104.21.53.85 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.53.85 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

• Tags: japanese-phishing-site, phishing, phishing-site, scam

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: reformoc.org cysmarthospital.com fortluck.click dolinktop.autos carrentalmallorcaairport577644.life nextclickwins.com topestgamesss.com durrellgemuh.com kerasdankuat.site projewelleryus.com swapdefinft.online 8fzieujul.com b-car-insurance-for-seniors-in-int-209.today ayzpkj.com edash.website grup123alt.live blaircityjail.org cheki-24.com satinecurls.com ivybartt.com avid3806708.altervista.org.cdn.cloudflare.net 5flm5g.top usehealtero.click sas-warehousejobs-shm-de.today lambo789.info nxvhi.vip cozyhauszone.com 9951111.com seksiescortlar.net gearheadmotorsfl.com modadeportivaesencia.com r825j.com lottomahaheng.com vosuje.avery-group.com i97rmr.avery-group.com 0.avery-group.com gbrrxk.avery-group.com 4uoc09.avery-group.com bhacfv.avery-group.com uhr9oe.avery-group.com 2zhgjd.avery-group.com personal-injury-attorneys-usa.today freedomains.life serving-coin.com xqynxj.avery-group.com jafr1g.avery-group.com h1xdvr.avery-group.com ibhiot.avery-group.com vtviyk.avery-group.com z8suuq.avery-group.com zbzpta.avery-group.com ubljxf.avery-group.com i9web.online difficultypollen.cfd ko4n1s.avery-group.com avery-group.com villaloresmi.quest junjaokor6.xyz thereio.space outletsdiscount.vip ncpvclash.iranurmidom.ir hitogel818.com theforcesports.com upholdwretched.top celestinefairbanks.fun elongatedmusk.com virtual3dplan.com rcbae.com al-namir.com www.ikimisli.com.tr ikimisli.com.tr kuriermunchen.de www.geoagricola.com tznvz.top iigamebulk.com mocnac.net cozyhomespace.co voxav.top www.theplanningroom.com.au theplanningroom.com.au case.microvlhub9695.workers.dev ledtp.vn 7lt.shop rems.rtx.co.tz solarsunpark.com ballwhiz.com quamasffgv.shop ltelwsriscsiu.com cc22365.com mtbn.us spring-shape-d213.gameino-251-ref.workers.dev santplay102.com startmicrovlhub.microvlhub9695.workers.dev it-beratung-sen.com zdzjnq.com magiamgiavip.com www.extbit.vip vacuumguider.com portohotels764945.life team-google-b5ed.gameino-251-ref.workers.dev developer-google-fbdd.gameino-251-ref.workers.dev ryazani-xdosug.ru ctorsa.sbs palmbeachmanori.com andrew.slsgroup.co.uk mykahf.com old-disk-d165.gameino-251-ref.workers.dev udsctg.com dev-sls-sellafield.slsgroup.co.uk dev-viewpointcrm.slsgroup.co.uk dev-analab-ie.slsgroup.co.uk dev-show.slsgroup.co.uk dev-se.slsgroup.co.uk solr.slsgroup.co.uk teaasty.drive-c.xyz andresalt.com muviz-time.com www.tunningservice.com oxymeterca.com kenyanlesbian.space sinar18.pro boss888c.net lygqs.com 1.mahmahmah.workers.dev edgeproducts.info findhearingaids.today woodenson.cl www.pinkchaistyle.com alexsleach.icu noirelaperle.com preparepeop.com docs.vampirewars.io www.financialprople.com files.deepayan.workers.dev wzkpvc.com testabc.microvlhub9695.workers.dev hello-world-late-cell-3255.gameino-251-ref.workers.dev www.arenismedico.eu phylic.top anderbuygigglink.ga www.wheelaccessoriesshop.com 10025colfax.com glaziersplumstead247.co.uk www.trendusbag.com jiujiu9999.com geoagricola.com h98v.xyz wavesmcsite.microvlhub9695.workers.dev reuben.firm.in kutahyaescortbayan.net ketootafipa744.cloud onlymusicn.za.com stats.microvlhub9695.workers.dev chat-gpt.microvlhub9695.workers.dev bxioahvzuohvohoq.com wealthonline1a.cc earthon.co misty-flower-0225.gameino-251-ref.workers.dev cold-king-0315.gameino-251-ref.workers.dev kocurya3.site moulespopularstore.com shrill-night-4700-pubg-game-google-england-ubuntu.gameino-251-ref.workers.dev timelineoffuture.com formssubdomain.microvlhub9695.workers.dev hedrydobounlay.ml extbit.vip playservice-game.website amqqr.bid hugduns.com sportphoenix.xyz mac-os-ios.gameino-251-ref.workers.dev 2egy4best.boats steep-field-d14c.gameino-251-ref.workers.dev white-dust-fb54.gameino-251-ref.workers.dev admob-flutter-4290.gameino-251-ref.workers.dev fragrant-king-f46a.gameino-251-ref.workers.dev lingering-truth-9a68.gameino-251-ref.workers.dev realtimeeventspay.net fragrant-sound-5036.gameino-251-ref.workers.dev spring-firefly-c110.gameino-251-ref.workers.dev twilight-bird-ba0e.gameino-251-ref.workers.dev super-sea-18ee.gameino-251-ref.workers.dev red-frost-6a01.gameino-251-ref.workers.dev curly-frost-6c09.gameino-251-ref.workers.dev calm-waterfall-ac63.gameino-251-ref.workers.dev muddy-voice-24ac.gameino-251-ref.workers.dev proud-haze-b518.gameino-251-ref.workers.dev still-morning-1c5c.gameino-251-ref.workers.dev dark-frog-9db3.gameino-251-ref.workers.dev green-cherry-765b.gameino-251-ref.workers.dev round-sky-81f7.gameino-251-ref.workers.dev tiny-bread-1707.gameino-251-ref.workers.dev gpmuz.ac.in kalpha.vampirewars.io friendshipsubmarine.top szwni.link mixmaggermany.de maju3d.com constalfactory.com inprechetindisu.tk www.5215768.vip vnastoyashee.fun 5215768.vip www.raya999.info sinasubworker.iranurmidom.ir code-valide.com planner.oost.one localwet.top xjjddd.com ifsclist.online coincide.online xlwyc.link swap.st francesconathan.com suppervideos.francesconathan.com lady-hawk.com vampirewars.io still-cell-b12a.moeinpoor-73mo8025.workers.dev b.ylbbxx301.vip a.ylbbxx301.vip c.ylbbxx301.vip conduongtaiphu9.online lumaeldjazair.com meetyouall.com icy-lab-5661.flsditxezm4612.workers.dev spring-sunset-6158.guxfeatbjo5087.workers.dev marcianodesignerdigital.shop mxydxxflmn.com red-recipe-b0a1.railey-ernesz4268.workers.dev odd-star-f734.microvlhub9695.workers.dev damp-dream-d9f1.microvlhub9695.workers.dev wyyxcpc2315.com www.iaibicid.mom 1-win-bookmaker.site sivastinesstoru.tk helpdesk.hughesnetworking.com mute-hall-0907.adlerz-serdark.workers.dev ncpvdw.iranurmidom.ir dvector.my.id rilateent.tk fzdh26.xyz pegados.co petfranchisee.com jstv2551.xyz talghefara.com r0650.xyz raya999.info gentedechiapas.com oldbetsydentalofjoshua.com odinbarapp.com t.sroo.top arctics-expedition.nl btudp4.gq baikeir.cn vegasslot777.org www.elmall.vip elmall.vip metadatatechsys.com www.realy-covidkits.com shy-tree-87c2.bocemom2919052.workers.dev benyek.com moodletr.com honey-coffe.click www.honey-coffe.click micwsk.store realy-covidkits.com stawki3.bet amazinpersonalcare.com snowy-truth-2f0b.a667wwoo.workers.dev weathered-butterfly-c828.mme1ws6u1o.workers.dev zbet.tube old-queen-84bf.info6907.workers.dev royal-sun-41ce.info6907.workers.dev 66tt997.com oliverenelson.icu semenakonopli.com.ua alcopresent28.ru oujgrt.cfd arenismedico.eu ketoyxavid.cyou ira.motorcycles arubaspot.nl eslglobal-edu.com realegiuseppino.it pinkchaistyle.com trendusbag.com www.atelierdebelleville.com ncpvcw.iranurmidom.ir ncpvbw.iranurmidom.ir ncpvaw.iranurmidom.ir gafnw.iranurmidom.ir ncpnw.iranurmidom.ir cipw.iranurmidom.ir ncpsw.iranurmidom.ir freenode04.themars.top freenode01.themars.top littlerockrvshow.com katiliminizburadan.net wheelaccessoriesshop.com universalheatandcool.com goaccess.korbiwe.online prometheus.korbiwe.online namibcyclingteam.co.uk slogamingzone.site fancy-pine-4570.a667wwoo.workers.dev chrisplank.com eastsetauketlocksmith.us sangabrielchimneysweep.us brainsciencenutition.com fhm789.online www.fhm789.online diamondpriz.com shakagami.wiki vardenafillevitra.online mbcfw.iranurmidom.ir bondtravomdoude.ml onlines-patagonia.com varsetella.site quotemaker.online ipcfw.iranurmidom.ir ipmbtcfw.iranurmidom.ir ncpcfw.iranurmidom.ir sinasubcfw.iranurmidom.ir ncpucfw.iranurmidom.ir sg366z.cyou vipsportsbook.de zztt90.com dollar-pro.xyz www.kemoton.hr luisadvincula.com www.sellersundry.com www.helmets-sales.com www.thediscoveryherbs.com dressdocis.com chapelhillgardenswest.com sellersundry.com incometaxassistant.com gotphct.com thekitchenqueries.com dag-toppers.nl the-quietum-plus.sa.com tiasporcuss.ga newseuropa.co.uk virtualtodolist.shop continuecheap.top www.topdailydeals.store aniqla.ml rhrtgvm.xyz indhhbl.cn mysalesfusion-business.com megafilmeshd50.top uvumedia.com www.virtualtodolist.shop benclarkson.cyou amuroda.pl pamisu.net xt.lovextlt.workers.dev mutlu6.pw ncpuworker.iranurmidom.ir ncpworker.iranurmidom.ir gafnworker.iranurmidom.ir bdsm-missouri.com www.pamisu.net www.towerperfect.space www.mail.maldivestours.net maldivestours.net www.maldivestours.net turnpointservices.ca www.ddsbd.org www.youarebamboozled.com thanos-shop.online testmail.ddsbd.org paintingmaster.site www.waktuonline.com sinaconf.iranurmidom.ir skinkkers.com gbwhatsdownload.app cousbear.com heartcosamo.tk heimosucfi.tk mycenturahealth.page solidstyle.pro www.solidstyle.pro workers.iranurmidom.ir iranurmidom.ir m.historyascribe.top ltpldb.buzz ddsbd.org gritovritalo.tk bricksbuilder.josephinesuites.com g9umqu5.monster www.olpian3.club 25.mrouhi47.workers.dev mamad1.mrouhi47.workers.dev p0bt84s.top kleenexsemires.pics pinupmybra.click mohammadservice.mrouhi47.workers.dev kaosk.club m8un.com jnhcg.top www.eniyigirisadreslerimiz20.fun eniyigirisadreslerimiz20.fun ichhoule.bar datasavers.info fudo.academy dallasbettv17.site waktuonline.com bema.bialystok.pl up4vjuunsz.biz dischketshillgecosubs.tk participantfallstick.space osweares.gq stable.korbiwe.online anes-de-provence.com topdailydeals.store tublifarepomes.tk sibb21j.buzz schefebenswizup.tk nbadeadlines.com financialprople.com olpian3.club fifaodoo.rtx.co.tz pannelli.tk ssp19.xyz bingosale.shop xsit.com.mx www.westzale.com app7-financial.site pmmisdemo.rtx.co.tz pmmis.rtx.co.tz gotocloud.in reitotpatitu.tk nukrmho.xyz mailadmin.rtx.co.tz xfiniteyprepaid.net grafana.korbiwe.online cam-pus.net aqaxuhado.cyou reediu.best me-5i.cc www.gmmos.co.id nmnufzcv.ml ojsbtdu.cn gizmomaker.com iaibicid.mom poweqxew.ga owdu.info hninov.org kgyrmt.com ghostsbaseball.com jettankservices.net www.awsomesay.com jole.thanksadoodle.chat viciouscloak.top cecybu5.site thekeeperogthememories.com jing2074.com towerperfect.space haveibeenbreached.uk tealpreparation.com tyvuxyu.online teechanbe.tk dentistapremier.com revnfcdigital.com cxkeja-lodi.cyou chandjuanaso.tk warnerpainting.com srer.org gv005.ga 24.yanwenhao.top ketoiytyxoeffect.today cruzbrendanvo.cyou hass.not.sh telegramst.org tele-bot.cloudflare-0z41x.workers.dev ovurtamasciapy.tk welneutrichav.ga tingtingtoys.com www.rauteio.info minesessten.tk buddyglenzo.cyou casinobooi.buzz www.galdbrand.com.br moonhuhu.eu.org korbiwe.online faucet.spvnetwork.io remontiphone124.ru vietelthea.tk wyyxsc6695.com nitrogenpleahierarchy.com fbzsqe.ga wordpress.maxirius.de getdgtrw21.tk telijefsophote.tk helmets-sales.com brcherish.com allkme.net sanpef.com yjnlj.cn

Malware Detected on Host

Count: 1 f6ef3e58813125018e32f84cc5d176716308c74e73472d0afef3e8d9ecd34060

Open Ports Detected

2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN