104.21.52.106 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.52.106 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: zahntechnik-wetter.de royacuna.com uscanytally.run pandawa777.info xn–mgbfvxl5e7a.xyz sambas.go.id www.expansao.co.ao mahabet77.online tvzotas2-2.store newmeteorparty.com lianchengxh.top barxatniesezony.com ohjiehunla.com liqfur.sbs sharedposts.ltd rtpslotmt168.com noelknowsland.com ufabet99.online my-stream.site busdcoins.com www.busdcoins.com averagen.com tarihsec.app dex-aa.net lai296.com shlibtaruin.com masonandmiles.com storestilettos.com ledg3r.store dailyhealthub.com promarketmasters.com ibrahimtatlises.app ozpove.com www.17cen.co linkslot2023.fun fazbbbtttttt.store foylhep.info ezza.bio shangtop.site arunkundu.com taphoagame.site systemerwin.com wxawkeful-xawirplxawne.shop lifeservice.fun casadesanteh.shop recovery-coinbase.net kirins.beer xbctw.baicai.workers.dev chatgpt-fastgpt.zhangsangood.workers.dev wwwwnakedchat.com embroiderykitssales.com hcesb.website ac-solutions.today kpoptiket.com toyoptimal.com mobile-ste.website mhirzhzxolvu.com youxuan.sanritian.workers.dev zhiniao.sanritian.workers.dev parttime568.com rhinologyacademy.com vron.us knocitetstomnomb.gq www.justseries.co sukasuka04.click saleclaudia.com acidcomma.com fxanimation.es clicksstracking.biz hh5p01.xyz substantial-lace.shop princenza.store assessmenatlas.com kebabtimeonline.com winnerksvh.xyz abfakerman.hafrasiabh.workers.dev hamednzn.hafrasiabh.workers.dev ocaza.xyz cloudflare-reverse-proxy.zhangsangood.workers.dev onsale-shoeus.com owautosales.com loveatpureconcept.gr shrill-bush-47a6.fhsdfilli3418.workers.dev ezcash.wtf tldid.sbs shopxtreme.com.au ponireve.gq downglobizren.tk vless.masouddel1367.workers.dev haber-adakli.com.tr aunt-fascias.click isboffshore.us xoso666.net spdf.1kb.work isocenter.eu.org classringquartet.com menuprices.net kendralifestie.com lalicornement.fr skutteoleg.com kepalabergetar.es www.santafe.net santafe.net chat-gpt-snowy-firefly-4e00.vuthai2k3orin-c64.workers.dev ers2023.apps-nahq.workers.dev hello-world-rough-block-67ff.gmohammad901.workers.dev sieuthipet.com nx1brt5.shop phhh.bet claude-sangood.zhangsangood.workers.dev chat-gpt-wild-rain-sangood.zhangsangood.workers.dev robos.com.pl blecksprut.website sanleesunduobur.tk neclacelery.shop www.plusmods.club newretroattire.com mjitc.shop playsite-pin.click korte-cykeltrojer.com eminisetcal.tk ketoihoqos929.cloud tkppewdc.sbs fffffffffffffasfasf.space cqbgwvae.sbs planesspotter.net thetechgeeks.co.uk staging.greekangels.gr work.vpsrv.com payment.estalya.com enchanted-cellars.com ku.fiyatla.com.tr behrokh.net aristocratix.com ishhayzen.ishhayzen.workers.dev painelcgbgames.com.br iw9c.uk teknolabz.id theteetshome.com cuafwh.cfd yoquierodonar.com.ar fiyatla.com.tr akramelsoudy.com krunkex.com ledong2008.com hicelenterprises.com lecquimoporcicil.ml www.hicelenterprises.com mygov-a8u.online service96.ru restless-water-8a17.bzmalhjqik5368.workers.dev www.techzerker.com tight-band-ca32.fhsdfilli3418.workers.dev fragrant-art-5a89.fhsdfilli3418.workers.dev nameless-wind-0106.fhsdfilli3418.workers.dev withered-limit-1449.fhsdfilli3418.workers.dev broken-truth-f5bc.fhsdfilli3418.workers.dev plain-fire-5506.fhsdfilli3418.workers.dev frosty-dawn-3c7f.fhsdfilli3418.workers.dev shiny-scene-618b.fhsdfilli3418.workers.dev powno.ursaenjum.cyou bajumoscov.com bst-logistika.ru www.findemails.me tdm.1kb.work r3387.xyz kbdue.click test.nora.net.tr casadoarmamento.com.br www.canadaemails.com bsc-macaron.mymacaron.org marydangelohomesteam.com soroshtala.soroosh-b-81.workers.dev www.test.dhruveonmars.com test.dhruveonmars.com www.captonpartners.fi tulexu.vip ketozajuw.cloud 6p2.dmlzqjys14.cc 6p1.dmlzqjys14.cc portal.epicorrentalessentials.com okeykahveana.metaren.workers.dev blog.nora.net.tr bwuoj-efghijk.motorcycles margin.cssstyle.xyz sleesbo.com terminaldeomnibus-larioja.com edgarhall.co.uk lohoknang.com getx10.bond zioncognj.com luxwire.co roothis.com hativjfjvjfjtiyu.cfd coin.estalya.com update.controlleradapter.com www.saleskeyboardpc.com llxjp.buzz long-bar-8ae3.kldp00078662.workers.dev 99e365.com cartitleloansogden.com www.chaffeyroofingontario.com 43rt53olkl0v.shop saleskeyboardpc.com 00d28em.com criebland.autos website.rmrmobile.xyz m.manipulateemulation.top www.maxwin369.xyz maxwin369.xyz 0xgq0p.shop ctb-24.pl heic2jpg.1kb.work 254tyc.com 918lbets10.com epicorrentalessentials.com txbql.info dezhongfangchan.com pornnoise.com www.iotech-business.com mymacaron.org tggptxbcbot.baicai.workers.dev oninotarimti.ga cabelosemquimica.beauty olslivov.ml 0glot2.buzz nasego.ml nexus-exchange.com cyclic-alumni.click importadoraschachter.com ketoitufafiloxi.fun chatsummer.com findemails.me nysedown.com yie1337.eu.org iloveuni4d.xyz www.iloveuni4d.xyz opinipholin.cf duanelulubu.best handrylinktur.ml iot-spitzer.com headonline.cfd k9996.xyz kienthucspa.com iotech-business.com w1.ishhayzen.workers.dev greekangels.gr www.nettruyen.live jackpotbuzz.buzz connect-info.co www.windconcerns.com mbehuertodelosolivos.com windconcerns.com mila-fran-ov-01.arvancloud.workers.dev ali-sw-01.arvancloud.workers.dev mila-troj-01.arvancloud.workers.dev www.ansionp.cc orel-docs.gq goo1one.gq thesunnyplot.com www.thesunnyplot.com mostafa2fm.mostafa2fm.workers.dev ecscararep.tk outwildeeadiodesto.tk nationalyouth.in techstudio.ca www.sunsale.pl sunsale.pl expansao.co.ao woraigat.com fragrant-king-a724.fcatme.workers.dev pakobama.net nonthaburiclinic.com acesso-portalextrato.online www.sttruyen.xyz et-ri.cloud ali-fr-01.arvancloud.workers.dev moham-sws-01.arvancloud.workers.dev mil-sws-01.arvancloud.workers.dev followersya.com freshfactorycuts.com bamb0u.xyz stats.followersya.com docwisdom.com humanbeing.ca by21rental.com topdawgsdeli.com radyocast.metaren.workers.dev stock.estalya.com www.fardamusic.xyz spyic.pro bcbl.live yukdashima.com coinsbtsconectsp.org znml.net fwiyfyd.sa.com vniche.tk datapprimulinetf.tk support.alitec.sg delicare.com.br freelancers.estalya.com pipe-foundation.xyz azbusiness.online silkcoiuzs.ru.com ulpq.link whm.estalya.com crypto.estalya.com vipunurc.tk esinmo.tk njed.info 4v3c9p6.buzz app-gala-welcome-tr.com knacsunslanri.tk yournewtype.com sydneyestes.me rijudapk.co climactic-braze.click bajaberfamily.com rhrfabric.com us.weempty.com feoult.best www.csemcq.com csemcq.com a.reducto12.workers.dev amiyaellana.cyou security.metaren.workers.dev tedbakernzsale.com raspy-math-2fdb.gillespie98.workers.dev www.i1tek.com amitimay.com www.drpoincollagen.com antwanpaulaci.cyou worhliverlega.tk lacadofi.cf www.andpb-group.com www.hunters-lodge.org i1tek.com frigdicutsafiba.tk web-luxury-digital.com www.maquis-plage-corse.com maquis-plage-corse.com tysonbrodycy.cyou focusmedia.me statsidohinreva.cf www.historyqueries.com mwqgnn.buzz hansranarsearchta.gq ohbacpare.tk bakery-good.com domenicanicklaus.shop tiisg7t.buzz ketofidep.cyou ujla.xyz reicaresgetecen.tk nilosguindelma.tk raibreakperf.gq rus-tb2-2023.sbs meteilan302.xyz www.meteilan302.xyz turnkey.rest steamavonourborre.tk mysitegothacked.com.au qvg4pf.bar h3fqg.bar www.forgoodlifestore.com clouddrive.dineshdrive.workers.dev nhgtohxx4.rest napetcontsi.tk www.pyworker.com psythemes.cf xmsp6.xyz captonpartners.fi tloi.dhruveonmars.com www.tloi.dhruveonmars.com pakenhamheatingandcooling.com.au empty-boat-df35.vemala6307.workers.dev dark219keto.ru.com impluviumsewage.live 366s3ot.buzz findrandaro.cf twinteethorthodontics.com www.twinteethorthodontics.com portstamathpi.tk xosoxmb.com kudinov.tech lidificonsrat.ml cordsusnilisna.gq wt1jpeu.buzz ruld.link ejbsketobpag.cyou 2023ketemeeylokedet.cyou dentalboy.com anbridbalretara.tk w.sandpazshw.online ioi3sd0rsdkj-mountain-badb.saldja.workers.dev s2yud3ksjk33-bar-242b.saldja.workers.dev www.thegalaxytv.com thegalaxytv.com recorngesscaside.ga javadjakesh.tk bestudying.fr www.dealswallets.com dealswallets.com vgihostel.live charminginc.online associationcontactphysio.com mississippirvshow.com hs.nassers.sa appvset.co powwerrfulprroojject.site cyriu.com holy-grass-1973.qlbemignua.workers.dev delluvepersrestu.tk 123mods.ga tabelpakde.com xyzbicew.cf rich-walk.pro www.anpiano.com anpiano.com noithatxaydung.info reunificationcrumble.top czfdagvs.ml fdhdtwryeajmcbczxvae.tk firstratewild.cyou 17cen.co prostats.us cfjutdce.tk smartbutton.alitec.sg dergbommarlgardgorva.tk www.atomserver.org psychwhatserf.cf ha4tomi.top sessnerode.tk vietranciarenseo.tk qprgkero.cf gadgetsezine.com www.kassirpp.com bulkbarracks.top retailden.com diostaracac.ml ph3qguz.buzz epuqxeyr.quest www37262.com gouabreezwax.ml justseries.co my.nora.net.tr www.nora.net.tr desgeirecisecri.tk buddnuanthambrespy.tk aqpsjisqmcyfy.xyz abyq.link www.medea.media medea.media seika.pl smynckdr.cf ipshop2.tk fintechpro.me clicconpancdi.gq pingmitaro.gq whiffet.rest ybhgxjom.tk andamdi.tk zzicogdilve.tk sparklingseadeary.pw vitymrei.cf brianmcknightconcert.com leonteq.me academy.learnchristmaslighting.com nutquebou.ml viahosubpthrowevfor.cf hybforksurplof.tk wecreatemovement.com umhnzgha.ml geratukopde.cf nyaspumadcen.tk monuth.or.at khandecsoa.ga inclerpennagicon.tk maxmetal.xyz lenlessrimafi.cf pacciresconslarg.tk gxpc.info bizzz.xyz tematingprosin.tk home.michaellammers.nl ifavcams.com getfreetop252.cf bestorelishuni.cloud ppqwkan.com link.onelight.top andpb-group.com magresnichki.xyz theobliviousmind.shop net08w.shop www.classicoutletclub.com.br classicoutletclub.com.br www.anglicaneyeclinic.org cycmindperte.tk homelandelectrical.net net92w.site

Malware Detected on Host

Count: 484 b89b847ad3ca3783d195388479e4351551f5486b11d6d68d248c20a0e65d9555 dfddc60c8af4638e4d828dfa8e2b98f6a4766d3fd205ea59ac1de7a53b5844b8 01d98dda54e4bb0eaa9c7513721c1a58c50b690a8b615a9fd70c3934e3b0e617 f33e2e5f9a6baa740480aacea9f86c736026ac8cfc154962f4b7cca805b78fbd 23e64998334ede266f4c2c306ddbf9164a5d2dbef927c20c563c9152de8c32df c7a920b8054c4ad927e41d4d572614e755ada7c18d0a82ec78dba6869ec13ea1 a821f491546b5c16325358a7eb1de929a72952bb815b99f492bb6242a480433a 9d5c8efea76387c03fbfd64f6ff2677380b3c7196ced96ac717a686d162d43d1 cda7c7a2c8a897b130e997aabc7a454848b387e3518f2adea76826f011735522 eaed060844c8fc246c6dac3a30d0294f899b021baa432c505f8de4aff7802ad1

Open Ports Detected

2053 2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN