104.21.72.59 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.72.59 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 25/100

Host and Network Information

• Tags: cyber security, ioc, malicious, Nextray, phishing

• View other sources: Spamhaus VirusTotal

• Contained within other IP sets: coinbl_hosts

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
• Passive DNS Results: hello-world-winter-river-975a.sefvk.workers.dev rianaev.site vl.betterparents.life ss.aftim.app overstock8pro.com xn–vusz95dwogxka.com tr365dl005.com 8mav651.xyz mythicechox.top slotbet-999.net expressdrive-tr.com pasnsoft.com irener.online relativesnature.com 777sarang.org mp4conconventer.pro arbirtum-foundation.net zahrakhatibi.top pendislot.site powerevoltsaver.com edevletdijitaliade.xyz settlefrjo.site healtokoa.click bardoprint.com 3527849.bandithris.life dominobetxyz.com ampmerit.com donegabang.site heinekenltd.com lupeldrhbx.shop cheeseie.com hscbd.top nguyenfamily.site chat-gpt-bold-art-4298.wilmer.workers.dev hrackyobchod.com exithub.tk coinlight.ru demos.sefvk.workers.dev demo.sefvk.workers.dev econotweaks.com mehpa.com tenogjode.best casinos7777.online hearingtest-best.today jualbajuthrift.site hopingtofindlastinglovehere.com hello.tezosbiswa.workers.dev jichang.a1uudkfff01.workers.dev gugqhmvvudqgd.com floral-sound-f649.986021456.workers.dev spearherb.top ckxqngykzsifn.com gde.co.il recrutegames.com madamepetit.cl drones-us-75843.today pdfdisplay.wilmer.workers.dev hey-dudemexico.com newdede.com www.funerali.de globalairseals.com localeemulator.com hamiltonlakesassociation.com realprivatized.wilmer.workers.dev userauto.rasputin.lol demos-old.sefvk.workers.dev alazalzalslsin.net 123bxocdia.com teen-brazzers.ru www.bisamereun3.click bisamereun3.click haohan271.com urtosbare.cf www.nextgen-maintenance.co.uk.nextgeneco.co.uk nextgen-maintenance.co.uk.nextgeneco.co.uk www.nextgenelectrical.co.uk.nextgeneco.co.uk nextgenelectrical.co.uk.nextgeneco.co.uk forvettv16.online retrothermaldiakovce.eu watchfactorystore.top casinozabone.com waifu.team phongvebaolinhqt.com binwagi.cf hello-world-wispy-thunder-4e62.sefvk.workers.dev jdcp0xepj2.net hunter-jones-group.com ucyknsvyyy7rruvszpegay5q.lat sourcepigeonlittlekeep.click ru-steroid7.xyz hember.name miss-fleurie.fr gemoyfarm.com adsanaenterprises.com racknerd.kangbeicai.top na2d.com hello-world-purple-heart-4d6e.sefvk.workers.dev getheltho.click domineering-wish.lat fixtureheadde.com mftecnocostruzioniit.store wanyifa.top teeny-tiny-feast.lat ufofx.shop 5960z.top bandithris.life latoyan.com babeszjoza.com appgalagamesl1asl.com my3authdigitalconnect.top goudsmit.tech dreamingspace.org dawinhome.shop hollyflix.online redengine.fr taoxcn.com b.zhaoyun897.top defeaexpo-app.eu mbc-ar.com wispy-feather-9a2b.zfr.workers.dev servic.zfr.workers.dev ppqym.me ixvlwirl.ga neaminsvidosen.tk www.nextgeneco.co.uk nextgeneco.co.uk balconynola.com parenttoparent.org.nz quiet-block-7258.mcgyatesju9299.workers.dev www.kora.vip kora.vip ke2hen.best client.btseatrades.com journful.info www.mabaninazaridelavar.xyz selection-of-life.net www.surgeprotectorsale.com wandering-water-21b7.mqyzkwrcol8928.workers.dev sefvk-l.sefvk.workers.dev soundiffusion.com mvfhrs.xyz mylistjourney.com worker8.pariya7170.workers.dev officederivation.site rrasturrosetna.tk snowy-cake-1679.lymewares-tech5332.workers.dev tronos.club kappabioscience.net 709077.com mpita.com brattyboystiedup.com dgcasino.top cottondyedfabric.fun adrianfeliciano.com www.adrianfeliciano.com wa28.vip btseatrades.com siriusraddio.com baclaycardsus.com ralphs-usdt.vip fancy-meadow-a421.wjc18657813597956.workers.dev icy-disk-a887.sefvk.workers.dev morning-field-1391.sefvk.workers.dev wds.sefvk.workers.dev wooboy.me jhuhu.com meriahqris.com yazdan8.yazdanheydari7424112.workers.dev system.dominatorbrand.com.br yazid.yazdanheydari7424112.workers.dev fragrant-river-b6f7.yazdanheydari7424112.workers.dev wsnyt.online techclick.click www.myclipeum.com www.qh88.ch qh88.ch f1podcast.com 031mmm.com polateliajans.com.tr solitary-sound-46ba.ijiyaoqoc2024.workers.dev pacaagu.best www.humeka.com 2ri8.site indent.wilmer.workers.dev trisuliswanto.com yfkhtq.com fiber-internet-service.life siripplem.online coat-rack.info aquarellences.tk sigfedsys.com engine.ironflat747.cf i-today.co.il andrews-mobile.com legacy.chrismillerkeys.com urashi.info vipsagatoto.com www.vipsagatoto.com www.drtyre.uk drtyre.uk www.orangepark.life orangepark.life mabaninazaridelavar.xyz kme2016.kr exodus-com.cc ketowybuhuquwuf.fun 4leek.space candostumhiddxncaan.net btsjdk.com neoswap.ru immokaleelocksmith.us pennsburgchimneysweep.us analysisworldmusic.com bigone1.co.uk www.gacorslot6.com amberavia.com gpt.diyvv.com www.dominatorbrand.com.br dominatorbrand.com.br greatify.biz x8888.link haidao66.com r1.pac.asn.au ufki28.cyou gacorslot6.com www.tv-master-help.ru portlandneighbors.org tv-master-help.ru testweer2.wilmer.workers.dev de-duizendpoot.com research-studies.ru.com testweer.wilmer.workers.dev soft-wave-33d0.wilmer.workers.dev test2.wilmer.workers.dev testing.wilmer.workers.dev mlertethka.tk plumbinggloucester.co.uk goodvibezstepfest.com.au www.cond.dk plex.cond.dk resas.online buycialis.quest cond.dk work.rasputin.lol dash.rasputin.lol lingering-haze-67b1.star-lord.workers.dev test.shiroprint.my sutisri.ga 1-800-divorce-of-south-carolina.com chatting1.janus7.workers.dev service-reroll.xyz digitayo.ph timpea.com wit.wilmer.workers.dev lucky-hat-9019.zfr.workers.dev wild-snow-4183.986021456.workers.dev service.zfr.workers.dev tight-dream-30ac.zfr.workers.dev proxy.hanning.eu.org agghdk.com coffeeteasuperstore.com enfantschaussure.com www.enfantschaussure.com felinasmodaintima.com.br nix.wilmer.workers.dev soapoonsdydeza.tk o-lx.6765531.xyz cbddiscover.co.uk sharonhathawayforrest.com box.epionelab.vn w2ma.shop murek.ovh cmcpazarlama.com smarthousestudio.shop www.tom-s.co.il lessgestcan.cf 4life.my.id anchongwang.top fur-passione.com hbbbags.com salesubvip.com temp.wilmer.workers.dev surgeprotectorsale.com tlogsalro.tk ficsin.com worker9.pariya7170.workers.dev rumangalist.org worker6.pariya7170.workers.dev pac.asn.au prunella.shop worker5.pariya7170.workers.dev sarktr.com www.sarktr.com realprivate.wilmer.workers.dev blundstonesonline-au.shop sparkling-flower-7c54.sefvk.workers.dev lucky-mountain-04ee.sefvk.workers.dev vc.sefvk.workers.dev replit.sefvk.workers.dev io-direct.skin blog.rasputin.lol simple-space.cloud airdrop-bbc.com sahadantv49.live hax.sefvk.workers.dev beforeyougethitched.com doprax.sefvk.workers.dev edge.sefvk.workers.dev pop3.myclipeum.com helps.myclipeum.com autoconfig.myclipeum.com www.api-beta.myclipeum.com wicz.ca redirect.wilmer.workers.dev lesley.com.tr mambabudds.co freenodeworker4.pariya7170.workers.dev ardorplans.com booking-transaction.top rtmptik.xyz starstylejp.com hzs.me benjaminwinston.xyz freenodeworker3.pariya7170.workers.dev freenodeworker2.pariya7170.workers.dev ezystorm.com freenodeworker1.pariya7170.workers.dev freenodeworker.pariya7170.workers.dev arxgen.com lag-keram.ru imuaola.net www.worldskills.ro worldskills.ro essentialbyeli.com app12-financial.site smartbuy.com utc.party kawaikystore.com zimozi.au alinsihojeli.tk mostgercek-trkce.click pancsc.in www.pancsc.in www.ticketmonti.com osterdeals.de raisingroutes.com swanoksa.gq printfile.shiroprint.my plusmore.kiwi.nz greatocin.cf juicesupplies.com dudleyolinki.cyou gaetanobrooklynjo.cyou avtub.website zyiupqh.cn casinoviva319.com www.uygunhaber.net uygunhaber.net www.suckgame989.com og.chrisburnell.com udemyiran.com fueconsulting.com myecostay.com olsenelderlaw.com quantum-wheretomia.com deftcite.com lucindajerroldre.cyou majalahsatu.com casatolentino.it www.mail.sarktr.com mebel-online-saransk.ru pusulabet527.com inulra.tk duit123.vip about.wilmer.workers.dev surat.rsmprovkaltim.com www.solcanatours.com www.navitsitbon.co.il navitsitbon.co.il www.royalslot.tech merdelans.cf mobiel.wilmer.workers.dev 571405.com footer.wilmer.workers.dev www.prcfinc.com selectwalthadvisersteam.com t1r807j.buzz suppvitarajafti.cf www.feelwellgain.sa.com skytoon38.com leuserleberthankdek.tk www.365pikpak.workers.dev vedam.lv clauderemingtonjo.cyou idqq88.one abbeymarcusge.cyou reflectiveconnections.com isschuleepom.gq ruouvangeco.com www.ruouvangeco.com girido.shop moyholdegen.tk fishcampjam.com cemilkwhistclindessou.ga elektrobilim.net dhn89.com rhenemriopasmimo.tk essmoothpalrafa.tk zihewanggebu.com jackieroush.icu letxconphicent.tk enirfiasaphi.ga swana.store gendbreadertravanfi.ga tech-buddy.at www.aboosterpush.com tetris.wilmer.workers.dev upload.wilmer.workers.dev clone.wilmer.workers.dev test.wilmer.workers.dev aws-api.myclipeum.com lustfeter.tk knightsiamx.knightsiamx.workers.dev real.wilmer.workers.dev redirect2.wilmer.workers.dev zzrnpower.com api-beta.myclipeum.com thecolonyhealthandfitness.co.uk smtp.myclipeum.com ftp.myclipeum.com aws-api-beta.myclipeum.com imap.myclipeum.com donnabellawrinkle.website rhlbvf.buzz anbinhcre.site b2b.solcanatours.com funerali.de sandmaconnopher.tk marbdifftiphenado.tk pastrik.111418.stream pandaax.111418.stream fxdealabaab.com prcfinc.com ky393hxokw.net litmustestproject.com tcemilenio.mx evlampe7salem.click koro.111418.stream goatsofsports.com image.rickeyjeffer.shop www.norte360.com norte360.com kamunanyeabertanya.xyz morsaclikiz12.xyz www.radiologynb.com test.jarlboro710.workers.dev zzdetiktok.one www.kitsapcountysoldfast.com kitsapcountysoldfast.com katschberg-rennweg.de www.mariapet.xyz app.myclipeum.com qua.myclipeum.com dougherty.cc nosurfcaconzo.tk www.fekipa.com incomebots.trippelleservice.com deostheconcept.gr trippelleservice.com athafzamsaugreg.tk twitter.chrisburnell.com www.new888.dev webmentions.chrisburnell.com www.santamerica.com.br jiizpdhw.quest vowj.zentrum-dewede.de mvaskfa.buzz liquiditypool-usdt.com zimozi.com.au pusat313.club 35562022.com hiscsunshinecoast.au vingcosregiftsmoc.tk ygicc.cn www.buffets.net.br tema508.club zentrum-dewede.de axieloga.tk santamerica.com.br hoosierdumpster.com screenshot.chrisburnell.com kgjlcn.shop fordrelmeena.shop abneofiebottmen.tk heathrerustnephbo.ml rsmprovkaltim.com w7z6k9a.buzz impfaerzte-mkk.com probourmit.ga kayr.xyz

Malware Detected on Host

Count: 1 5d31d3045769494ed985359a3e121c52949858715e5b9b311f977f5dca97b48c

Open Ports Detected

2052 2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN