104.21.85.144 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.85.144 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 36/100

Host and Network Information

• Tags: aaaa, accept encoding, acceptencoding, api key, as13335, ascii text, body, buildtosuit, centers, chi2, cil executable, colocation data, community, contained, cookie, creation date, date, details links, domain related, entries, entropy, file type, functionality, imphash, intel, join, link, magic pe32, maxage0, maxage2592000, mono, ms windows, neutral, powered shells, raw size, record value, rticon, rtmanifest, sabey, search, sections, sha256, showing, ssdeep, submission, trid generic, type rticon, united, unknown, us entropy, vhash, virtual address, virtual size, vt community, win32 exe

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 3 times
• Protcols Attacked: SSH
• Countries Attacked: United States of America
• Passive DNS Results: staging.nagelsguns.net worker-ray-chat-769a.raychatapp.workers.dev a440124-82.click allocation-immutable.com zionsvilleupholsterycleaning.us slotronin86.lol ginupio9.ru.com 50058y.com msh.asybuy.com sydneyvacationpackage.today advferrassa.com.br snappfoode.com yvhc.changeoflead.org designington.com wkbet58.com elektroschlagzeug.com returnassociation.com crypto4hire.com sega4d.online dynamosio.com cashcarsnearyourlocation.today peterreddecopp.com reayoufurniture.com hu789.net dioufusa.com gpsaquarius.com.br seoservicesindallas.com yakkl-vault-prod.yakkl.workers.dev tkwebdesign.co.uk bossmenang.online victoriaderm.com.tr xn–xiao-es3k.community eldoradocasino-fyl.top pureepicwell.click penida88win.com ayjg4d.org rxtwgw.shop www.teachplay.com.mx luxuryvehicles1.com 0915nk.com catcasino-xkw.top penadclub.com vora.team tokyo.mahsaa.shop continuousdiscrepancy.top mind-relief1.today endgamegrowth.com migraine-treatment-study-trial-in-my-area-5.today shortageascend.top eclecticeden-emporium.ltd omega89hoki.cam klpoc.cfd engineer.mahsaa.shop loanshk848803.life rebateustools.com tuyendungpvcombank.com thietkenoithatnamdinh.com 210586.kanjuc.com eldoradocasinoo.site daviddaviss.online deib.news 523572.com mcdtop3.com stanketquest.website offre-voyages-sncf-airbnb.com vardenafil-business.top post-plm.top pixbet44.com tabitabi.online korondoeasylife.com allywagon.cfd zmrdwawl.top kuecucur.com streakypork.mahsaa.shop www.kuecucur.com agen188slot.net top-window-replacement.today olcfy.top ijicqbxwybgi.quest bs2stite.com www.airnetzone.com msapk77drg.space usps1012.top dohorap.online jdhem.org www.boompretty.club contessamotel.com fa825f573484.sbs idlabsoffical.space illjp1kqo.pics nobu.land babejd.store joinzyngaqq.store albino89.com jixingsha.top flamie2glas.demonismsglas.best es-v0.site betonjudicasino.net mushroom5glas.demonismsglas.best onlinecasinohit.com www.activateos.com ypdf1wsc.top imgprt.com bunbun6glas.demonismsglas.best santander-bank.site rock500.com cybercornnect.com cod88cavipuz.site jujingnumber.com itsoppositeshops.top pubg2.pro win88max.com relaxedfantasy.com richardsonlighting.space agragamitech.com rt-345.com planetitsuptoyou.net namer.dog smsthespot.com creativewomencommunity.com yeniveaktif0girisimiz576.site hectorshandymanservices.org theecig.shop ama6677.work fbosis1.top charlottesdixon.xyz chuakakuo.world chatgptsaving.com oportunidadesdigitais.online joelmtalbot.icu creativecostuming.shop mymotovend.com consecutivetumble.top apidewacuan04.click mapa-numerologico.online tolnewsde123.click inidwokingsi.gq consejosmatrimonio.top baywin88.casa cmdca.colibrigov.com modelopref.colibrigov.com selfdirectediraadvisor.com mioraja.com legrandlounge.az xphonefarm.com cf2.022001.xyz rubbishclearanceealing.com www.rubbishclearanceealing.com wirecoinex.com carolinecollinsvet.co.uk xn–bm4b52je1hj3a.com westwoodhomesolutions.com drugs.ink vulkanrussia.cool krysjan.pl voluntarily-nail.shop paysmart3d.com taverntale.com.br precious-hydrant.shop xinconskanxanh.e-moravia.eu xinconnolimix.e-moravia.eu taskappreward.com mah.cati.workers.dev staytuned.top kekdoigm.sbs 553022.net baba-zariba-dorost.buzz amaziu.com www.stockhousegoods.com stockhousegoods.com www.aestheticdermal-skintech.ro kecngodl.sbs as136996.net anxiety-treatment-mx-11-in.today alloshop.xyz maxbetslots-zerkalo12.top quacklefuzz.space thilinaglobal.com www.thilinaglobal.com torrentgram57.com macedowinter.adv.br hitermel.com tetontailor.com jetcasino201.com hello-world-floral-fire-c469.rezaghasemi435.workers.dev legzo-gazeta.com leothbeauty.com backup.colibrigov.com henrysinger.shop croppingment.biz traktorsh.online nessdorthe.tk 33448.buzz barbecuestores.com appleorrange.tk register.matematica.shop whm.spellcloud.in vnukovo-fitness.ru openai.xinghuo478090.workers.dev fashion-instinct.com www.doshipariwar.com g.twowayradio.cn www.dancestudioedison.com telenovelat.com geno-tiokb.cloud bola99s.com www.bola99s.com picado.matematica.shop hello-world-autumn-frog-488c.abc05752008.workers.dev alpha898.vip uruacu.colibrigov.com usawikispecialists.com bookofpalms.com edtalfea.ga luoqi-china.com coremagazine.info mycreditmasterclass.com build-106.keksla.wtf zhivaya-eda.ru 1981ddns.sdindeang.workers.dev bop100.com bfzn163.top nbt2v.shop ropatitarecu.tk ole777bet.net ismkerala.info ineveal.ga enezk.info koo.asybuy.com deathnote1.cati.workers.dev www.colibrigov.com hublot-csn.com jecawong.ca shafa.tokhmi.top 3rrdx.xyz empty-wildflower-d900.kesicikoksal4077.workers.dev fluoxetines.live activ-ketodietakjsy21.cloud www.elfayezforrealestate.com gentle-wave-48fb.mvonyplxfj4437.workers.dev www.collegebeattv.org elfayezforrealestate.com amazon5399.com deathnote.cati.workers.dev winning365ku.app flowercolors.co coop.asybuy.com ordisrorobeagon.tk maserywa.website mt.matematica.shop finnishtube.com moqiee.com cole.asybuy.com amaz.asybuy.com asybuy.com trattoriapizzerialacolonna.it 4y8p0.site lastvegas.sbs anytee.shop wandering-bird-4724.rkvmbinhcp1181.workers.dev vaginal-discharge.net fredtrelz.com reidoplr.me dhoi.site giverme.online mc.matematica.shop acousticoffcial.com visaimst.com www.bigblackidyjack.net k8ccjeooo83.life xrpgift.org quinnvisionarts.com lingering-moon-6182.qymbcprl5179.workers.dev snowy-bonus-3059.qymbcprl5179.workers.dev journey2excellence.nl kntvnews.in www.gtribealpacas.com matematica.shop elektryk-lobez.pl 022001.xyz finalcostcoverage.com www.asimobiliaria.com.br monodnis.com images.superbuzz.io buzz.superbuzz.io www.mtherapy.co.il proud-sky-868c.affinity3596.workers.dev xvbuykd.shop vidvidxd.com evhyk-kvufdzh.top 8e9j.com www.tuscomfg.com tuscomfg.com 143hiperwintv.com b2b-conference.com broad-truth-1e16.maghamih86393.workers.dev damp-wildflower-be5c.maghamih86393.workers.dev millenniumparkeyecenter.com yellow-wood-fdc0.yuusukeogawara2170.workers.dev blue-mouse-c9c7.yuusukeogawara2170.workers.dev rxgivn.xyz www.dichvudonnhagiare.com dichvudonnhagiare.com openai-proxy.xinghuo478090.workers.dev sparkling-shadow-f3d7.xinghuo478090.workers.dev overheid95secure.website ake.ai seamlesshomeschoolsolutions.com anygamecodes.xyz black-shadow-4fc9.aqakishiyev.workers.dev shiny-frog-70a7.mahdishahbazi3408471.workers.dev itaucu.colibrigov.com exunpuka.cf cdn-6.untoldwanderlust.com detecell.online www.cbfix.online yogspay.com cbfix.online blankenfelde.net 91kp-p.com onlinedenizli-bel-tr.com uxveteran.co login.dev.mimd.ir admin.dev.mimd.ir docs.dev.mimd.ir api.dev.mimd.ir web.dev.mimd.ir jhwegnw.buzz legalguide.ru terza.tk dixychicks.com escapeplan.hu zfamxchom.buzz simplycub.com soft-darkness-fc79.nimaad89.workers.dev mani.nimaad89.workers.dev tenant.com.ng kinoxpro.online www.kinoxpro.online lingmaowangluo.com bigspringgaragedoorrepair.us sparkling-mountain-aa2b.fzbogwddvmpnikftnw.workers.dev porlporn.com mtherapy.co.il wedramoother.gq 481988.com i24cs.net ouyisoftware.com 7agy.com grandset-cz.autos strpsub.yakkl.workers.dev xn–s-3lm.com themaryalexander.com www.chesnok.media expertvalet1.com log-sunawuc.com www.gisty-life.site www.nishad.link they57472truck.click galaxybet77h.com budek.me promokod.top www.cloudstick.xyz exammain.com www.themaryalexander.com a3dqn62d.com www.ahs1call.com amvxr.com www.bogorcreativefest.com 588353.com wondertoto.org nishad.link california-drain-works.com trinetalliances.com cloudstick.xyz dzzvfph.trymednews.click gisty-life.site gtribealpacas.com comptingselfnijosa.tk alwhisubgtine.tk ymhhw.net summer-surf-d7b1.mybase.workers.dev skt473.click app.naveenrao.com usausps.com heartlandnz.org.nz chc.aicargo.com collegebeattv.org romimargroth.cf kohtlanomme.ee ericslaw.com www.ericslaw.com 9askcentiered.info susanchampagne.com ahs1call.com uom9sd.com peopleask.net thunder2011.thunder2023.workers.dev playbook.new ezmessa.ga copyhous.com topanpoint.com bedelcc.org www.pertubuhanwilayahummah.org.my eltknowledge.com niangiron.online foodreviewers-hk.com valheim.bullnet.io sicherheit-bocholt.de mosreder.tk golucky.club clarafdes.tk broken-truth-df66.rdrlqgsg58.workers.dev iqvf.link pinnup-ntrk.click playpotion.com filter.profpack.workers.dev discoveredamerica.com www.discoveredamerica.com indialist.org www.indialist.org dev.nagelsguns.net qumjwg.com sjs795.com momo4d.quest betterqing.com pinkyssweety.com brewedappeal.com kitestring.io www.kitestring.io 6587221.com jmi-pyes.top empat.biz.id grafana.carbon6.io grafana.infra.carbon6.io alpharaven.carbon6.io learn-diary.ru.com mkzbrl.com project.naveenrao.com raechelmatthew.com sigortaciamca.xyz 2gfpyd.cfd hubq.info www.viewing.rocks soitipena.cf vsetopcasinoraiting1-2023.win framex.app www.framex.app courses.thegoodlifelearning.com sample-service.ibk.workers.dev pixelme.carbon6.io ineskatelintho.cyou eqmm.com.mx www.hahnplays.de o.anime-slayer.com www.middlepress.net maketcomth.com donnerdental.com carlosmeaghangu.cyou swvkpm.com cloudsurely.com basakbengisuakbulut.com saullemuelty.cyou fangeardiscount.com benfjiso.ga apgalguirras.cf venturataxpreparation.com hunbauguarecon.tk www.cutwel.ie cutwel.ie euro-kr.com tesfrtknmbxghlont.ml nunickhamptevile.cf 289totobo.com caritas-sozialstation-calbe.de sdgfa0111.com mytestbox.tk jimduggins.com bestgiftconcepts.cyou neckinglindi.tk www.tadamsmarketing.com probfinusadowdust.tk lqfqec.cyou casino-izzit5.top draftingservices.me wysprk.ru.com www.modypure.com modypure.com www.boawheels.cn boawheels.cn dioglycerin.cf caordell.com hahnplays.de www.bigworldtoystore.com bigworldtoystore.com ketoaqyquj.cyou u-cravetths.club www.u-cravetths.club caselaw.ninja ketobejus.cyou

Open Ports Detected

2053 2082 2083 2086 2087 2096 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

****** ****** ******