortsshanghai.top totogamingrespin.ru marcocci.au backcanbalorisu.tk www.chastniy-webmaster.ru bilgiver.com.tr www.faithtohope.com members.bttf.io myilfun.io eltrezewatal.tk iamadonut.com web.testisee.com tufguardsolutions.com vebahisbonus.com buckcong-escort-wow.gq download.tqblog.workers.dev faithtohope.com www.misgloni.xyz beltposdu.tk joss.email gnlev.com usps-od7231.ml abgunroge.tk magtuafabdesigde.tk cpanel1.hostingall.net daroff.com.ua dotsnarokes.tk super-recipe-37c9.kexadaf546.workers.dev tateletters.com app-games-to6.com ghwvsem.ga melomanodigital.com etherealstuff.cyou 601bahigo.com interbahis1066.com w1pzmq.buzz bratishka.pw speelgoedwinkel.biz cybergirlz.xyz plextv.moglizone.one glaziersstapleford.co.uk iqrathakurgoan.com azure.wock.cloud kosmetikinstitut-goettingen.de rapid-river-911e.dapoolsea.workers.dev weathered-dawn-341e.dapoolsea.workers.dev entregafeita.com.br lgg5w26s.shop pornosexfamily.wtf proxy.wock.cloud x09eg1.shop fmvision.com.ar dissolvearticulation.cyou jestbirmarka1.ml wock.cloud avllwaby.tk 5hqxiw.cyou pishgamdata.com www.hibohimu.mom hibohimu.mom flo-trk.z2oq.in rapsons.co insteadblackmail.top solitary-silence-885e.iis88.workers.dev masozdamla.ml contemptibleaffiliate.top www.pulloverstrick.de pulloverstrick.de mulyoara.my.id cabeloqueimado.ml revivesurgery.net www.mulyoara.my.id bakiyorumda.shop phpmyadminvps3.matteiservicesinc.com z930.net eneizbwq.ga gm4szq.cyou sonicmediauk.live ledger.get-minting.com theirsverse.get-minting.com blokpax.get-minting.com onchain.get-minting.com degeneracynft.get-minting.com user24pay.org.ru ganhesubs.net locksmithswatchet.co.uk hjrsskj.gq www.erotikfilmlerx1.shop 1682games.com dependablet.ml 5dhakuf.shop daoytc.cyou rajvwgfc.gq waypicipmie.gq nessplanenin.ga malagore.shop lqimfkie.tk sonarspeed.com calsairendoorspassla.ga www.avalvila.com

Malware Detected on Host

Count: 6 884b1f84f1d8ada5c582764ef858ab7a4efc5b35c731c0334c75e90e7d5a3aac cb6a9e987292d36f8c9b231b999c7384ab97ab5aaccba465860e7803e044db8b d797522086e0810e196caa31496eb2efdbd3cade426cbe9a1e79baa2cf3d0708 2711a353beb1a068a0ee0b9049db7d1bb0a5855b73611bd8a455ebaa69c4abdf 4fb376ec47756a48bf0fa864a0a1880740d47cccc41a30027b1ab92c7fb51ce1 231950de46fd5883fb6ec1564f0bf92af845fcf309950eb0d6125ad69e4bc96c

Open Ports Detected

2082 2083 2086 2087 2096 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN