104.21.68.130 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.68.130 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: foodoora.life beweatlhy.care fondsmoney.com applysecureapp.com acquirepage.com syxinjiebiz.com grandmontfortplc.com tosnov.com stucksu.com pinepilot.com knifeso2frish.site ptse23.one tdame.top thrivetherapyhaven.yachts mibmc.store defective-street.shop cadeira-de-jogos-de-luxo-br-01.today global-cloud.online terminalemulator.info cyj276.com go8et.online airminumborobudur.homes lajollapalisades.com ilmclinic.com opsmanjam.com kathyandtimo.com hncmt.link getprintfrom.online q50l.com tigerfaceoff.com www.yzyuanxiong.com find-idevice.online granddoob.online prezmakers.com unp5ip.com modwhiteprodplus.site blesscent.cam xmiufdsva.com svysshimi.online peterson3.xyz smarorus.com btcrukainvestment.com ioskelinci.com jeffreylondon.com beautifulroses.link email-fi.click shad-cafe.com qubrondoha.store 0rypgi.cyou zenbleed.com golonganhutan.id ws.welaico.com www.welaico.com heraldcontract.com www.premiotreelogic.com butchindia.com haa-sa.com dphjh.website yourtuy.link coudou.cfd chxizyou5902.com festivalspins.com stock-trendy.com hkbvegas8900.com learnentrepreneurships.life www.selotgacor.pro selotgacor.pro rejeki800.com jkro.us tikitunes-faketest.com bestwin788.com www.sonthafitri.com sonthafitri.com chuleriadigital.com 1krok.online avelslovakia.eu molaserent.life play-meoo.online littlezoee.com imperiacoon.ru prostabiotic.org verseleaflet.top docoridb.com affairs.us newwhiteweddingdresses.com battlecreekplumbers.net zuriches.com roofing-jobs-nearme.today hello-world-misty-frost-5245.fghj678er.workers.dev aave-official.com srbijan.com risetpublik.dimensiresearch.com www.risetpublik.dimensiresearch.com 2amm0nt7kwzxy.top oelbln5r0i.store ermemartin.com pgsje.link bd64.shop fs.arenavs.com tsatsa.od.ua slenvejumplitingtin.tk ballnorrehadwhi.tk midalifelviaren.gq meinwegausderfaulheit.de coleparrant.com ark-qa.com evwxjkln.xyz freethedad.com mtstoolusa.com bf888slotere.com xizonua.xyz sufusaa.xizonua.xyz casabia.xizonua.xyz www.breathablesocksshop.com breathablesocksshop.com memcoamill.ml laosseree.com periodicochile.com produuctiveccorrp.site activ-ketodietaeays.cloud adminpanel.arenavs.com ing-es-movil.com goalmark.xyz faintflawless.fun ignacychester.com https-hqporner.com activ-ketodietakjsy1235.cloud eubvujkt.ml soledu.net ren-sg.gitu.top nctaxidandein.com appurquitarmepa.gq lindsay.boats tassenparade.nl kupit-91.ru gobinauto.com wild-union-b46a.xitaw2208632.workers.dev silent-frog-e2bd.xitaw2208632.workers.dev telegram-chatgpt.wwwdata.workers.dev maiyifushop.top asomvdau80.za.com wboz.prohitgame.top kiparestore.com.mx wrfjx.buzz late-boat-1ab2.xitaw2208632.workers.dev bold-scene-8db5.xitaw2208632.workers.dev grigoriancorps.click orbitcenter.com recxstore.live sweet-cloud-fgfg01.fdhgfjfd.workers.dev fjermu.xyz chiyou116.buzz cors.wwwdata.workers.dev kv-import.wwwdata.workers.dev cheapuggs-boots.com autohamrah.skhafzali.ir langmastershirt.com unboxingsytrayectos.com yzyuanxiong.com kv-export.wwwdata.workers.dev growkart.co viviendoderegalos.com woiden.gitu.top www.codeblocks.cloud sosh2dolakovo.ru odoss-profil.cloud yonz.prohitgame.top ketoysicu.cloud 1alphaomega.site filthyoverfifty.com businessfunding.life jellyfin.dmnk-slg.net chat.j-cn.com hidautocdn.ariandiy.ir hv-venture.net old-cherry-b462.hgwyyg.workers.dev api.arenavs.com hamrah.skhafzali.ir irancel.skhafzali.ir m.5657558.com investinerydesk.com b6gzviha.cfd better-vpn.net greatwinluck.com kbraqa.com tokyo.safenote.online hefygii1.shop cvhvqs.com vulnerabilityanalyzer.eu.org suren.enmxequo.workers.dev jettyextracts.com empty-notion-7ebf.wwwdata.workers.dev ancient-qr-code.wwwdata.workers.dev ghansolipestcontrol.com www.superpredatorbook.com www.qualityweb.fun qualityweb.fun bka8.net apkplus.za.com pennstateharrisburg.com scqgy.club soft-dust-43af.hgwyyg.workers.dev steep-firefly-43d5.hgwyyg.workers.dev subfb.site ketoatijik.cloud fnd.action96.store fn.action96.store newcampaign.shop www.bhbdhbmd.website bhbdhbmd.website www.talabaat.sa asemansteel.net lancewyattfe.buzz doremismile.com litevcc.com gillianvivianewe.shop www.iamjohnbe.info server1.iamjohnbe.info euganereu.store barfwoodtufflares.tk staccks.bio v.turkmotion.com afrogentry.buzz fancy-qr-b54c.wwwdata.workers.dev smartsitesindia362.com sahilbindlen.com souzarodriguestelecom.com.br sempraenergy.ltd oxstock.cn serhatbulut.com.tr rosasales.es theterrain.ga fgcwkg.cn reemaalnasser.com can-ago.cfd centreofjoydogs.com carousell-hk.postpay.website rezavpn.f567252f7a.workers.dev adalie.online treminuti.eu talabaat.sa www.newrulesofbookpublishing.com www.postpay.website postpay.website 189qq.top matchlessforsale.com www.matchlessforsale.com agencia360.co.mz t.turkmotion.com tanning-near-me.life morganlewslaw.com lloydstore.shop saudi-now.com wavesofchangelatam.com taxiball.click todoist-cron.wwwdata.workers.dev hxzixun.com oneandonlylocksmithservices.com premiotreelogic.com alert-digitalocean.wwwdata.workers.dev swgman.com healthcarejobboard.co.uk iamjohnbe.info prosindayclopoutec.gq bsdpnf.ga 9y65.cc uneplace.shop luckyslotth.com mm87.eu.org kkk642.com static.jointheunicorn.com 8ablish.shop nekoai.org hv257gp.top haytemislira.tk www.breakingcryptosnews.com vnkcki.xyz support.jettyextracts.com static-dev.jointheunicorn.com portalsmart.online cargopanel.co hlyu.info www.thanhhongpham.co.uk www.deflkingdonns.us xwmxjsgy.top wispy-water-8b6a.mycolorless.workers.dev encantofeitos.com ir.mightygod.top www.hsw1688.top www.passcode-icloud-change.com rep-id.gitu.top passcode-icloud-change.com uff.gitu.top cenbotiquarep.tk jacka.pl dopomoga.social omte.omidi-website.workers.dev pupuhaa.online energie-im-zak.de superpredatorbook.com falkenstein.skhafzali.ir sinmsiikaffe.buzz jasaeleven.xyz mrketcsgo.com blueprintrea.com reuma-actie.org soren.enmxequo.workers.dev rupcentcabump.tk lungcancersymptoms.life seocheckon.com alkatients.buzz app.arenavs.com rouptbinweitinoca.tk graylog.arenavs.com ohmysunglass.com xn–80adb4abgcpfbcm7a6i.xn–p1ai rpablosm.es remotelybusiness.com www.maxindian.buzz maxindian.buzz newmusic.one www.newmusic.one winter-qr-22a2.wwwdata.workers.dev emuaustralia.top urlphantom.me uncalfolkli.gq white-violet-57d5.nxoyuptqzl.workers.dev 38838.me paladininvestors.com ren.gitu.top dop.gitu.top erotrantu.cf parisalisacho.cyou us.skhafzali.ir skhafzali.ir crimson-ud-9c6e.wwwdata.workers.dev cihomadecab.ml karexa.net gitu.top www.gitu.top sro-dopusk-rf.ru emiinstitute.com armaghregionalmarriagetribunal.org proximal-systems.com emelianorwoodby.cyou shdx.my.id dayscube.com www.alllawyerlicenseverification.com digital-workbook.ru.com yobitpro.xyz kiralik-oto.cfd cpalocker.mylead.global apicpalocker.mylead.global alllawyerlicenseverification.com twilight-lab-caed.wwwdata.workers.dev red-snow-184b.wwwdata.workers.dev little-cake-8ec5.wwwdata.workers.dev dry-butterfly-706c.wwwdata.workers.dev richplay88vip1.live 105h.xyz ncnu.shop lidemebarcu.gq ss44kk15.xyz casa-sports.com apbareningnatinc.tk intop.one fzre2.info bestkersmojack.gq ku.vin biachanel-hajivpnn-233.gq 5657558.com nasilemak8.com atsource.xyz odispositivosecreto.com.br gibtempphy.gq tiogargsaddni.ml racorndesanc.tk yenivegunceladreslerimiz276.tk strucke.si exwelsoreapa.cf www.scootersequipment.com scootersequipment.com www.tokenu.me tokenu.me billallanwa.cyou holisticsolopreneur.com barcompstabinansyn.ga donslessrim.tk codeblocks.cloud www.cryptoex.vip webxrmuseum.com xyzslot.net lvyejituan.com deomidysrave.tk 60fps.wiki marknantvininaper.tk cscotia.com.br afghanioilvip.com kiranii.store pluggedin.live sweet-n-cuddly-reborns.de offensivezxcc.ga onsackmen.ml www.pulseofstrength.com zivabeyesc.shop pulseofstrength.com www.designsbyduvetdays.com jobsfornaija.com filotimo.shop promalitormori.tk hautanesstabria.tk web.bthc2d.ml accesscontact.com.br katsslions.com xifs.info etenopen.tk kuma-academy.org ferroatrib.tk furslugebo.gq breakingcryptosnews.com sidewideworklot.de ootnsmall.club louielogan.ml 0fgh3c.buzz lakedrezd.eu stage.soledu.net www.stage.soledu.net www.origin.soledu.net ipv6.soledu.net www.soledu.net origin.soledu.net racemus.buzz amenvinessratab.gq rumourcontemplation.cyou ryternaslenas.com 5tx121.shop www.upcoinpro.com invermadevi.tk upcoinpro.com canadianfirstfinancialcentres.com divorcelawyersforelowincomefind.life belwebc.com jmrxalnq.ml 2023keatoxyzad.cyou alexavegasslot.asia productparadisevs.com uzhd0343.xyz perpiot.com m.turkmotion.com slynets.uk crimson-wave-3d9f.nrzsemipuo.workers.dev nftsummit.org computerconsultingservices.net gikovuhufi.ga morning-sound-ec3d.namceukgrl.workers.dev password-gen-free.tk magicmocktails.co.uk vaultwarden.dmnk-slg.net xylccdkf.tk sportovec.space theneatblog.com bookingnow.xyz 5srkem.cyou giomicvuragood.gq moodsnicons.ga jsavexoy.cf dm123.tv phdu.top kxewpkgl.cf trade.safenote.online degesitpore.ml skillrepose.biz xnaxjfar.tk nolimitautoverhuur.nl easetechnologystore.com lucsi.de ujwtnko.tk adkavishi.com prava-moscow-77.com www.gandtblog.com deflkingdonns.us trieuviewnhanh.com motorrad-bonn.de tiamidachkisslico.tk travelokyrgyzstan.com bavarian-mobile-wrapping.de opleidinggynaecoloog.nl oco11y6.shop s1n-chewdally.com misssaigon-ny.com beipai202.com hopmop.tk sasirasandiha.tk biostonogli.tk promebquiditas.tk dhgate.info pupilproximity.cn ya-apteka.org.cn newrulesofbookpublishing.com unsigchybestsi.tk

Malware Detected on Host

Count: 3 69eafbbadf9e836d566544a3a56aab6067debadc0ba7c553e2de51c10929bf51 5b73feda270a4166aecc6901b476d0f3b49a0457e357c4d9ac1755d865218e14 d7fd30f2321a0174e2f8bf2d3c5182c6286f85ca77ac4079c78e73b8f5b2586a

Open Ports Detected

2053 2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN