104.21.5.2 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.5.2 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 7/100

Host and Network Information

• View other sources: Spamhaus VirusTotal
• Contained within other IP sets: coinbl_hosts

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: Anonymous Proxy
• Passive DNS Results: hickmanplumbingsolutions.com bitgetfx.xyz terrapor.gq kkpbb.top sex05.com gardeningclaw.com luqmanali.online mfer.live hazssdewsd.xyz qgtmall.site top-parts.space boryszewski.properties qooqootvo3.store thewinningedgellc.com thehrfeedback.com movieforest.org journeyconsu.com brandlawip.com dgpbus.com teslaskill.com bluetiick.rocks doos.pro ptsd-query-now.today lite-bel.info kingbet138.pro tiderankvetan.gq dots-stores.com 1s.money dotaslotgacor.xyz md1415.xyz teachpremium.rest amourfaces.com g9173.com myxueaabmt.com reflexsat.com indotgl2024.com bitbyte.zip intuition.love v88av462.xyz lildabster.com ap-0016.com exceptionalagitation.top r1001-world-floral-boat-708d.huiokjhuio.workers.dev 2puyb27cx.cfd www.dexterbetpartners.com waynermcgee.xyz app.porche88.com kiwybbfile.click doralaexploradora.org iamoney.sbs turenglish.com luckwonderco.com undefinedsociety.org msieks.shop promoasli.buahdiskon.world jardimquebeczonacentral.shop rarely-implement.shop wagegood.com dairyfwqdw.sbs xvxx.us clients.saundersdigital.co.uk super-frost-e736.getwarez.workers.dev bold-wood-c3ca.getwarez.workers.dev lilyts.com.br stormiymacge.tk chinesepornovideo.click myaquas.com privaak.com buka06.top filetool.net eleanorrphillips.icu city.shortlypress.best princehotel.com.br whisperingglow.shop kevvdhec.sbs useklendragpt13.com howforhealthy.com meilhui34.xyz tpdok.life haisannhap.net kellenersbouw.nl valorant-promotion.com ksmmmo.org bgn.fesseffettuproi-9844.workers.dev gptuerrerfchyv.com jjpremiacoes.com personalloanspro.life da88.page mtgamev2cf.com jstv2116.xyz cssnboecpn.com local.forest3whispers0windaq1zsw2x.blue bestoto88hoki.asia smockes.shop sk8station.shop udyogini.in qjsxv.link trebcirebiru.ml pastille.site www.sinnof.work www.1win-ua.com 61mnj.com aaeoy.xyz booklya.wiki 1win-ua.com gimanadisini.top landhouse.site 2easgoes.ru www.govtpolyamadalavalasa.ac.in cheggebooks.shop cecawode.online hotslot.online fairwack.com dwyph10.top www.futebolaovivobr.net duajjnd.info secureloanhub.com purple-salad-1834.apanpmlw.workers.dev raspy-mountain-79fb.apanpmlw.workers.dev fx-grafit.top ultimka.ru fllse.buzz liimiteddeefensse.shop kisahslot.co xn—-ctbkduwoo.xn–p1ai handlekrypto.dk late-haze-711c.armin-eslami8282.workers.dev misty-dew-c40f.armin-eslami8282.workers.dev hiddify.kiyanimahsa92.workers.dev aminkhan.kiyanimahsa92.workers.dev app-resgate.info prizeora.com ifbigcanican.com 99racha.me techexponent.com wecleanheatpumpsfranchise.com wartimer.cn www.baseballkeychain.com baseballkeychain.com mlizeguzi.shop tumuxco.tk www.crewsalesshop.com crewsalesshop.com futebolaovivobr.net pro.deorderbook.com totomanager.net farbod86.ir deorderbook.com bumpasin.shop www.unterwaschesale.com unterwaschesale.com civilted.com www.12x7designstudio.com nuvolashoes.gr www.weedmapswear.com xu352.xyz www.maurosiny.altervista.org prisma-wrangler-test.texoport.workers.dev wrangler-test.texoport.workers.dev dwgwtyh.com docxseug.com logwryklq.buzz plain-resonance-227d.nrwujpv.workers.dev exercise-programs.life newfreenodes.armin-eslami8282.workers.dev operaplus.info cloudflare.qnipp.com www.wirehawk.net wirehawk.net zahn-augsburg.de laurenproperty.eu shiny-frog-ddc5.xegesi45655932.workers.dev divine-surf-4b7d.xegesi45655932.workers.dev bernadette.kr brasileirafarmacia.com haber-alanya.xyz fmagawk.cn kerstenexpress.com amin23.kiyanimahsa92.workers.dev huli.plus freenodeworker2.hessam2.workers.dev pinangtoto.net adhyeshoe.com n1.fgudbf4w7.workers.dev crackeadoprogramas.tech kartagrada.ru www.alhujra.com veconkuroli.ml www.thebrownhills.com lyumix.com www.time4beauty.biz late-fire-23f4.dqkqjz.workers.dev late-cake-ad8b.dqkqjz.workers.dev premiumpsychedelicsstore.com katieokpjones.shop camilaschubert.com cashclout.net outofcon.tech agriran.co thorntonlocksmith.us answerwrtie.com www.luminamotion.com noisy-truth-ca3a.navidhoseini1386.workers.dev dx.huiokjhuio.workers.dev www.holywarsoo.net holywarsoo.net gtja808.com acarids.bar zipstriker.com bardecalfu.tk www.3kslot.com gimmiefreedom.com akafamilygame.com aaa.hbiboy1.ga ccc.hbiboy1.ga eee.hbiboy1.ga shy-smoke-6850.utzd4a2c.workers.dev online-privat24.jz6.site jz6.site mackeyfi66.buzz freenode.plusmehrdad.tech plusmehrdad.tech pipelinefy.com blaccertiman.gq wander.hbiboy1.ga drive.clarkekin.org tomjewel.com alves.us expresstireandautorepair.com broken-river-21f2.apanpmlw.workers.dev rough-snowflake-cfa2.apanpmlw.workers.dev spring-lake-a081.apanpmlw.workers.dev snowy-mountain-1b36.apanpmlw.workers.dev little-cake-fb5a.apanpmlw.workers.dev raspy-mountain-f669.apanpmlw.workers.dev bold-night-b23b.apanpmlw.workers.dev jolly-river-9cd2.apanpmlw.workers.dev grci.org r.transmitterpredominate.top iniciiobemprresa.info jilger.click juclick.ru sideor.store time4beauty.biz dnpqjnvwef.vip bef16-gentle-paper-6fc5.huiokjhuio.workers.dev nnxs.top industtube.top aircraftappoint.za.com www.seokk.top www.ee88tv.xyz seokk.top gsihi.top ee88tv.xyz taxicastle.fun wankmeat.com shop.alijapanlife.com limosmi.tk weedmapswear.com bahalors.com bangrow.com ddd939.com holisalbiconba.tk nerspoleabernist.tk teeheeceylon.com alhujra.com doc.2w2.top csc477.com dvfgthyjujkii.click urtsk.ru pinat.tk www.mundoepub8.com mundoepub8.com sakhteshodetavasot-falcunarho.cf tea.hbiboy1.ga prettysexdolls.com alwormesuli.tk haustunisie.tn www.haustunisie.tn aminkhan2323.kiyanimahsa92.workers.dev hr598.com 622549.com productiven04.buzz dewouterre.cf cloud.softeo.com.br ylzrshopus.com host.offlyworks.com freenodeworker1.hessam2.workers.dev space.opprovider316.workers.dev amin.kiyanimahsa92.workers.dev weboibet.com.tw roaspecliswha.ga shahed4uu.homes newoffersuite.click sibikarendobi.ga kuld2022newrun.com bakhabarcitizen.com sourcefrost.top yyy.hbiboy1.ga xplore.quest alijapanlife.com icy-feather-1d86.rframsen8g.workers.dev anywid.com teacheller.buzz olyqegvr.ml criwp.boris.hr matchaswap-io.com kukonc.best cdn1.premier09.website accucheklabs.com lanefox.ca triplebeautyy.com myg-ovato.com actforclimatejustice.org mishaclarke.com day27usa.m1212ilimili.xyz 27day.m1212ilimili.xyz ddd.hbiboy1.ga bbb.hbiboy1.ga 4861sally.com lili.m1212ilimili.xyz moncompte-expansoncapital.com vecharnkeren.tk upriser.pk readsasaki.online aferwx.monster acimneroperpro.gq ohalicante.com btr.network local.btr.network scamcompbestcos.gq notion-worker.xmutongsu.workers.dev www.mobtownstudios.com aberseato.tk trbhandbooks.net admin.osloguide.org www.osloguide.org facluarat.tk sydneycivilmarriagecelebrant.com.au recycleit.au bakhdidown.tk mrjz.apkfeed.com hm.hc1234567.com ignatiuselviewu.cyou 2023keto-lk.cyou mermaidtoken.com 9io-keetto.cyou fast.m1212ilimili.xyz pvd7c.online elbertjulianabo.cyou wlfgohomecustom.online m.m1212ilimili.xyz www.headjkl.monster chalets-et-caviar.dew-it.dev hxxggssmmsshhapp.org dew-it.dev www.lonestarjewelersnh.com sinnof.work hyplecurkaifrinel.gq thebrownhills.com nb-pit7.com setoyi.co.uk cri.boris.hr ecommnetworking.com stg.boris.hr soapertsec.tk carttuhato.tk lyricsbeat.xyz numerostelefono.com escapegrand.xyz pkltogel.com sealsputripa.gq wolkwallsst-48.info mobiturbo.ink www.gol89.org gol89.org phimsexsub.site 2rbaos.cyou pratigo.app urkcw.buzz edolium.pl muszkawaustrii.pl rewaltapalmire.tk itochupic.gq timeshareangels.com thebronx.coop topknoteff.com osloguide.org milocuraturcadizi.ml tryleadacquisition.com varlycoin.com www.teachaffinity.com n5.fgudbf4w7.workers.dev n4.fgudbf4w7.workers.dev n2.fgudbf4w7.workers.dev n3.fgudbf4w7.workers.dev itydako.shop fbi28.com codpiece-factitious.click www.esbaratoropa.com paconthe.gq 5jofsc.shop sugrcntrbe.beauty yearsfiner.space transmitterpredominate.top 8ufek4.shop xn—-2hchays4fh.xn–4dbrk0ce umzugsunternehmen-dippoldiswalde.de oxbmvu.shop enquirepoint.top clarkekin.org yzmxbpxp.cf shrill-fog-55bf.mygjoqtdke.workers.dev weblogik.eu lop.hbiboy1.ga arenoketous.ru.com nordhoff.co lokelocw.cf ts7wd2.com symriaclotriaco.gq sweetwattr.com www.tvdovendedor.com.br 2020.biz takora.shop femtechconsumerinnovation.com www.psgshop.ru dvlso.ru.com textaworker.blogz.workers.dev terrificcity.website ketoapecew.ru.com kantpucourhu.tk textarouter.blogz.workers.dev psgshop.ru bold-dawn-1daa.blogz.workers.dev raspy-surf-bf10.blogz.workers.dev holy-shape-6530.blogz.workers.dev ruelistcuteke.tk a-prime-in-berlin-hotel.fyi www.numerostelefono.com kn1tls.tk sherwoodtire.com 3kslot.com carr837.xyz www.majesticwebimage.com majesticwebimage.com cosmosuio.click www.domaintesting123.xyz obowmp.xyz nacubeferroadul.ml 6796385.com hg57700.com socasosa.one centrungpenliacafil.gq soexrfes.ml arrowcs.pics treetabimsnowun.cf padova.softeo.com.br www.britton.buzz britton.buzz ovvdn.us silent-violet-713c.huiokjhuio.workers.dev carbon.academy vila.m1212ilimili.xyz tddcmnqa.ga floral-sky-859a.huiokjhuio.workers.dev purple-mouse-e487.huiokjhuio.workers.dev wild-disk-ee78.huiokjhuio.workers.dev ancient-term-c3ac.huiokjhuio.workers.dev esbaratoropa.com email.mylimowebsite.com propalrouce.cf gunithern.tk micasaautentmexrest.com argosor1.gq jingtiecloud-cs.com leadgenerationconference.gr www.doramasqueen.me doramasqueen.me subesh.ga kyouproftouchviram.tk zasl.cf www.casinobybonus.com casinobybonus.com www.homedecoritems.co.in whwh777.com sinchewmsia.com laddbox-i-stockholm.se theoryofsuccess.org thepossessed.win-mint.xyz cryptosimeji.win-mint.xyz akumudragonz.win-mint.xyz mythicals.win-mint.xyz pepeapeyachtclub.win-mint.xyz nftgurus.win-mint.xyz genzee.win-mint.xyz cotenditasbodhra.gq yacss.co lyppcertifodakann.cf www.bedo-store.cc bedo-store.cc

Malware Detected on Host

Count: 2 7cf8e404c21ea54c473a3f91cd2a498e12d4b94f2622ef90946b885d9672e3a7 25095cc5666113be2d44e982d864de3e9cadf29ab95452c409bf19f608233ada

Open Ports Detected

2082 2083 2086 2087 2095 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN